Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/1bV1nU_04neFl2iL0iOsDgRj_Vg.roa
File: 1bV1nU_04neFl2iL0iOsDgRj_Vg.roa (raw, json)
Hash identifier: DKl9kr175qDOmh8g+A9Llj+TbjlfxiOUC9lmnL8R0Vc=
Subject key identifier: D5:B5:75:9D:4F:F4:E2:77:85:97:68:8B:D2:23:AC:0E:04:63:FD:58
Certificate issuer: /CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Certificate serial: 018570C2B3DC82798751B9FFE0C9E97E7A7E
Authority key identifier: 8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/1bV1nU_04neFl2iL0iOsDgRj_Vg.roa
Signing time: Mon 02 Jan 2023 04:34:46 +0000
ROA not before: Mon 02 Jan 2023 04:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43789
IP address blocks: 91.200.57.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:b3:dc:82:79:87:51:b9:ff:e0:c9:e9:7e:7a:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8a6024b2c27a67dff5b654efa06bf7bfc1222625
Validity
Not Before: Jan 2 04:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d5b5759d4ff4e2778597688bd223ac0e0463fd58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:6b:36:3c:d7:8b:81:2d:a4:e3:46:16:a5:d5:
16:db:4e:b1:e3:e7:07:e2:61:c1:79:91:f6:6c:72:
1a:b9:de:0f:d5:23:86:ac:88:7d:9a:ae:1b:73:f0:
93:49:32:11:b5:bf:3b:58:a6:0b:0a:cc:a4:34:de:
7e:db:72:cd:b9:8e:ec:81:82:c8:4f:3f:87:57:12:
c6:2f:a9:79:aa:85:21:3f:a6:38:af:66:37:54:96:
ce:9f:7b:31:76:d5:2f:aa:8f:01:2a:06:6c:6d:82:
38:6f:97:33:1b:38:3f:8c:0e:09:ae:99:46:a1:7f:
fa:26:4d:05:f8:a6:ea:6f:4f:44:fc:f1:47:4a:1b:
76:41:99:16:03:b6:2d:c1:61:ec:98:55:04:3f:d7:
4b:ac:20:ff:e5:2d:65:9f:4a:8f:9d:3f:16:82:06:
27:4e:89:c3:58:34:b6:13:d0:ed:0e:e3:a0:7c:90:
c5:ba:fa:09:a1:4b:c0:82:37:6a:0d:3c:15:0b:db:
09:9d:30:2e:d4:52:97:d3:97:d6:19:1d:19:74:da:
be:04:0b:01:11:4d:fe:f6:81:4a:94:87:7e:7e:ef:
76:a9:3e:5c:32:31:cd:59:a7:a2:ae:1b:80:1f:a5:
bb:d7:95:9e:bc:aa:88:3b:06:98:16:15:80:1e:03:
ea:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B5:75:9D:4F:F4:E2:77:85:97:68:8B:D2:23:AC:0E:04:63:FD:58
X509v3 Authority Key Identifier:
keyid:8A:60:24:B2:C2:7A:67:DF:F5:B6:54:EF:A0:6B:F7:BF:C1:22:26:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/imAkssJ6Z9_1tlTvoGv3v8EiJiU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/1bV1nU_04neFl2iL0iOsDgRj_Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/33eccf-0ae3-4c7e-a441-08e8f0cbb840/1/imAkssJ6Z9_1tlTvoGv3v8EiJiU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.57.0/24
Signature Algorithm: sha256WithRSAEncryption
86:98:90:49:9c:7d:96:7e:05:9c:75:84:fa:d2:5a:ac:f5:8a:
26:e7:cc:28:3d:e6:6a:da:0b:b4:ba:92:a9:5a:f8:10:0a:63:
ad:1e:5c:e2:a9:81:18:8d:58:ca:a2:d1:7b:22:a1:b4:40:72:
03:0b:b7:22:38:ee:af:9a:f3:38:37:5a:d4:f9:e5:a6:94:d9:
95:6d:c2:ac:4f:61:0a:f5:66:36:93:45:78:58:62:9e:3a:d6:
c2:81:23:47:f5:04:8e:e1:19:e5:c3:9e:f6:23:a7:04:a6:5b:
e6:a2:0c:b9:b3:fc:2c:aa:59:ab:08:fc:2a:71:cf:03:c6:30:
7d:ba:c5:fd:17:fa:9c:9d:be:63:2b:8c:ef:f7:94:f6:4f:c9:
66:81:23:05:95:56:12:ae:69:e9:e3:1c:9c:0c:c9:1d:dd:57:
78:c9:dd:48:63:77:3d:1c:e3:4c:a5:15:90:eb:94:94:95:5d:
b6:b3:b0:a8:09:dc:0a:9b:f9:9d:6e:a2:27:c4:7f:34:86:6b:
0b:2e:a6:fc:18:1e:28:b2:68:fe:52:30:02:05:5b:e2:a4:19:
24:07:78:15:c6:05:f3:1e:c9:7c:21:5f:7d:2f:3f:38:68:21:
38:65:18:23:64:f8:a5:df:63:15:f9:5f:7e:56:d8:c7:3d:74:
97:2d:9a:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 22 10:26:40 2023 by rpki-client on console-fra.rpki-client.org