Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/d-aL3g95x8XLlS_lpkdVzcophOk.roa
File: d-aL3g95x8XLlS_lpkdVzcophOk.roa (raw, json)
Hash identifier: Luj8CsnUbT0GdRX5u/VEJHgnv6aPowQwy38SVJ3vCJg=
Subject key identifier: 77:E6:8B:DE:0F:79:C7:C5:CB:95:2F:E5:A6:47:55:CD:CA:29:84:E9
Certificate issuer: /CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Certificate serial: 018848F2637AA45C4253B5050F7E26D2378E
Authority key identifier: 3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/d-aL3g95x8XLlS_lpkdVzcophOk.roa
Signing time: Tue 23 May 2023 14:10:24 +0000
ROA not before: Tue 23 May 2023 14:10:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.147.117.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:48:f2:63:7a:a4:5c:42:53:b5:05:0f:7e:26:d2:37:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b098e45ef4bb5d18dbc86c5a135f57ebcbe005d
Validity
Not Before: May 23 14:10:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77e68bde0f79c7c5cb952fe5a64755cdca2984e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:16:2f:73:76:c3:ab:b2:02:90:d0:52:c1:67:
fa:da:0c:3a:79:e0:60:92:c2:53:12:ea:55:fc:f5:
a1:cc:22:ab:13:97:10:15:bf:4b:4c:0a:a0:cf:58:
f4:33:df:cb:7d:2a:e8:c8:2d:de:02:d8:ae:24:0b:
ad:85:86:dc:10:a2:bf:fd:46:47:fe:07:5b:0a:e3:
c9:93:46:89:95:98:5a:b8:50:80:67:f8:cf:ff:b0:
49:91:25:d5:c8:c0:21:a0:2a:01:5b:88:13:6f:5e:
9a:7b:66:49:e0:53:88:fa:f1:bf:f3:3e:1b:8c:f7:
8b:6d:a3:e5:06:db:ce:d7:b6:9e:23:d2:e2:d5:79:
de:26:92:e6:af:89:69:2b:cb:84:ff:40:27:e3:68:
1b:b0:c7:91:91:4f:85:fc:77:88:26:1c:c2:21:0a:
56:22:2a:88:89:dc:2d:28:38:a4:3f:9d:25:81:7c:
f5:6a:5c:41:34:64:25:56:bd:f8:d0:4d:2b:bb:7f:
19:34:57:0d:9d:e1:aa:d6:80:62:8b:e4:05:19:43:
56:5a:54:81:3f:a8:26:1d:e8:72:d8:df:dc:83:2c:
bf:01:e3:c9:fb:27:25:91:69:bd:f6:48:e0:45:89:
6b:c2:50:2c:bb:18:c9:c7:0a:86:6a:b5:1b:60:cc:
11:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:E6:8B:DE:0F:79:C7:C5:CB:95:2F:E5:A6:47:55:CD:CA:29:84:E9
X509v3 Authority Key Identifier:
keyid:3B:09:8E:45:EF:4B:B5:D1:8D:BC:86:C5:A1:35:F5:7E:BC:BE:00:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OwmORe9LtdGNvIbFoTX1fry-AF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/d-aL3g95x8XLlS_lpkdVzcophOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/954d31-f74c-467b-9013-e12b164215b9/1/OwmORe9LtdGNvIbFoTX1fry-AF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.117.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:3c:f4:78:fb:57:77:fd:0e:b3:01:e7:32:80:0f:ed:82:0f:
76:ff:35:5f:64:42:32:57:84:08:ca:f8:88:27:e9:73:13:fd:
01:ab:e9:7e:77:2d:da:e3:35:c1:97:84:84:07:e4:1f:c6:d0:
f9:a0:3d:f6:b5:cc:90:71:98:33:3f:46:ed:67:0d:e3:27:5c:
eb:53:2f:bb:7e:3e:50:7f:05:db:9b:67:9c:42:a9:71:f2:60:
a5:cd:2d:9e:23:2d:c6:c8:c5:1a:ab:ca:19:c5:12:a7:8c:a6:
d3:1f:e8:c2:8c:74:17:b2:80:39:12:0d:5a:ff:4e:f6:51:ea:
f2:59:97:44:fd:2e:62:fb:7e:b4:b3:64:28:25:70:27:39:03:
ef:1a:c9:d8:9f:1e:a4:f4:d2:0b:b1:d4:42:1d:7f:ac:55:03:
75:58:5a:1f:c6:76:81:c4:ec:90:2c:f8:9f:c0:42:b0:b4:eb:
0a:6c:b3:b9:2a:82:85:66:0e:88:37:59:e8:2b:c9:1a:96:9e:
0c:76:8f:3b:0c:f5:14:76:48:61:1d:a3:ea:71:91:2c:62:e1:
f0:f2:fd:b2:09:88:28:ef:de:ea:8c:08:7e:da:e5:50:38:e7:
8f:22:21:5f:36:33:df:b4:4e:00:78:47:2d:c2:63:92:96:6c:
14:c6:38:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:10 2023 by rpki-client on console-fra.rpki-client.org