Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/xQQAm4pGgQwfDIxnVy1dWURD_o8.roa
File: xQQAm4pGgQwfDIxnVy1dWURD_o8.roa (raw, json)
Hash identifier: I67yo1gGWALaqScE6GJD7q+p1dgqms1+5LumuXbclYs=
Subject key identifier: C5:04:00:9B:8A:46:81:0C:1F:0C:8C:67:57:2D:5D:59:44:43:FE:8F
Certificate issuer: /CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Certificate serial: 0185701529A28DD3FC44904F00F4EBEA8BDE
Authority key identifier: 16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/xQQAm4pGgQwfDIxnVy1dWURD_o8.roa
Signing time: Mon 02 Jan 2023 01:25:13 +0000
ROA not before: Mon 02 Jan 2023 01:25:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56454
IP address blocks: 91.223.165.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:29:a2:8d:d3:fc:44:90:4f:00:f4:eb:ea:8b:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1670e1bc5869c602b642449031d4b7116c9dfa26
Validity
Not Before: Jan 2 01:25:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c504009b8a46810c1f0c8c67572d5d594443fe8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:e4:74:a9:18:7e:a2:32:42:ed:ad:66:34:fe:
5a:67:56:f4:16:47:97:c8:f0:c4:7d:c5:76:1a:f7:
82:eb:a1:68:e3:6b:3f:30:28:fc:75:fe:c8:cb:bb:
15:51:58:02:4b:e1:b1:56:b9:3e:73:dd:d6:00:ef:
21:4d:47:f0:a1:30:98:fc:76:2d:ae:6d:b2:ac:70:
68:cd:98:ef:81:ae:92:fa:b0:96:0c:29:59:e7:82:
21:94:6d:b9:c3:46:f6:38:c7:98:c9:0b:2c:4e:1b:
b6:e5:e3:57:3b:30:8a:1f:22:ab:04:fc:fc:a1:8a:
4f:af:d1:d1:ab:14:4b:33:fb:b8:52:4c:8a:3b:79:
63:6f:3b:2f:15:bd:30:d0:5c:e0:06:35:36:e3:e4:
9b:64:be:98:6e:0b:da:85:80:9c:9f:90:13:0c:e9:
a9:b8:89:9b:ae:fd:2b:25:a9:c9:e5:78:34:0d:4c:
58:61:7c:49:ff:e2:23:33:ef:92:60:80:09:f0:d1:
95:f0:01:8c:44:73:bb:58:b2:1c:28:8a:23:15:97:
67:1d:56:50:ee:89:85:f8:ef:85:b4:81:07:b7:8a:
15:7b:b7:41:fb:2b:94:f0:5c:7b:d4:1b:b1:62:4e:
5c:90:d4:e3:87:92:d5:e3:ca:dd:f4:2f:67:28:0e:
5b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:04:00:9B:8A:46:81:0C:1F:0C:8C:67:57:2D:5D:59:44:43:FE:8F
X509v3 Authority Key Identifier:
keyid:16:70:E1:BC:58:69:C6:02:B6:42:44:90:31:D4:B7:11:6C:9D:FA:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FnDhvFhpxgK2QkSQMdS3EWyd-iY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/xQQAm4pGgQwfDIxnVy1dWURD_o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/ecb2aa-5e5c-4fef-bc8d-c0ea28ac367a/1/FnDhvFhpxgK2QkSQMdS3EWyd-iY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.165.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:9e:f0:f2:fc:ad:f9:d8:d0:a9:ff:f7:f6:f6:d5:ad:13:f2:
80:c3:f0:14:d0:3a:18:31:b2:a7:53:c8:3c:4e:a8:68:00:af:
47:c0:4b:2f:de:ca:a4:e3:74:07:14:72:3b:4c:9d:88:a3:9e:
86:ea:b9:da:32:bd:bf:f6:99:09:57:6f:16:16:bc:8e:a3:86:
d2:34:c4:2c:0a:3d:6f:0d:08:32:4f:ff:20:94:09:f3:bf:62:
50:e1:ac:01:0d:c7:a0:d1:00:b0:b6:e7:f8:70:37:7a:cb:58:
e9:b4:b9:c9:01:ae:c5:65:6c:86:cb:0f:b8:c2:84:66:11:ac:
b2:c0:d1:02:19:57:c6:f2:ae:f1:3a:9d:ce:19:ae:3c:3c:7a:
c8:13:e3:57:b0:dc:31:69:45:55:46:2a:15:14:ee:97:68:20:
f7:eb:1b:d3:da:e3:09:33:42:4b:e7:94:bd:3d:4e:74:75:65:
c6:36:a6:f3:7b:81:8b:03:d4:e0:53:5c:2e:ff:b2:4b:fe:9d:
0e:5d:f6:cb:59:95:a5:81:a0:fc:dd:88:41:87:ba:5e:0f:e9:
e9:c8:28:49:d6:ad:ea:d0:b3:59:20:2a:16:fd:f6:35:a8:a3:
fb:7a:33:1a:d0:49:b1:78:ca:03:13:a5:da:dd:69:37:db:8a:
c1:55:ee:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:32 2024 by rpki-client on console-fra.rpki-client.org