Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/xpb1XW5zZZMhb64mZSpsUlSghi8.roa
File: xpb1XW5zZZMhb64mZSpsUlSghi8.roa (raw, json)
Hash identifier: oWWZEM77woVzdsvWmNS5VOdjJC+keAkINu02snAyl6E=
Subject key identifier: C6:96:F5:5D:6E:73:65:93:21:6F:AE:26:65:2A:6C:52:54:A0:86:2F
Certificate issuer: /CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Certificate serial: 0189CC5D10CC9D299D93437265BAEF796E20
Authority key identifier: 62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/xpb1XW5zZZMhb64mZSpsUlSghi8.roa
Signing time: Sun 06 Aug 2023 19:39:58 +0000
ROA not before: Sun 06 Aug 2023 19:39:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202432
IP address blocks: 91.108.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:cc:5d:10:cc:9d:29:9d:93:43:72:65:ba:ef:79:6e:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6228e7e01fada49c1a52fa13f3626c41b41a51b8
Validity
Not Before: Aug 6 19:39:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c696f55d6e736593216fae26652a6c5254a0862f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5d:81:b9:d8:4a:8f:06:fc:97:39:3a:fc:85:
9a:4b:d3:17:9d:0f:fa:65:9d:dd:80:38:7d:76:d4:
1a:60:23:aa:86:88:a9:68:98:f9:d9:b4:53:e8:97:
25:fa:6d:29:2c:6a:0e:a3:5a:55:58:36:e2:33:8c:
29:93:8b:25:af:4f:3a:fe:c9:20:cb:01:54:a2:1b:
9a:c5:55:09:94:4d:bc:42:c6:16:3f:85:45:07:aa:
5c:0e:ee:65:8c:e6:32:a4:94:12:e4:8c:89:b4:34:
54:4e:18:92:cd:76:c2:1d:ef:04:90:e9:78:da:60:
83:2a:6c:80:44:b8:0d:84:d0:dd:80:79:85:20:dc:
08:01:48:65:a6:ec:17:bf:d9:3e:c9:98:14:3c:86:
79:15:c7:f0:71:30:c5:f9:71:c2:ca:54:aa:c2:db:
72:70:bd:06:7d:59:c9:38:4c:7e:2e:36:97:aa:66:
da:74:48:c5:6e:cd:48:6f:98:90:bb:96:ea:ea:aa:
d6:dc:38:23:90:20:a4:9a:9e:9b:58:84:76:52:14:
43:14:47:98:4d:12:d7:09:f8:65:2a:2d:e7:df:c1:
42:c6:96:96:dd:02:12:ee:05:1c:ef:a0:40:25:dd:
b8:cf:5b:2e:45:f6:ae:7b:e1:d0:89:a5:12:84:3a:
8c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:96:F5:5D:6E:73:65:93:21:6F:AE:26:65:2A:6C:52:54:A0:86:2F
X509v3 Authority Key Identifier:
keyid:62:28:E7:E0:1F:AD:A4:9C:1A:52:FA:13:F3:62:6C:41:B4:1A:51:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yijn4B-tpJwaUvoT82JsQbQaUbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/xpb1XW5zZZMhb64mZSpsUlSghi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/baaff3-aeb4-4616-8fb5-76741652510d/1/Yijn4B-tpJwaUvoT82JsQbQaUbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.42.0/24
Signature Algorithm: sha256WithRSAEncryption
c8:b9:b5:9a:03:2b:7c:56:af:4c:1f:82:3d:fe:2d:31:76:7e:
4e:db:73:a7:ed:07:db:36:0e:13:3d:09:32:96:b4:3c:3b:57:
ed:f0:27:a3:e3:27:7a:bc:66:8c:0a:f5:a4:c1:27:ea:65:8b:
74:d6:dc:78:62:e3:b0:16:64:e3:ed:e8:a1:e8:a1:d9:f5:e8:
7c:b5:ba:09:24:35:0d:26:03:17:6f:55:5d:7c:dc:41:a2:ee:
64:32:cb:82:73:49:76:66:31:0d:ae:14:79:b9:eb:43:a7:ea:
5b:bb:8c:55:20:a7:ce:05:4b:fd:77:c8:42:e3:0f:eb:92:94:
24:50:ae:f3:0d:f8:54:27:95:ee:31:eb:a9:3a:35:4c:5c:fd:
5c:94:04:e8:5a:ef:0a:46:75:e6:d0:7b:74:8a:d1:5c:aa:a6:
9e:8a:b4:2e:4a:c8:45:f9:20:d2:cf:38:1f:d8:2f:05:60:46:
83:5a:2d:f1:d5:b9:1c:d7:aa:16:5b:0f:ba:19:cf:3f:36:75:
cd:fd:21:95:70:43:60:c0:9b:81:29:95:83:e1:bb:f9:1d:b2:
39:3c:10:aa:5b:e1:44:08:de:ee:6f:67:2e:a3:d9:f1:a5:be:
83:7b:0f:f9:c8:98:65:94:da:fe:1b:b0:46:9a:e4:2e:4f:9f:
2b:5f:d8:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:29 2024 by rpki-client on console-ams.rpki-client.org