Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/unl2sT-zsf8ZgMsXbhICLMj7O94.roa
File: unl2sT-zsf8ZgMsXbhICLMj7O94.roa (raw, json)
Hash identifier: xmwTtTwmkjkUrex1cFgrJ2iNpgn0dS7U5dWwFlK3YdU=
Subject key identifier: BA:79:76:B1:3F:B3:B1:FF:19:80:CB:17:6E:12:02:2C:C8:FB:3B:DE
Certificate issuer: /CN=dc3f2639ffc78871ad64bfed71b7954bc90deab5
Certificate serial: 01856D941979BD68E07A5854B55B61E8B14F
Authority key identifier: DC:3F:26:39:FF:C7:88:71:AD:64:BF:ED:71:B7:95:4B:C9:0D:EA:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3D8mOf_HiHGtZL_tcbeVS8kN6rU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/unl2sT-zsf8ZgMsXbhICLMj7O94.roa
Signing time: Sun 01 Jan 2023 13:45:00 +0000
ROA not before: Sun 01 Jan 2023 13:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199141
IP address blocks: 91.245.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:94:19:79:bd:68:e0:7a:58:54:b5:5b:61:e8:b1:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc3f2639ffc78871ad64bfed71b7954bc90deab5
Validity
Not Before: Jan 1 13:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba7976b13fb3b1ff1980cb176e12022cc8fb3bde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:0f:8e:ef:1a:08:7e:5a:e0:1f:3e:72:c4:40:
32:f0:14:c1:6a:d2:eb:76:13:f8:c1:e0:cb:08:76:
d7:6b:4d:9e:29:88:df:43:13:6a:2d:00:7b:58:81:
dd:ca:33:3f:f2:0b:bd:70:b1:a7:24:25:5e:1d:36:
df:d7:15:24:03:80:bf:ce:1a:45:16:e7:98:c4:c4:
07:60:09:21:70:68:f4:78:62:32:59:2f:a7:ee:95:
83:a4:2e:f5:31:5e:d2:4b:81:bb:7e:74:96:38:4d:
fb:f7:30:e4:79:f1:01:94:43:75:27:c2:3b:86:77:
e9:07:58:21:a7:3e:90:92:e1:05:a7:28:34:d8:c3:
c9:ae:40:e6:b6:4a:8b:a6:e0:ce:69:9a:e1:6a:5e:
02:dc:3c:ad:f5:ef:09:97:3a:dc:a4:c5:02:68:ef:
ac:bc:3f:fb:41:d1:14:03:45:a4:80:e6:5b:eb:95:
52:de:83:ca:dc:5b:14:ef:29:4f:f6:2e:51:84:09:
a1:b2:f7:ff:b4:06:27:60:fa:95:c6:6f:88:5e:1c:
80:61:0f:b8:19:d3:a8:6d:7d:af:43:a6:cd:6f:6a:
fd:e3:9c:fc:8b:3c:96:84:91:3e:8e:6e:6c:1f:75:
34:4e:6f:c6:41:ca:b2:40:94:c8:cf:50:b4:d4:bb:
5a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:79:76:B1:3F:B3:B1:FF:19:80:CB:17:6E:12:02:2C:C8:FB:3B:DE
X509v3 Authority Key Identifier:
keyid:DC:3F:26:39:FF:C7:88:71:AD:64:BF:ED:71:B7:95:4B:C9:0D:EA:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3D8mOf_HiHGtZL_tcbeVS8kN6rU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/unl2sT-zsf8ZgMsXbhICLMj7O94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/48f48c-baa5-44a2-8f07-9cff3fe05180/1/3D8mOf_HiHGtZL_tcbeVS8kN6rU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.195.0/24
Signature Algorithm: sha256WithRSAEncryption
57:24:3e:d5:9b:9f:8b:c5:4f:34:7a:a7:69:84:e5:8a:ac:fa:
3b:55:2c:6e:0c:1d:90:b4:aa:10:e8:35:10:d0:9f:32:b9:22:
16:a1:00:d1:70:f3:33:f5:45:83:02:a0:7d:47:ff:e6:25:2e:
db:98:10:32:b0:5d:76:0a:0e:d4:ad:e2:66:5c:55:32:27:43:
fe:69:ab:73:78:4f:5d:ff:1b:0c:b1:e2:af:93:f0:83:d4:df:
ef:93:18:d1:d2:de:af:78:cf:75:af:b0:ed:48:0d:5d:38:43:
0a:ee:c7:e7:8d:d2:22:ca:be:e3:de:cb:09:e3:23:2b:57:c6:
ab:12:42:fd:b5:4c:68:f2:57:f5:ce:5d:46:17:6b:d6:93:73:
20:89:c5:d9:dc:4a:53:d7:e6:73:ea:94:1a:ad:6e:48:38:46:
f5:1c:7f:99:3b:d1:b8:3c:aa:6c:4d:53:86:8a:4b:bb:29:a2:
a1:c4:66:44:75:32:30:c4:81:33:a6:e2:86:57:4e:e1:c7:ac:
f4:60:82:9d:31:46:a0:4c:b5:56:9c:81:f6:4e:d2:b7:ba:90:
9b:15:13:3d:f6:de:2f:fd:7d:09:e2:4f:03:f7:ec:d5:c5:51:
d8:12:e0:f1:57:82:bd:50:75:50:52:b8:5f:cb:72:1d:d7:c4:
23:73:80:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:06 2024 by rpki-client on console-fra.rpki-client.org