Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/tNsueGv6mCWWsKTE077SlSjyB0Y.roa
File: tNsueGv6mCWWsKTE077SlSjyB0Y.roa (raw, json)
Hash identifier: nru9YWOgKcQPajfTv4pFm+nAZeVj1hFoM0WWK2bGjeg=
Subject key identifier: B4:DB:2E:78:6B:FA:98:25:96:B0:A4:C4:D3:BE:D2:95:28:F2:07:46
Certificate issuer: /CN=e996a6ffdad5ceb2626617bd6ed9c4ec571d0f3a
Certificate serial: 018573BACC6AED7A5BDF30458E4DB311F24B
Authority key identifier: E9:96:A6:FF:DA:D5:CE:B2:62:66:17:BD:6E:D9:C4:EC:57:1D:0F:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6Zam_9rVzrJiZhe9btnE7FcdDzo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/tNsueGv6mCWWsKTE077SlSjyB0Y.roa
Signing time: Mon 02 Jan 2023 18:24:59 +0000
ROA not before: Mon 02 Jan 2023 18:24:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47993
IP address blocks: 91.208.168.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:ba:cc:6a:ed:7a:5b:df:30:45:8e:4d:b3:11:f2:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e996a6ffdad5ceb2626617bd6ed9c4ec571d0f3a
Validity
Not Before: Jan 2 18:24:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b4db2e786bfa982596b0a4c4d3bed29528f20746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:02:db:8e:71:9d:ad:7a:07:72:16:e6:ed:a7:
3d:7e:a9:a5:44:bf:91:b7:0f:17:83:c6:d8:a0:fc:
7f:b5:86:a9:10:c9:64:09:2d:9d:ba:ca:b7:7e:f3:
c8:d3:97:c9:16:57:7e:88:1b:df:33:23:84:ef:8c:
34:fd:b5:49:ed:0b:9c:de:17:f7:e4:b5:b2:50:5d:
f4:da:77:a4:24:8a:cd:86:90:60:32:4b:1b:fa:db:
26:1a:a4:b0:87:46:21:47:e7:85:66:03:6a:4f:97:
f5:c8:48:2b:fe:72:32:c9:50:e4:0c:bd:94:a5:36:
45:7d:7a:0a:b9:a2:2f:b0:2b:ec:01:14:18:31:49:
61:6f:33:45:3a:85:85:c7:c4:1d:c8:1d:47:3c:fd:
86:84:22:9c:0f:01:19:ce:c4:a2:d4:c2:07:3c:e7:
c1:d5:d9:d2:cd:13:a0:87:a7:76:73:5a:68:c7:10:
54:d6:fe:65:da:4e:d1:e4:c4:f6:ca:3d:59:3c:3f:
cb:a7:f8:57:31:7b:d3:51:c8:a7:db:be:a2:4f:86:
36:f7:b9:fd:01:a4:35:c9:b5:39:2b:fd:7c:6f:8f:
f3:9e:d9:8d:95:0d:7c:27:e9:fa:5c:e5:b5:9f:0a:
09:87:d4:6f:38:86:87:e9:95:a8:85:34:c8:05:f3:
93:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:DB:2E:78:6B:FA:98:25:96:B0:A4:C4:D3:BE:D2:95:28:F2:07:46
X509v3 Authority Key Identifier:
keyid:E9:96:A6:FF:DA:D5:CE:B2:62:66:17:BD:6E:D9:C4:EC:57:1D:0F:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6Zam_9rVzrJiZhe9btnE7FcdDzo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/tNsueGv6mCWWsKTE077SlSjyB0Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/6c15e8-8a82-49d5-a309-38be6a47cfcc/1/6Zam_9rVzrJiZhe9btnE7FcdDzo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.168.0/24
Signature Algorithm: sha256WithRSAEncryption
81:bf:6b:59:7c:f9:af:dc:9e:fc:e5:ce:34:36:48:8f:8f:db:
bd:3b:41:66:82:d6:47:a8:6b:28:41:40:18:58:ea:1b:d9:ad:
94:b5:cc:dd:67:4b:84:38:12:e0:05:f5:c5:81:5d:e5:7c:a7:
b0:f4:d4:03:a7:34:33:8c:7e:f0:a4:fb:a8:2f:65:2b:83:2d:
c3:d7:7b:95:17:4e:8a:b7:44:bd:77:db:ba:70:dd:c0:31:75:
0b:23:b9:3e:ab:e1:38:1f:ab:11:d1:66:73:b1:46:2f:8e:07:
15:38:11:84:8c:d8:d1:bf:38:c3:7d:cb:b0:e3:d7:95:de:64:
e5:26:47:b6:db:d0:98:c5:ed:72:4b:1b:05:05:26:63:b5:63:
99:02:8c:39:4a:26:7f:8d:19:2d:1d:23:dc:e8:8e:d7:cf:0f:
7d:c8:fb:01:96:c9:32:2f:bb:ec:aa:f5:43:8e:db:2c:5f:8a:
2b:c9:99:bc:a3:50:fc:4f:c3:22:0e:59:7f:3a:a9:cd:3c:6c:
e9:d0:91:b7:2e:2e:9e:91:2f:05:c9:f0:91:33:6b:47:17:3d:
0d:2f:a6:fe:0a:8a:80:47:1f:95:7d:e0:0d:42:1b:23:c6:32:
90:be:01:28:51:c1:18:d0:d8:5c:f0:8a:8d:03:8e:2b:8a:31:
14:bf:e0:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:30:52 2024 by rpki-client on console-fra.rpki-client.org