Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/aF9mB2p99elns_72e58zsFwiOIc.roa
File: aF9mB2p99elns_72e58zsFwiOIc.roa (raw, json)
Hash identifier: ZnRpp8DNBRldnGvNkgl2SkXQqEqEFDv40q/r95hCgOg=
Subject key identifier: 68:5F:66:07:6A:7D:F5:E9:67:B3:FE:F6:7B:9F:33:B0:5C:22:38:87
Certificate issuer: /CN=8b31967110cabeec4a66b78037e52a87b2bc8f5d
Certificate serial: 01856B4A2FA673047B3477B7B1DC1A180051
Authority key identifier: 8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izGWcRDKvuxKZreAN-Uqh7K8j10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/aF9mB2p99elns_72e58zsFwiOIc.roa
Signing time: Sun 01 Jan 2023 03:05:02 +0000
ROA not before: Sun 01 Jan 2023 03:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12353
IP address blocks: 91.216.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:4a:2f:a6:73:04:7b:34:77:b7:b1:dc:1a:18:00:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b31967110cabeec4a66b78037e52a87b2bc8f5d
Validity
Not Before: Jan 1 03:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=685f66076a7df5e967b3fef67b9f33b05c223887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:69:5f:3f:e7:33:f4:92:77:08:00:85:e7:ac:
f6:87:aa:90:19:3f:ae:b4:f1:ca:65:19:37:a6:95:
8a:f3:43:ff:7a:89:a9:1b:8b:c4:48:10:d0:46:a9:
33:64:18:e2:ef:2d:b8:ca:53:2f:89:0d:54:c4:31:
4e:0a:be:a4:91:87:bc:e5:0a:75:7b:59:83:34:b3:
8d:1b:bd:d2:26:bc:c0:63:29:c9:83:06:77:75:7f:
9a:35:18:99:a0:3d:66:3b:de:69:c3:59:00:1f:a7:
4e:76:c2:a3:c4:89:21:f3:ca:51:3b:3f:3a:6c:19:
3d:ab:5c:9f:7d:14:e7:38:8c:6a:f7:fc:37:f7:bc:
db:9d:f4:a8:a9:d9:92:94:f9:02:d6:fb:30:6e:6e:
cd:d2:ef:0c:ba:2e:98:f0:7c:37:6d:e3:73:da:22:
8b:69:eb:69:cc:7b:80:ed:5c:f6:ab:9f:6f:26:66:
19:c9:a4:06:a4:8e:52:52:70:6c:7d:fb:c5:30:44:
5b:ff:d0:fc:f8:c2:10:54:ae:96:37:c7:2f:02:45:
1b:d4:a6:21:84:52:f8:53:97:c2:6d:04:ab:c4:c4:
2d:ac:7b:0b:fe:33:fa:fa:9f:28:57:11:4a:52:f3:
e4:1e:07:77:5c:af:46:f8:9c:e2:78:03:3a:17:cc:
f0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:5F:66:07:6A:7D:F5:E9:67:B3:FE:F6:7B:9F:33:B0:5C:22:38:87
X509v3 Authority Key Identifier:
keyid:8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izGWcRDKvuxKZreAN-Uqh7K8j10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/aF9mB2p99elns_72e58zsFwiOIc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/izGWcRDKvuxKZreAN-Uqh7K8j10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.117.0/24
Signature Algorithm: sha256WithRSAEncryption
31:23:38:6a:cc:04:4a:d5:be:f9:9c:61:f6:18:7e:c9:79:93:
ec:ad:e8:2e:1c:20:ed:f1:dc:d7:81:5b:21:ec:6f:d2:13:ed:
6c:a8:31:3f:66:e6:95:4b:52:09:60:bd:cc:45:81:08:72:c7:
9b:b5:2b:0e:ef:bf:a0:5b:5c:21:78:02:c3:7b:37:3b:76:ea:
d4:ac:97:cd:d7:95:43:33:c7:71:39:d0:b7:c5:9c:ea:83:a5:
4d:e4:5c:29:67:c6:19:aa:62:19:9d:ef:34:96:bf:b5:1f:9f:
e6:bb:40:9b:c6:83:c1:ec:cd:88:70:9c:80:c4:69:ba:54:db:
96:5a:b4:2e:78:2a:ea:b9:10:d1:aa:ec:5f:c4:2a:39:d8:65:
f5:96:cc:36:89:0d:77:f9:b8:f9:6b:41:5a:d0:5f:ef:cc:2d:
48:b4:be:91:e4:7f:4c:e6:bc:a3:b2:df:33:d0:1a:eb:78:ba:
ec:7f:41:10:c7:cf:f9:d7:de:e2:74:fe:b4:6e:a9:5c:88:9e:
cc:0e:2d:98:7c:ce:c5:6a:ba:1b:da:82:f2:03:1a:ba:ad:22:
da:8a:68:51:8e:92:6a:3c:28:f4:1a:5b:80:dd:1b:54:dd:35:
3d:87:06:a0:4c:20:0b:fb:94:7c:a9:92:37:30:d0:af:c9:85:
5c:1b:b4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:00 2024 by rpki-client on console-fra.rpki-client.org