Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/9e7d10-243f-47b5-afc4-356ee9776153/1/AOVOqFtZYa1j0gylJcChpOlCR1A.roa
File: AOVOqFtZYa1j0gylJcChpOlCR1A.roa (raw, json)
Hash identifier: kksD/VYEcc24vj5rBsv4BY81ZYEemVlNt4unKjfAi00=
Subject key identifier: 00:E5:4E:A8:5B:59:61:AD:63:D2:0C:A5:25:C0:A1:A4:E9:42:47:50
Certificate issuer: /CN=bd1911343226229d203ea326a9d69d4fc346c575
Certificate serial: 018570673D582EAA6D55A18BEC10290437D2
Authority key identifier: BD:19:11:34:32:26:22:9D:20:3E:A3:26:A9:D6:9D:4F:C3:46:C5:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRkRNDImIp0gPqMmqdadT8NGxXU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/9e7d10-243f-47b5-afc4-356ee9776153/1/AOVOqFtZYa1j0gylJcChpOlCR1A.roa
Signing time: Mon 02 Jan 2023 02:54:52 +0000
ROA not before: Mon 02 Jan 2023 02:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51184
IP address blocks: 91.216.8.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:3d:58:2e:aa:6d:55:a1:8b:ec:10:29:04:37:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd1911343226229d203ea326a9d69d4fc346c575
Validity
Not Before: Jan 2 02:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00e54ea85b5961ad63d20ca525c0a1a4e9424750
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:90:fa:e6:79:b6:2c:f7:89:0c:9b:51:05:8e:
c7:ca:15:99:f1:ba:b2:fb:01:34:6d:1d:92:2d:f4:
30:46:97:bb:26:88:fc:9f:3d:1b:45:87:0e:ac:e3:
4f:ca:75:df:a1:eb:44:aa:e0:c9:fd:4a:3e:ae:bd:
76:58:ec:eb:07:4c:e3:cd:33:54:bc:1e:f7:e5:a2:
b7:3a:9f:e9:fa:8c:6e:29:85:b9:5a:1a:17:15:c4:
87:e5:d5:2a:eb:f8:49:3b:ea:9d:f2:02:0c:93:93:
6d:dd:26:08:fc:3d:aa:ca:2b:b8:b2:f0:7c:92:4d:
94:0d:69:d0:56:80:b9:13:73:33:da:45:d9:ff:d6:
d0:31:f5:62:2c:91:60:55:44:af:6e:39:5c:e0:b9:
e8:4f:bc:ad:d1:8e:3a:e1:cf:5f:c4:5b:9e:fd:4b:
c7:0e:26:7e:37:27:bb:d8:d0:03:91:3b:a7:1f:cf:
23:fe:b8:cd:06:74:72:92:16:86:f4:6f:31:48:87:
9f:18:43:09:c1:c0:07:c8:5b:ac:d6:26:86:90:6a:
ed:f6:e9:0e:36:2b:8c:1b:06:a6:1d:09:00:f4:55:
6c:26:4e:49:ae:b7:5e:b0:84:b3:ae:2b:07:a2:fd:
bd:96:f3:5f:fe:3c:51:d9:72:42:c2:c3:9b:e5:6d:
dc:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E5:4E:A8:5B:59:61:AD:63:D2:0C:A5:25:C0:A1:A4:E9:42:47:50
X509v3 Authority Key Identifier:
keyid:BD:19:11:34:32:26:22:9D:20:3E:A3:26:A9:D6:9D:4F:C3:46:C5:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRkRNDImIp0gPqMmqdadT8NGxXU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/9e7d10-243f-47b5-afc4-356ee9776153/1/AOVOqFtZYa1j0gylJcChpOlCR1A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/9e7d10-243f-47b5-afc4-356ee9776153/1/vRkRNDImIp0gPqMmqdadT8NGxXU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.8.0/24
Signature Algorithm: sha256WithRSAEncryption
52:d0:b4:62:b3:73:5e:da:b6:99:10:b6:68:36:30:8b:a2:af:
89:19:cc:cb:a9:44:03:62:1c:77:e1:2e:03:47:19:d2:1f:07:
91:39:1a:b0:49:b4:eb:e3:22:31:53:5a:3b:bc:08:c3:49:2c:
bc:41:31:92:7d:b1:1d:0c:16:ab:d8:97:23:7e:60:88:76:7a:
69:be:9d:b5:08:57:d1:29:06:9e:5a:c4:f8:83:c9:6e:29:14:
fc:19:63:8c:ab:3f:eb:c1:94:13:3c:0f:ce:13:26:6c:3c:95:
df:dd:63:68:ca:f3:f8:71:2b:2e:53:8c:5f:a2:f1:cf:33:4e:
a5:97:3a:4a:3c:f3:1d:35:95:3c:4e:fd:b5:4b:e5:23:7d:99:
a2:a0:a4:08:29:36:d7:21:d3:51:03:a0:79:cb:75:67:2a:98:
7f:8e:23:37:43:70:19:78:fa:73:f2:f0:23:65:a5:5c:c7:26:
2e:49:b9:10:97:d8:d8:7d:23:bf:c2:0e:88:3c:a7:56:7a:be:
83:21:2f:34:74:a8:b7:7e:79:43:24:0d:aa:c6:2d:03:9b:e5:
7d:5c:c4:11:12:27:1c:25:70:d2:27:45:ef:4b:aa:f7:2f:44:
aa:64:b2:f7:fb:9c:64:ad:d6:32:c6:39:43:fa:85:02:27:94:
40:5b:1b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:29 2024 by rpki-client on console-fra.rpki-client.org