Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/5SzJjQJJPYriLJGNfc4bDB6sLTk.roa
File: 5SzJjQJJPYriLJGNfc4bDB6sLTk.roa (raw, json)
Hash identifier: gBDTHMTqfSe6DVoTI0cmprbXkPKuyiQOgw0YgAyyasc=
Subject key identifier: E5:2C:C9:8D:02:49:3D:8A:E2:2C:91:8D:7D:CE:1B:0C:1E:AC:2D:39
Certificate issuer: /CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Certificate serial: 01857246FA7096814B42782080B3C48F0988
Authority key identifier: EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/5SzJjQJJPYriLJGNfc4bDB6sLTk.roa
Signing time: Mon 02 Jan 2023 11:38:52 +0000
ROA not before: Mon 02 Jan 2023 11:38:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28753
IP address blocks: 91.243.42.0/24 maxlen: 24
91.243.41.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:fa:70:96:81:4b:42:78:20:80:b3:c4:8f:09:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaaa8a0a5fdfd698e104be36a2aeec813aeca071
Validity
Not Before: Jan 2 11:38:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e52cc98d02493d8ae22c918d7dce1b0c1eac2d39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:8a:ba:5b:48:d7:12:c6:9d:96:ff:a6:9a:9a:
22:5a:8f:42:1b:ad:0a:1e:0f:36:6f:72:f3:71:55:
88:d7:b9:c2:75:86:3c:9f:2b:4b:ae:01:02:e5:9a:
a4:94:65:40:2b:e3:7f:31:9d:9d:73:94:45:76:67:
d3:7a:da:1e:36:ea:9d:6c:0d:34:0f:8f:5d:83:04:
d3:02:0a:9c:4d:ee:41:c3:42:d0:47:bb:fb:7e:f2:
9d:62:6c:ec:b4:d0:d1:74:5f:5d:e6:6e:d2:cc:85:
2e:45:19:90:bb:13:3f:de:fc:fd:4d:c0:a5:1c:be:
5c:60:27:2c:56:18:61:13:b2:6d:22:4f:7a:15:70:
9a:b1:88:8e:ee:32:3f:8f:46:68:12:33:3d:3d:3a:
a5:0c:29:0d:7a:86:9f:3f:8c:5e:af:f8:29:5b:05:
87:c4:f5:77:c4:44:86:53:c5:cf:c2:ad:42:d5:93:
ce:b9:a1:42:c2:8e:a2:08:bb:a6:12:5b:ed:a8:af:
13:00:12:f0:d0:e3:4b:7f:53:0e:5d:9c:27:3f:af:
dd:0d:d9:67:bc:a9:68:a3:4b:14:5a:ba:47:da:38:
fe:9d:0f:e4:4d:14:d8:8c:f0:07:a0:77:6a:50:ab:
81:73:ff:d7:18:1c:4c:a6:f1:69:48:18:8e:3c:b9:
5f:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:2C:C9:8D:02:49:3D:8A:E2:2C:91:8D:7D:CE:1B:0C:1E:AC:2D:39
X509v3 Authority Key Identifier:
keyid:EA:AA:8A:0A:5F:DF:D6:98:E1:04:BE:36:A2:AE:EC:81:3A:EC:A0:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qqKCl_f1pjhBL42oq7sgTrsoHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/5SzJjQJJPYriLJGNfc4bDB6sLTk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/2932df-a4bd-4af5-a4d4-89d09240c43b/1/6qqKCl_f1pjhBL42oq7sgTrsoHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.41.0-91.243.42.255
Signature Algorithm: sha256WithRSAEncryption
54:69:88:1b:5b:e5:9c:51:6e:22:bc:17:73:b9:48:4b:c7:2e:
b3:6e:4b:b5:9c:56:32:bb:7f:29:cc:11:0c:31:c1:35:9a:ee:
59:c0:d5:56:97:c2:3e:d8:24:22:f9:d1:9f:a7:a8:66:45:a9:
df:dd:3f:8f:f1:09:e5:54:25:53:5c:88:7d:1e:d7:4b:4e:a4:
c2:e8:fc:c8:2f:39:91:55:d8:be:32:ce:96:a9:8a:04:5f:2e:
3a:da:88:0c:46:9b:7e:b6:37:53:e4:35:ce:60:4b:0a:70:f8:
21:31:1c:c2:11:e6:c4:4d:86:fd:86:3a:63:12:f9:67:a3:ec:
6d:75:ad:d3:d7:4e:2f:10:22:54:c0:76:3a:a8:45:e3:8b:cd:
b7:56:b5:47:55:26:a1:06:17:25:73:38:ca:58:ff:56:18:4e:
be:65:78:a3:6e:71:84:ae:3f:8b:35:4d:2f:94:14:83:1d:37:
ec:ed:d4:b2:35:2a:00:56:7e:57:46:02:c7:5c:50:57:5a:43:
ff:62:0f:2d:62:49:ba:70:ce:99:a7:ce:cf:1e:5d:8a:f6:61:
a8:ad:fd:07:09:ff:98:ac:b5:f2:91:a8:9c:a8:74:a7:76:eb:
82:25:f5:44:76:e8:e1:3d:28:ab:23:13:9e:d8:74:56:f1:bb:
db:16:8b:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:13:47 2024 by rpki-client on console-ams.rpki-client.org