Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/z65NT50dlSTRZk4QohYpd1D51BI.roa
File: z65NT50dlSTRZk4QohYpd1D51BI.roa (raw, json)
Hash identifier: aXYzOUa8bkos/qHGkVCh83N/A9v2kVLRn7eXd1PM6RU=
Subject key identifier: CF:AE:4D:4F:9D:1D:95:24:D1:66:4E:10:A2:16:29:77:50:F9:D4:12
Certificate issuer: /CN=8c20753dd51633aa2e17a92c59f4c4845d876cd3
Certificate serial: 01856D8AC61357EF3F15887D42EB3B79D174
Authority key identifier: 8C:20:75:3D:D5:16:33:AA:2E:17:A9:2C:59:F4:C4:84:5D:87:6C:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jCB1PdUWM6ouF6ksWfTEhF2HbNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/z65NT50dlSTRZk4QohYpd1D51BI.roa
Signing time: Sun 01 Jan 2023 13:34:49 +0000
ROA not before: Sun 01 Jan 2023 13:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202081
IP address blocks: 91.222.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:c6:13:57:ef:3f:15:88:7d:42:eb:3b:79:d1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c20753dd51633aa2e17a92c59f4c4845d876cd3
Validity
Not Before: Jan 1 13:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfae4d4f9d1d9524d1664e10a216297750f9d412
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6c:67:85:7f:f5:8d:f6:d9:33:24:ca:cd:13:
90:a2:dd:9b:65:69:81:94:03:e6:70:e7:de:4c:c9:
ab:57:3b:66:f5:4c:16:66:61:7a:90:67:b5:e7:ed:
fb:87:1d:f9:95:02:5c:47:27:aa:08:b3:3d:0a:b1:
09:54:34:8b:46:7f:a3:52:88:79:27:22:6b:b0:82:
51:49:da:8b:4e:84:66:7f:61:1f:25:d9:62:f9:d4:
fa:4d:13:9b:d5:50:7a:b1:21:b2:12:01:74:ef:d0:
d2:ac:68:11:c5:f7:4d:e8:ae:43:11:43:9c:f1:a0:
d4:cd:f3:d1:d0:e1:d1:02:a1:f8:05:3a:20:f8:a8:
b4:7d:fd:f5:88:f8:9f:fe:f9:de:80:b9:0d:44:f9:
8f:e5:fe:33:f9:67:e6:23:5c:c6:5e:92:75:d8:54:
d2:9f:93:c4:a0:2e:41:d4:ec:93:c6:2d:31:25:28:
25:0f:85:eb:96:7d:dc:ab:c0:87:08:34:ad:20:17:
f0:d5:96:66:b4:9d:88:a4:6d:d7:d9:57:b8:03:70:
36:06:30:95:8e:63:36:ee:ee:00:69:ac:a7:b7:f5:
4a:3f:94:6d:74:82:78:2e:cc:66:54:b9:35:36:d1:
2e:de:c6:76:64:8c:85:42:3b:12:32:e5:fa:5e:a3:
98:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AE:4D:4F:9D:1D:95:24:D1:66:4E:10:A2:16:29:77:50:F9:D4:12
X509v3 Authority Key Identifier:
keyid:8C:20:75:3D:D5:16:33:AA:2E:17:A9:2C:59:F4:C4:84:5D:87:6C:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jCB1PdUWM6ouF6ksWfTEhF2HbNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/z65NT50dlSTRZk4QohYpd1D51BI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/5c3cfa-a363-40a4-bfa6-c29beb1a4734/1/jCB1PdUWM6ouF6ksWfTEhF2HbNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.185.0/24
Signature Algorithm: sha256WithRSAEncryption
28:4c:f4:79:e5:29:b2:56:d8:33:e9:3c:15:1e:30:83:2f:dc:
85:08:86:38:e4:9b:f4:fd:71:a4:a0:d0:e4:e2:62:97:a9:eb:
58:1b:4c:b4:fc:74:c3:c0:a9:72:34:9e:74:ec:92:4a:dd:24:
9b:c6:a9:1f:29:f2:70:ee:8f:ce:37:76:86:98:90:2f:a7:eb:
c3:6f:59:26:b9:5b:f0:eb:af:19:68:8a:cb:43:07:f4:b7:36:
70:1d:ba:5a:0c:cb:d8:b5:f4:ab:ad:09:53:37:df:33:8d:c4:
60:11:50:78:22:31:52:32:e0:3d:3e:62:14:70:ef:e1:46:f2:
71:c1:57:17:9b:93:ee:c3:16:9e:98:59:b3:8a:9b:a2:65:83:
98:bb:61:4c:48:27:f7:bd:b4:0c:1e:9d:0a:15:0c:58:4a:7c:
5d:28:39:7c:6b:c2:c0:8b:ce:24:a1:8e:ca:28:45:37:11:87:
8a:6c:a3:b5:e6:7b:18:ad:aa:e8:0b:7a:ec:92:1a:92:3d:e9:
bb:86:30:09:b4:63:f5:82:da:08:35:cd:58:c1:62:bd:b4:37:
89:89:c5:aa:d9:2f:d1:33:6c:a1:d2:25:6d:d4:42:8d:c6:f8:
60:26:70:26:2c:12:dc:03:5f:99:75:5b:e1:04:f9:02:b1:ac:
47:36:12:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:03 2024 by rpki-client on console-ams.rpki-client.org