Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/tw1AOPJJeAEsAZ3D40sjg9ezOv8.roa
File: tw1AOPJJeAEsAZ3D40sjg9ezOv8.roa (raw, json)
Hash identifier: k+QwUXcP+u44C2Vnh1oUUw5YdNixLJ9jzLdL6H7ZcyA=
Subject key identifier: B7:0D:40:38:F2:49:78:01:2C:01:9D:C3:E3:4B:23:83:D7:B3:3A:FF
Certificate issuer: /CN=a951e638a2cb95c68bbc54a2728605b27f570681
Certificate serial: 0185723A4ACD38D60FEFE86DA931B055E21E
Authority key identifier: A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qVHmOKLLlcaLvFSicoYFsn9XBoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/tw1AOPJJeAEsAZ3D40sjg9ezOv8.roa
Signing time: Mon 02 Jan 2023 11:25:00 +0000
ROA not before: Mon 02 Jan 2023 11:25:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51885
IP address blocks: 91.223.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:3a:4a:cd:38:d6:0f:ef:e8:6d:a9:31:b0:55:e2:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a951e638a2cb95c68bbc54a2728605b27f570681
Validity
Not Before: Jan 2 11:25:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b70d4038f24978012c019dc3e34b2383d7b33aff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b0:a9:aa:68:2d:78:c9:23:cf:80:d0:dd:20:
0b:a4:e2:c9:57:89:d9:3a:cf:d9:1c:3d:04:74:54:
1a:a9:e5:db:f2:0f:45:93:53:e1:9d:43:f8:a9:3c:
a7:b2:ad:f2:b4:44:18:f3:fa:d2:09:9e:f9:72:cd:
55:46:9f:6c:46:d7:90:bf:bd:eb:b3:df:4d:97:cc:
c8:20:98:b9:4e:0d:36:40:c4:ae:20:e6:43:4c:90:
3a:52:fd:6a:69:62:ca:78:9c:e8:84:75:7b:e6:2f:
c8:09:98:ea:ce:17:ae:28:fe:2a:35:ce:12:72:c4:
6b:1d:33:21:ff:39:12:fb:89:66:3c:6b:f4:f1:89:
0d:1c:df:31:fc:58:9a:97:c0:1e:23:40:45:f7:9c:
7e:db:5e:0b:b4:d8:36:b4:67:9a:00:d4:6f:32:72:
ab:c5:6f:e3:28:d9:4e:59:6a:ba:d1:57:2f:52:bd:
c5:bb:a2:73:5f:14:6e:ca:64:d3:a7:68:b8:76:f8:
7d:0d:f8:03:64:a5:fe:e0:d8:25:de:b9:64:f0:c1:
76:9f:fc:94:a8:57:65:a3:9d:28:f1:b0:ab:90:5b:
aa:a1:93:ff:af:09:f4:02:24:c9:d2:07:7c:7a:d0:
1f:02:90:24:e7:58:3f:7c:7d:45:14:07:6e:e0:39:
66:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:0D:40:38:F2:49:78:01:2C:01:9D:C3:E3:4B:23:83:D7:B3:3A:FF
X509v3 Authority Key Identifier:
keyid:A9:51:E6:38:A2:CB:95:C6:8B:BC:54:A2:72:86:05:B2:7F:57:06:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qVHmOKLLlcaLvFSicoYFsn9XBoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/tw1AOPJJeAEsAZ3D40sjg9ezOv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f06e79-ed2b-43d5-b4c1-abdf906c5ade/1/qVHmOKLLlcaLvFSicoYFsn9XBoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.156.0/24
Signature Algorithm: sha256WithRSAEncryption
08:9d:d5:bc:73:58:72:d8:23:dd:91:33:82:04:c5:72:08:56:
e1:50:96:61:e8:09:35:6e:c7:81:bc:2c:8b:8c:fc:68:23:20:
e0:4c:2a:e1:b3:d9:19:8a:23:b4:5c:f2:5d:85:78:41:16:8d:
a7:7d:b8:96:59:22:bb:13:4a:68:82:43:c3:c2:ab:c8:1b:e8:
9d:a4:a1:2c:0d:a7:92:16:fb:92:20:8b:66:f5:e8:71:8d:54:
19:63:0f:03:cd:bc:a8:5e:dc:59:3e:be:9e:c0:35:2a:73:4c:
89:a4:1d:cb:fb:49:ba:78:52:e6:7f:c6:eb:b8:a6:9f:66:2b:
88:7b:50:56:ad:fb:86:23:96:86:24:08:d7:05:e9:ca:41:d8:
f6:73:f8:68:99:13:47:c2:ef:29:f4:9e:cd:20:aa:88:b2:4c:
af:9c:f2:f9:54:7c:14:60:e5:f0:eb:1c:07:39:8a:1b:0a:94:
73:1d:36:0d:d7:c9:b2:3b:96:c5:5d:09:66:30:16:f3:ea:b3:
42:af:eb:cf:71:dc:ec:b0:60:d5:9e:b8:6c:ab:80:80:12:2d:
aa:c8:50:c7:a9:fa:d9:88:9e:37:92:98:af:1d:cf:4e:a4:ae:
5f:7b:59:de:bf:29:71:8f:56:43:14:dd:ea:27:cc:46:12:24:
b5:8e:0d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:32 2024 by rpki-client on console-ams.rpki-client.org