Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/713bd7-f73b-4614-8e92-1ef0090b7154/1/otORDHJzhRh5tD0AcXYhtj1vAcY.roa
File: otORDHJzhRh5tD0AcXYhtj1vAcY.roa (raw, json)
Hash identifier: swnjD/gs/AmHgHp1XeMSrF6+hTRgv1PXdkbWO70uqys=
Subject key identifier: A2:D3:91:0C:72:73:85:18:79:B4:3D:00:71:76:21:B6:3D:6F:01:C6
Certificate issuer: /CN=cc323163bbb465f2a0fa2f93fa50ef3b0d4c6a9a
Certificate serial: 01856D5D2997BA6D737087BFA102FD55834A
Authority key identifier: CC:32:31:63:BB:B4:65:F2:A0:FA:2F:93:FA:50:EF:3B:0D:4C:6A:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zDIxY7u0ZfKg-i-T-lDvOw1Mapo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/713bd7-f73b-4614-8e92-1ef0090b7154/1/otORDHJzhRh5tD0AcXYhtj1vAcY.roa
Signing time: Sun 01 Jan 2023 12:45:00 +0000
ROA not before: Sun 01 Jan 2023 12:45:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48415
IP address blocks: 91.223.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:29:97:ba:6d:73:70:87:bf:a1:02:fd:55:83:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc323163bbb465f2a0fa2f93fa50ef3b0d4c6a9a
Validity
Not Before: Jan 1 12:45:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a2d3910c7273851879b43d00717621b63d6f01c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:c9:e9:0c:47:8b:5d:ec:72:05:6f:61:82:
9c:fb:b0:b1:2c:26:0b:20:cc:b1:db:64:3a:1d:01:
50:01:aa:2e:49:48:5f:57:3b:db:30:1d:e7:13:10:
01:2f:ad:96:9e:f6:f1:0b:45:fe:f0:b1:c7:e1:9c:
9f:71:81:05:63:db:b1:f5:10:ca:5b:90:2c:bc:8c:
bc:7d:34:bb:fb:b3:7a:cf:14:18:ff:7f:3a:20:e5:
ab:dc:97:29:cf:27:47:d1:7c:fe:ab:a3:54:90:0d:
13:c7:69:f8:21:d2:19:2a:b5:f5:7d:b7:50:8d:f8:
24:5d:bb:4d:33:f0:6c:b5:c8:99:6d:a8:d3:cf:92:
21:93:d0:a1:4e:e1:c0:df:e7:6a:fb:52:03:6f:a5:
b7:66:81:85:28:e6:c7:5d:ad:7d:c1:79:01:f7:a4:
ae:ce:a2:5c:28:e0:2c:02:80:0e:8f:e2:9c:81:a7:
9d:72:1c:27:0a:b3:a7:80:46:04:1c:87:8d:80:cc:
1b:cb:16:6d:5f:b0:d8:0a:c1:73:d2:99:21:d1:7b:
d5:42:1c:0b:00:18:52:ee:d9:1d:35:3b:e8:ee:e9:
59:6e:29:2f:ab:0d:9c:70:d1:2a:b4:80:e7:70:64:
69:7b:cb:af:59:90:51:49:92:89:75:69:c7:fd:db:
6e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D3:91:0C:72:73:85:18:79:B4:3D:00:71:76:21:B6:3D:6F:01:C6
X509v3 Authority Key Identifier:
keyid:CC:32:31:63:BB:B4:65:F2:A0:FA:2F:93:FA:50:EF:3B:0D:4C:6A:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zDIxY7u0ZfKg-i-T-lDvOw1Mapo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/713bd7-f73b-4614-8e92-1ef0090b7154/1/otORDHJzhRh5tD0AcXYhtj1vAcY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/713bd7-f73b-4614-8e92-1ef0090b7154/1/zDIxY7u0ZfKg-i-T-lDvOw1Mapo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.245.0/24
Signature Algorithm: sha256WithRSAEncryption
44:a8:46:84:59:38:cb:16:43:2b:5d:66:42:8e:8f:09:79:b4:
1d:84:ef:35:57:35:ba:50:0f:ee:42:e9:5e:4d:10:e9:43:d9:
1b:ce:91:7a:f0:6d:9c:93:87:01:bb:b3:52:9b:4b:4f:22:26:
ac:7d:8d:38:33:a9:f8:1c:69:0b:12:1c:16:41:af:af:bc:48:
e3:68:d3:b8:05:c1:5a:ed:96:a1:f6:d7:a5:fe:9c:f0:e2:e0:
a8:59:76:fa:ec:7d:c0:74:46:dd:c9:ee:f9:54:96:56:8e:26:
bc:90:63:3d:0c:67:26:f5:78:51:ec:0a:e8:ba:a8:9e:53:1d:
34:c2:07:62:66:3b:7e:fc:72:b1:8d:83:f5:9d:2c:3f:53:ee:
31:b5:d6:d2:6b:66:da:e8:cc:59:24:cc:25:96:a3:8f:34:34:
a0:15:97:db:da:86:d3:2d:6d:a8:a1:19:64:5a:cb:fb:09:31:
d1:e1:22:58:2b:7d:46:db:d9:34:d0:b7:c5:a3:cf:69:9a:34:
c7:e6:f3:99:98:79:d5:b1:dc:04:c3:52:f6:61:07:01:5f:c0:
7a:9e:27:99:ab:13:0e:c0:49:57:71:78:8f:14:fb:5b:5e:7d:
7b:e9:d1:97:94:ec:36:d6:cf:be:24:2e:b4:66:b3:7a:ba:fa:
e9:46:e7:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:21 2024 by rpki-client on console-fra.rpki-client.org