Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/3bbb52-393e-4762-a70c-64a6a05b9905/1/V_b8zBaJVK0OlvwpiFOSyRFCEpY.roa
File: V_b8zBaJVK0OlvwpiFOSyRFCEpY.roa (raw, json)
Hash identifier: +KYqbxDGO6gwiH3KjEGrb9X0ZYetH9xtxRBlsJh4Jnc=
Subject key identifier: 57:F6:FC:CC:16:89:54:AD:0E:96:FC:29:88:53:92:C9:11:42:12:96
Certificate issuer: /CN=4b48cf146b4c73d274096d705708d24b729329f8
Certificate serial: 0185721E8CD697F6B417A308DD4538079737
Authority key identifier: 4B:48:CF:14:6B:4C:73:D2:74:09:6D:70:57:08:D2:4B:72:93:29:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S0jPFGtMc9J0CW1wVwjSS3KTKfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/3bbb52-393e-4762-a70c-64a6a05b9905/1/V_b8zBaJVK0OlvwpiFOSyRFCEpY.roa
Signing time: Mon 02 Jan 2023 10:54:42 +0000
ROA not before: Mon 02 Jan 2023 10:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50525
IP address blocks: 91.148.232.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:1e:8c:d6:97:f6:b4:17:a3:08:dd:45:38:07:97:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b48cf146b4c73d274096d705708d24b729329f8
Validity
Not Before: Jan 2 10:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57f6fccc168954ad0e96fc29885392c911421296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e0:33:7f:84:a2:39:74:dc:91:3e:64:f7:bb:
62:17:c5:0b:50:bc:e6:67:d6:59:8b:6a:1f:db:4c:
1d:0b:0f:88:9f:b9:57:36:77:df:38:84:27:c1:da:
44:0f:3a:a7:aa:ed:8c:9b:84:f3:0e:b3:23:57:99:
1f:ad:fa:b4:eb:50:2e:67:1d:32:44:0d:91:24:98:
6e:ea:9d:69:83:9d:ce:8b:8a:83:4d:72:40:47:0a:
2d:23:ac:14:b4:b2:65:6f:cd:b7:a4:c7:0d:28:9d:
02:3f:05:31:46:39:e5:da:01:08:fe:e2:82:43:9e:
6c:0c:8a:e4:3e:23:5f:49:8c:11:22:d1:3e:5b:a1:
c0:1e:ea:90:f9:f5:d3:55:7b:f0:51:b2:73:1c:cb:
64:45:da:d8:5f:7d:ce:8c:6d:ab:d1:70:d8:45:63:
c6:55:dc:d8:04:70:fe:23:ed:46:66:8c:f9:fd:0b:
3a:90:51:3e:91:b9:32:46:fd:46:39:55:87:4b:ef:
01:ae:8c:af:f5:5e:ca:9d:8b:e6:d1:16:c1:41:ae:
ef:f6:f8:1f:f8:39:3d:a4:7f:93:f8:cd:60:25:71:
14:dc:b4:51:b3:c9:15:81:81:b2:42:09:77:5d:4b:
8b:8f:9f:13:5f:4d:1e:4c:61:be:e6:c9:9a:84:67:
31:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:F6:FC:CC:16:89:54:AD:0E:96:FC:29:88:53:92:C9:11:42:12:96
X509v3 Authority Key Identifier:
keyid:4B:48:CF:14:6B:4C:73:D2:74:09:6D:70:57:08:D2:4B:72:93:29:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S0jPFGtMc9J0CW1wVwjSS3KTKfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3bbb52-393e-4762-a70c-64a6a05b9905/1/V_b8zBaJVK0OlvwpiFOSyRFCEpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/3bbb52-393e-4762-a70c-64a6a05b9905/1/S0jPFGtMc9J0CW1wVwjSS3KTKfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.148.232.0/22
Signature Algorithm: sha256WithRSAEncryption
71:c4:08:c8:aa:b1:fc:2c:77:1f:3b:59:b8:01:73:db:6c:9c:
18:40:3a:3b:f0:98:75:dc:a4:f8:a1:b4:e2:e0:1a:c6:80:84:
e5:90:07:4a:93:7b:63:6a:a9:cc:6b:27:30:39:53:1c:f3:2c:
ef:12:66:da:a1:0e:61:83:d8:29:4f:7c:d6:3a:be:7f:51:9d:
49:93:88:98:2c:7f:f4:83:70:42:59:6b:76:32:60:2d:56:e0:
bb:6d:c7:68:ca:ca:44:f6:6a:29:96:6c:06:9f:7f:57:f0:e2:
61:05:6f:c5:9d:69:2e:4e:5c:f6:87:9c:e9:c9:36:2e:42:90:
ac:ee:5d:97:5d:a0:de:b7:0f:c7:c7:b6:fb:40:31:18:28:d6:
24:11:df:6d:84:7d:0d:bd:40:6c:60:40:2f:4c:ae:5a:8c:92:
34:54:68:9f:cc:cb:91:26:88:31:2d:08:b6:9d:de:f9:b5:e8:
6c:4a:3f:33:cb:d2:7b:be:e3:3c:e6:98:5d:e6:ef:70:e4:1c:
b2:36:d9:50:6f:f1:53:b7:98:fa:ef:08:74:45:14:13:6e:de:
d0:83:a8:77:a8:1a:1b:5b:b9:2e:29:13:c8:53:11:e8:c9:3f:
02:a0:fb:5b:ee:31:d9:14:98:27:1e:24:0e:6a:ca:b7:88:87:
44:6a:0c:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:47 2024 by rpki-client on console-ams.rpki-client.org