Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/swQV57CN2OiUJP6I9BojHxKWm54.roa
File: swQV57CN2OiUJP6I9BojHxKWm54.roa (raw, json)
Hash identifier: G8l7nLlUsLTti0084l6hPjyDw15cQnTTkO5sGPHMqF4=
Subject key identifier: B3:04:15:E7:B0:8D:D8:E8:94:24:FE:88:F4:1A:23:1F:12:96:9B:9E
Certificate issuer: /CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Certificate serial: 01856DEF67484DD9EA973C7CB8955FF6D811
Authority key identifier: C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/swQV57CN2OiUJP6I9BojHxKWm54.roa
Signing time: Sun 01 Jan 2023 15:24:44 +0000
ROA not before: Sun 01 Jan 2023 15:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8788
IP address blocks: 91.205.16.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:ef:67:48:4d:d9:ea:97:3c:7c:b8:95:5f:f6:d8:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c78b52ddfd0be561d410ca8846fc797e2298b3cc
Validity
Not Before: Jan 1 15:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b30415e7b08dd8e89424fe88f41a231f12969b9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d6:43:e7:5f:dd:58:ef:4e:1f:46:74:c0:02:
c2:31:5a:11:5b:28:77:fe:0b:d8:1e:46:4f:74:06:
2b:2a:51:7e:7a:b4:28:1e:d6:2a:cf:fc:10:14:88:
ab:90:3f:a3:d5:e4:86:a9:ed:12:34:45:9f:cc:22:
01:dd:07:f4:6c:2b:fc:70:79:3f:04:cf:8a:ad:45:
3e:43:c6:69:35:ff:c3:c6:1d:16:81:64:b2:96:61:
77:13:3b:d2:a8:ab:55:35:3e:db:f5:9c:ba:5e:74:
58:c3:a9:70:3d:6b:42:49:27:6d:fd:a1:75:e6:2c:
5f:c0:87:25:57:32:fd:c7:98:fb:6b:31:b7:92:8c:
28:f4:f8:d8:26:e2:a2:0b:ea:13:8c:ad:8b:79:fd:
b2:3b:6a:d5:16:61:9d:ab:82:60:3c:f8:cb:64:f3:
4d:41:93:2c:05:d3:fd:4d:3c:83:85:87:70:6b:11:
1c:42:48:71:6d:15:ab:62:2b:2c:66:b6:fb:22:d3:
13:50:f0:bf:e4:12:65:42:88:3d:4d:53:51:fb:ae:
33:bb:f7:06:77:1e:7a:df:84:a7:94:5a:e8:92:c0:
f0:8f:77:60:ab:c1:fd:d1:74:50:9e:47:85:2b:80:
c0:88:65:b6:9a:21:f9:2d:bb:8b:1a:27:d2:9b:bf:
42:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:04:15:E7:B0:8D:D8:E8:94:24:FE:88:F4:1A:23:1F:12:96:9B:9E
X509v3 Authority Key Identifier:
keyid:C7:8B:52:DD:FD:0B:E5:61:D4:10:CA:88:46:FC:79:7E:22:98:B3:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x4tS3f0L5WHUEMqIRvx5fiKYs8w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/swQV57CN2OiUJP6I9BojHxKWm54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/525707-1a12-4138-ae46-9f7e8a6122a3/1/x4tS3f0L5WHUEMqIRvx5fiKYs8w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.16.0/22
Signature Algorithm: sha256WithRSAEncryption
34:62:6f:5c:e3:bb:63:e5:02:36:43:31:29:70:ed:e3:36:d8:
1c:3b:74:72:b6:dd:fb:12:0e:6f:ed:65:1a:6c:41:fe:8a:fb:
4c:42:37:6e:d1:ad:52:70:8d:4e:fb:c0:76:1e:b6:11:71:03:
f2:e0:e1:e1:3c:c8:2a:89:4d:c8:28:4b:a6:0f:73:f8:ed:0f:
98:13:2b:67:d9:a6:d9:2c:6f:dc:61:d5:39:08:a5:34:11:0b:
2e:d9:c7:9c:a7:f4:86:3d:82:54:3e:20:d7:2c:8d:88:9f:c8:
6e:c3:8e:c5:3e:69:54:84:a7:16:11:5e:43:b0:7f:a1:60:77:
22:0b:8f:8b:32:0e:1a:dc:79:e4:22:70:ee:7a:a3:de:f9:9d:
8b:ef:35:88:4e:5e:45:3b:07:38:39:6a:56:5c:3f:a8:16:ee:
81:02:56:4f:f3:c8:86:97:f6:8c:2d:57:a3:66:ba:6a:60:ba:
61:cb:2a:f7:e0:96:a4:04:ae:6c:9c:92:c7:1b:ea:37:37:77:
4d:c0:e0:d0:cf:5e:d4:98:4b:ef:42:35:9c:11:31:45:fa:89:
24:56:f4:4a:f0:e3:f2:e7:4f:92:fc:43:c5:3e:62:fa:7d:b7:
55:f8:fe:03:4d:2d:7a:f7:2d:8d:16:7c:f5:58:3d:cf:85:08:
81:2c:fa:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:23 2024 by rpki-client on console-ams.rpki-client.org