Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5a01e2-83e2-4a7c-ac2b-58f6723e981e/1/APgkOZ7xl3AxTh5Cvtpq_WphqxA.roa
File: APgkOZ7xl3AxTh5Cvtpq_WphqxA.roa (raw, json)
Hash identifier: +KUC2FzU8s2dzZFMhOgnDPuJkq02jHyfXvZ4gaqyEo0=
Subject key identifier: 00:F8:24:39:9E:F1:97:70:31:4E:1E:42:BE:DA:6A:FD:6A:61:AB:10
Certificate issuer: /CN=fb677ac290fe091fa236e9da66abaf78cd2c8c61
Certificate serial: 01856B8A34A2D4C302923359A40454C22868
Authority key identifier: FB:67:7A:C2:90:FE:09:1F:A2:36:E9:DA:66:AB:AF:78:CD:2C:8C:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-2d6wpD-CR-iNunaZquveM0sjGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5a01e2-83e2-4a7c-ac2b-58f6723e981e/1/APgkOZ7xl3AxTh5Cvtpq_WphqxA.roa
Signing time: Sun 01 Jan 2023 04:14:57 +0000
ROA not before: Sun 01 Jan 2023 04:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43854
IP address blocks: 91.220.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:34:a2:d4:c3:02:92:33:59:a4:04:54:c2:28:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb677ac290fe091fa236e9da66abaf78cd2c8c61
Validity
Not Before: Jan 1 04:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=00f824399ef19770314e1e42beda6afd6a61ab10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5c:85:fe:da:10:c8:ad:c9:bd:6b:73:90:94:
a9:10:b1:0e:7c:83:cd:4d:d6:15:ad:81:fb:ea:1f:
9a:22:25:e5:bf:90:2e:2b:72:35:0c:bf:0c:c2:0f:
54:8d:4c:68:d9:e9:ea:61:26:84:39:cd:f9:e2:3e:
8e:b0:44:63:7a:8c:4d:e1:4b:13:9e:07:34:a2:29:
c8:13:8a:d6:7b:b6:4c:6f:96:ff:e4:d1:d4:78:e7:
ef:40:6b:c0:b4:c4:f9:fa:09:e2:8b:9b:43:f4:e5:
45:ca:44:a0:5f:7c:73:d4:19:0b:f3:12:2e:c6:57:
be:5e:77:e1:0a:44:8a:2c:60:d6:51:8e:de:ad:8a:
87:1e:4b:03:36:70:54:f3:1c:36:6f:37:e5:a1:88:
a8:df:c9:70:6f:cb:3d:13:5c:37:44:bd:ae:22:63:
bd:d0:d6:4f:c8:3f:30:48:30:7e:a3:b3:30:4d:93:
97:05:cb:b5:4f:d7:f9:7c:92:38:b9:34:07:1a:fd:
9b:f1:f3:72:d8:9e:d3:8d:7e:43:37:28:b4:cf:a4:
1e:9f:ec:7f:49:fa:e8:d2:96:81:a0:8c:a8:45:e7:
76:d0:c7:7c:ab:98:cf:ae:96:f9:2b:7e:b8:fe:62:
20:09:54:bf:6b:71:b6:4b:c7:af:d6:eb:ea:4d:13:
cb:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:F8:24:39:9E:F1:97:70:31:4E:1E:42:BE:DA:6A:FD:6A:61:AB:10
X509v3 Authority Key Identifier:
keyid:FB:67:7A:C2:90:FE:09:1F:A2:36:E9:DA:66:AB:AF:78:CD:2C:8C:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-2d6wpD-CR-iNunaZquveM0sjGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5a01e2-83e2-4a7c-ac2b-58f6723e981e/1/APgkOZ7xl3AxTh5Cvtpq_WphqxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5a01e2-83e2-4a7c-ac2b-58f6723e981e/1/1-2d6wpD-CR-iNunaZquveM0sjGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.213.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:59:8b:19:18:0e:41:4c:d5:a5:49:5c:59:e6:a9:e6:66:35:
c2:be:8f:0d:8a:8f:3c:c4:0d:5d:e8:a9:c8:db:9b:32:b1:52:
dc:77:b7:b6:51:47:eb:b9:04:bf:fc:40:ae:c0:bd:0b:05:7d:
f5:62:64:c4:fc:cb:8f:07:12:bc:36:fa:68:81:2b:13:e6:5b:
d3:c0:f2:01:0a:a1:2e:1c:0a:17:18:1f:08:1d:0b:24:45:4c:
76:40:a7:d2:26:9b:14:ad:e0:1c:81:d5:72:c0:d8:f3:1b:b6:
7e:12:78:7e:35:4b:15:6e:4e:bd:f9:ba:67:35:f9:41:87:e2:
9e:f0:dc:a9:39:d6:1d:95:65:30:9b:39:66:2f:56:41:e1:e7:
c4:ae:11:4e:7e:f2:5a:ab:97:8f:8f:1c:03:cb:f3:f4:86:ea:
2c:66:ec:2c:f9:88:cc:9b:81:df:b2:84:1d:8e:af:a7:e7:b7:
2c:4e:5e:3b:2b:93:56:41:e5:0d:8a:6b:31:16:1d:d2:6f:97:
28:36:e4:06:38:f2:d9:88:49:f6:b3:c4:8c:66:26:32:45:3f:
be:7d:86:58:92:5e:3b:28:ee:c2:ad:2f:91:f4:f6:58:9f:51:
87:4e:81:36:a2:27:4a:61:1e:1d:5a:48:4c:12:42:2a:95:fa:
c3:e6:04:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:15:47 2024 by rpki-client on console-ams.rpki-client.org