Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/MZ1Z7iqs14GB5jrBYvBKJK6XJIE.roa
File: MZ1Z7iqs14GB5jrBYvBKJK6XJIE.roa (raw, json)
Hash identifier: fjx4QQ07o32eOdgCYK4ZHB5opzwCCqz6HQhap1bJY+Q=
Subject key identifier: 31:9D:59:EE:2A:AC:D7:81:81:E6:3A:C1:62:F0:4A:24:AE:97:24:81
Certificate issuer: /CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45
Certificate serial: 01856FA6F1A6062712B54F810866264489CB
Authority key identifier: B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/MZ1Z7iqs14GB5jrBYvBKJK6XJIE.roa
Signing time: Sun 01 Jan 2023 23:24:49 +0000
ROA not before: Sun 01 Jan 2023 23:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197060
IP address blocks: 91.216.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:f1:a6:06:27:12:b5:4f:81:08:66:26:44:89:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9aa01ab3526b8ebb8afb17b98a7127f0f54ca45
Validity
Not Before: Jan 1 23:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=319d59ee2aacd78181e63ac162f04a24ae972481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a8:8c:d2:87:58:da:42:31:57:39:a1:1a:00:
6c:0d:25:01:42:b5:32:a6:ad:7c:da:b7:88:96:a6:
f3:a7:8d:03:28:a8:8e:80:ce:48:96:52:5b:6e:6a:
6c:3b:06:06:fc:39:1d:5e:53:4a:f7:4e:5a:1c:eb:
c9:25:bb:be:48:b0:a1:4f:5b:5d:85:c3:6f:75:97:
34:ac:34:4b:96:99:04:6d:cd:4e:e9:fb:05:ed:bc:
86:bb:d9:a2:a5:06:08:38:80:b5:e8:e1:62:a1:5c:
43:75:e9:49:6d:63:83:70:b8:11:e7:83:ed:70:f4:
88:ae:8f:ab:0b:43:59:70:33:3b:4c:33:07:35:cf:
46:69:50:c4:94:11:80:5c:28:5e:01:c8:de:3f:f3:
82:cd:67:f7:02:bf:e3:29:27:b2:70:d2:84:0c:0d:
c0:21:90:0f:7e:0a:cc:b4:cd:57:08:7e:24:4a:75:
85:76:d6:75:31:2e:28:61:40:89:d8:f0:32:91:ac:
80:11:70:5d:51:a1:c7:a4:d9:14:6e:3f:78:28:2a:
df:b7:7e:0a:c3:75:23:07:6b:fe:45:db:a9:28:e3:
88:34:97:ab:ac:e3:d6:52:1a:87:fa:af:21:e8:62:
c9:7a:63:a8:a0:59:8a:f5:2d:ca:c6:57:71:1e:2b:
91:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:9D:59:EE:2A:AC:D7:81:81:E6:3A:C1:62:F0:4A:24:AE:97:24:81
X509v3 Authority Key Identifier:
keyid:B9:AA:01:AB:35:26:B8:EB:B8:AF:B1:7B:98:A7:12:7F:0F:54:CA:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uaoBqzUmuOu4r7F7mKcSfw9UykU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/MZ1Z7iqs14GB5jrBYvBKJK6XJIE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/b24786-e777-4b2f-9d81-5a7bfb3cd08b/1/uaoBqzUmuOu4r7F7mKcSfw9UykU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.86.0/24
Signature Algorithm: sha256WithRSAEncryption
62:58:23:55:91:9d:a7:53:17:0f:48:ee:b5:ba:21:07:05:52:
d9:d2:4c:34:ca:60:ba:11:7d:cb:db:08:32:4e:66:33:10:91:
e3:83:27:56:73:f6:39:b6:69:73:83:e3:b5:f8:fc:78:e4:78:
01:02:a8:43:5c:e7:87:6f:4b:fc:ec:5a:8e:14:02:15:97:a4:
b3:37:f8:84:00:95:c6:20:ea:3c:35:d4:a7:c6:60:9b:f3:6e:
45:1d:88:f1:4f:fd:fd:75:b0:3f:53:5d:50:be:0a:6b:93:77:
c9:b7:9f:c5:e2:f2:98:27:52:85:b8:86:97:49:d2:a9:5f:6c:
84:e8:af:aa:6a:b7:06:6a:3e:8c:b7:21:c1:2f:a3:0a:b0:e4:
ab:a7:3f:94:bc:72:a7:d8:95:16:d2:5e:4b:1b:29:17:21:2e:
ea:85:ac:66:5c:4f:a1:2c:d4:d2:aa:cd:42:d5:1c:b2:ca:bd:
9d:cc:93:0d:56:35:b3:93:aa:f8:96:25:07:3a:f9:54:b7:d9:
8f:59:47:73:2f:43:9a:ce:4e:b9:e5:96:25:98:ca:66:23:c3:
3b:10:8e:11:3d:19:70:b8:20:f0:c8:fd:ce:eb:28:2e:b9:ac:
c0:5f:a8:d5:61:ce:a3:07:f2:cc:28:24:ef:1e:c6:ca:1f:db:
5f:89:0e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:50 2024 by rpki-client on console-ams.rpki-client.org