Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/VlEi-jg2c8S1ZfptTSDhHsUOeYM.roa
File: VlEi-jg2c8S1ZfptTSDhHsUOeYM.roa (raw, json)
Hash identifier: ZylOrtEeqUKNaNrH8y5Ljzx31PCiPLLfu/O3aUYomiQ=
Subject key identifier: 56:51:22:FA:38:36:73:C4:B5:65:FA:6D:4D:20:E1:1E:C5:0E:79:83
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 01856BD33E8D5EA4B949373F4E9E22D27E2B
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/VlEi-jg2c8S1ZfptTSDhHsUOeYM.roa
Signing time: Sun 01 Jan 2023 05:34:44 +0000
ROA not before: Sun 01 Jan 2023 05:34:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5413
IP address blocks: 91.231.188.0/24 maxlen: 24
91.231.191.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:3e:8d:5e:a4:b9:49:37:3f:4e:9e:22:d2:7e:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Jan 1 05:34:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=565122fa383673c4b565fa6d4d20e11ec50e7983
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:41:b1:27:31:d6:ab:4a:a1:ba:a4:73:a6:63:
99:b2:ae:c0:59:02:ab:cf:9c:8a:68:45:35:ec:7b:
70:33:19:29:92:15:18:47:33:f3:d0:49:36:ab:0c:
74:04:54:a9:40:5a:fc:1a:10:a7:8e:7d:0f:7a:92:
d0:f0:6d:13:a5:f7:7d:0b:d8:2c:da:c7:4d:99:65:
10:cc:b1:26:24:cb:cd:7a:3e:b0:64:60:18:48:d1:
de:24:da:3c:b0:92:03:06:12:58:14:94:79:89:58:
5c:b1:9a:f5:45:57:a3:24:0e:ce:d5:e3:cd:a1:50:
b8:c7:9d:1c:23:79:cf:a6:6f:fa:d0:1b:52:04:71:
ad:33:f0:ad:8d:fa:71:8b:08:bf:2e:46:82:44:b5:
d4:87:dc:29:9a:d8:36:a2:ee:6f:f9:ff:b5:0d:b1:
f4:7a:a0:49:c1:0b:94:0a:11:71:49:7e:b0:a7:3a:
83:5c:f0:58:a8:80:83:dd:35:0f:d0:9c:a5:40:fb:
5b:29:b2:e0:0f:61:7d:f1:3d:78:4d:fc:70:19:bd:
31:ff:77:25:66:75:b5:67:37:56:0d:e7:31:86:a2:
fa:49:9b:36:05:ec:2c:4e:e1:d9:f2:c9:1c:37:a1:
e5:ff:b2:23:f3:df:05:b6:b8:29:00:ac:a6:30:cc:
9c:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:51:22:FA:38:36:73:C4:B5:65:FA:6D:4D:20:E1:1E:C5:0E:79:83
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/VlEi-jg2c8S1ZfptTSDhHsUOeYM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.188.0/24
91.231.191.0/24
Signature Algorithm: sha256WithRSAEncryption
24:58:c5:44:3c:93:c6:ea:96:28:ec:5b:80:3c:8b:bd:84:0e:
f2:d8:a5:07:0e:4d:49:09:4e:c2:1a:62:a9:07:8e:f0:49:cf:
91:d4:0b:a7:56:c0:9a:36:ca:92:8d:49:dc:94:9f:c0:1f:ac:
57:7e:be:ca:0f:5d:3c:e2:2d:75:4a:48:71:a4:c1:25:b2:4b:
5d:7e:d9:69:79:e1:7d:5b:de:b0:4f:bb:09:9e:83:64:d7:b7:
fb:05:2c:14:9b:74:7b:c9:81:05:6a:d6:5f:f7:39:b6:09:9e:
7a:c3:0d:e6:07:49:b1:0c:90:9e:60:40:f2:f1:68:e9:cb:e1:
1e:17:dd:79:95:ae:b2:bd:d4:1a:32:78:16:2c:8c:ee:af:f3:
d7:5e:0a:b4:ea:49:30:5b:2d:94:b8:78:37:25:32:86:6f:9f:
d0:58:c9:cc:bb:2a:56:b6:68:c9:b1:52:99:fe:f9:d3:58:b0:
93:9b:e6:ce:07:bc:df:98:64:5d:40:a5:f0:84:4f:5d:1f:e1:
99:7d:2a:ee:d3:5d:4d:b3:c6:80:51:e0:b9:61:18:e2:e8:82:
df:50:13:54:4f:ae:c5:19:9e:73:1d:b4:6d:71:59:01:38:ce:
c6:66:0c:df:2f:80:bc:3f:6c:f7:6a:c7:a6:ba:bd:f0:29:2a:
e6:98:db:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:09 2024 by rpki-client on console-fra.rpki-client.org