Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/Bs3F-4GmLHUnrBGiuAtTCENAgeI.roa
File: Bs3F-4GmLHUnrBGiuAtTCENAgeI.roa (raw, json)
Hash identifier: 74l81ihISbgZIw9HJI4hfPXuoSQ6+5ZzYBcNzdDVX/Y=
Subject key identifier: 06:CD:C5:FB:81:A6:2C:75:27:AC:11:A2:B8:0B:53:08:43:40:81:E2
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 01856BD3411F45301327FFCB82F7B3A6B732
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/Bs3F-4GmLHUnrBGiuAtTCENAgeI.roa
Signing time: Sun 01 Jan 2023 05:34:44 +0000
ROA not before: Sun 01 Jan 2023 05:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57270
IP address blocks: 91.231.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:41:1f:45:30:13:27:ff:cb:82:f7:b3:a6:b7:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Jan 1 05:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=06cdc5fb81a62c7527ac11a2b80b5308434081e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3b:16:66:7b:36:41:9c:bd:5c:8e:f3:cd:44:
ae:cc:35:d3:fb:f1:e3:16:44:e4:08:c0:0b:ec:a2:
1d:d6:cf:9c:c8:5c:ea:21:ec:60:98:05:a5:22:db:
df:95:0e:0f:0e:99:2f:5b:61:88:38:35:33:0e:b8:
2b:3f:71:3d:4b:96:08:21:6c:87:11:c8:34:82:5b:
ae:33:04:e0:29:a9:99:9b:01:f7:33:56:09:2e:53:
df:14:82:3d:ee:c1:68:48:00:25:95:2b:ce:50:18:
67:f9:89:4c:4f:f0:27:a9:61:da:e4:08:16:7d:a7:
1f:32:e7:67:f9:91:2e:a5:15:31:23:1a:de:59:f9:
cd:47:fe:04:b4:79:e3:36:db:6f:7f:35:05:95:ee:
c7:52:5d:75:0f:5c:50:19:0b:a1:97:92:e4:2a:85:
89:9f:54:b9:a7:60:48:d7:66:e0:69:db:a3:05:b7:
32:e6:80:88:6b:53:b9:d5:19:96:33:a6:6b:77:88:
88:f4:8e:a3:2e:4f:85:db:fb:ca:55:7f:87:75:bc:
6a:61:96:e6:3b:fc:2d:3d:f7:dd:71:13:9e:0f:8c:
e7:1c:ef:f1:6b:95:7e:55:b0:6f:18:1b:70:43:10:
50:8d:e1:09:d2:ba:e7:86:58:2c:dc:56:18:1e:44:
15:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:CD:C5:FB:81:A6:2C:75:27:AC:11:A2:B8:0B:53:08:43:40:81:E2
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/Bs3F-4GmLHUnrBGiuAtTCENAgeI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.190.0/24
Signature Algorithm: sha256WithRSAEncryption
71:ba:bc:eb:7c:c4:39:c0:32:6c:44:59:31:08:06:70:ad:11:
42:ae:13:00:a2:02:60:70:fb:43:85:42:a8:3c:88:85:7c:27:
3c:9c:89:a9:21:fa:67:39:a9:50:c4:af:ff:50:bc:26:1f:84:
f6:b2:d9:62:84:92:07:ea:51:46:94:27:16:80:5d:16:91:27:
fb:cd:4a:f8:84:50:17:e1:df:3e:8c:a4:7b:e6:94:da:b5:74:
43:f9:2c:c7:35:85:57:3d:a7:a4:f8:a4:18:99:2d:02:a0:b2:
b5:0f:cc:26:91:ed:22:4d:02:06:3c:ea:40:dd:f4:7a:89:09:
39:f2:c8:11:67:5e:f8:6c:d3:f6:e7:d6:ca:1f:e4:fd:de:f0:
d9:69:22:c2:74:35:0e:19:b9:44:d4:e1:26:ee:1b:f7:c0:c8:
1e:ac:c0:85:8d:00:fa:24:f5:c2:13:84:12:06:34:de:50:bc:
9d:59:16:b0:94:35:05:5f:31:a4:23:ca:d1:f6:1b:31:0c:f2:
e4:f3:01:6e:32:32:9b:22:16:2a:d3:25:c4:2d:b7:c2:0f:20:
98:55:08:4d:78:93:c1:87:ab:5d:14:9f:d7:e9:08:c9:1c:c0:
66:74:77:13:a7:99:2c:e0:bb:da:25:50:72:fb:77:ef:3e:67:
94:3c:6f:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:30 2024 by rpki-client on console-ams.rpki-client.org