Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c6ef8-543b-4886-829e-40a20dd2cfbe/1/SMxFCn9NOrKx5fOXaXHqYAlSHao.roa
File: SMxFCn9NOrKx5fOXaXHqYAlSHao.roa (raw, json)
Hash identifier: pr7YPtfZYuslQrT9wA/Y2rZK0rjVxmkOZsHcyJ6V57E=
Subject key identifier: 48:CC:45:0A:7F:4D:3A:B2:B1:E5:F3:97:69:71:EA:60:09:52:1D:AA
Certificate issuer: /CN=044349ada95df44ad5b47e562ff862e5bd4398ad
Certificate serial: 01856C9CA5E18DAD0BA56CD0B6573BDC1104
Authority key identifier: 04:43:49:AD:A9:5D:F4:4A:D5:B4:7E:56:2F:F8:62:E5:BD:43:98:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BENJrald9ErVtH5WL_hi5b1DmK0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c6ef8-543b-4886-829e-40a20dd2cfbe/1/SMxFCn9NOrKx5fOXaXHqYAlSHao.roa
Signing time: Sun 01 Jan 2023 09:14:43 +0000
ROA not before: Sun 01 Jan 2023 09:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198984
IP address blocks: 91.237.136.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:9c:a5:e1:8d:ad:0b:a5:6c:d0:b6:57:3b:dc:11:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=044349ada95df44ad5b47e562ff862e5bd4398ad
Validity
Not Before: Jan 1 09:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=48cc450a7f4d3ab2b1e5f3976971ea6009521daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cb:0d:ae:e4:0a:0e:83:0c:10:eb:19:89:30:
0e:9c:81:98:22:ea:12:84:84:96:34:a5:b2:a0:e3:
2d:57:6c:db:93:0a:07:1d:c6:76:2e:40:c4:af:ea:
9c:35:e0:0f:66:37:f9:c2:2c:fc:09:a9:92:5d:39:
80:7b:c7:79:2e:af:fe:e1:4e:85:51:5c:aa:ff:f0:
c2:24:fc:c3:9a:f3:f0:66:1d:82:18:42:ab:82:73:
96:f0:0b:5e:bf:69:75:5d:e7:01:ea:6e:b8:cc:bc:
81:ea:49:c2:7a:ce:cb:08:ff:7f:06:dc:6d:1d:81:
54:0b:c8:85:49:e6:f4:ea:43:9b:7f:0f:e2:12:7a:
b4:f2:bc:7a:54:1d:8c:a3:0e:0c:42:e9:e5:82:63:
5a:9c:b2:dc:74:12:89:78:4b:62:b6:81:26:20:dc:
74:99:c4:10:de:0b:87:cf:b2:96:32:6f:5f:6b:c8:
01:29:d4:ac:fd:f1:eb:7d:30:7c:9c:d0:9a:4f:c2:
e3:bc:27:e2:96:c7:19:1e:f4:e0:5b:23:c2:22:51:
1b:9a:b9:54:9e:32:f3:11:b5:a4:a2:77:a4:39:3b:
18:6a:5c:46:30:be:2f:45:92:a6:ff:c7:49:43:c2:
f6:a2:31:f6:56:c9:1c:47:40:e9:28:55:4c:a2:f0:
3c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:CC:45:0A:7F:4D:3A:B2:B1:E5:F3:97:69:71:EA:60:09:52:1D:AA
X509v3 Authority Key Identifier:
keyid:04:43:49:AD:A9:5D:F4:4A:D5:B4:7E:56:2F:F8:62:E5:BD:43:98:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BENJrald9ErVtH5WL_hi5b1DmK0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c6ef8-543b-4886-829e-40a20dd2cfbe/1/SMxFCn9NOrKx5fOXaXHqYAlSHao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c6ef8-543b-4886-829e-40a20dd2cfbe/1/BENJrald9ErVtH5WL_hi5b1DmK0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.136.0/23
Signature Algorithm: sha256WithRSAEncryption
20:5e:fb:00:a9:81:17:50:7d:3e:ea:60:7b:e1:42:1a:41:2b:
b1:7b:5e:de:83:1c:47:a8:18:a9:96:38:21:a1:31:7d:44:1a:
36:b9:77:73:0d:af:b7:c5:6a:59:9b:fc:bc:a9:e6:c5:b1:bb:
f5:4a:02:5f:05:76:7e:0e:53:bd:be:22:24:60:9b:b4:2b:96:
1f:79:81:ea:57:1e:11:dc:b7:82:e1:0e:e1:1e:25:7f:26:70:
15:29:cc:84:9c:22:2b:9e:6a:2e:1a:2c:1d:ed:ae:66:61:bc:
2b:c1:ca:d8:1a:8b:df:f6:31:a6:a7:b7:3e:06:e7:db:3b:9f:
6f:eb:ef:65:ee:e5:46:a0:59:f4:ab:ae:fd:0a:44:30:9a:d0:
65:d3:7c:b2:9f:be:60:dd:b4:fb:e1:3a:5b:6e:4a:ab:72:48:
98:38:d4:e4:af:c1:42:07:df:db:07:0f:eb:e4:11:11:ce:1c:
bf:4e:40:89:8e:be:fe:29:4b:b6:86:83:47:a3:5a:42:65:6c:
03:0f:86:1f:26:6d:25:f8:92:1d:88:45:45:0a:9d:32:10:0d:
f5:b0:f9:ae:53:a4:d8:2b:d5:36:3b:13:ed:7b:58:7e:b5:c1:
06:07:55:ee:4e:01:e9:d8:79:e3:76:92:0e:8c:3f:f8:b4:cc:
1a:0f:b0:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:30:10 2024 by rpki-client on console-ams.rpki-client.org