Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/CzYQ1Du53CqYdPJCeTnPtWU_6nI.roa
File: CzYQ1Du53CqYdPJCeTnPtWU_6nI.roa (raw, json)
Hash identifier: aHHfN5B9VXjMEgdv/qug3qLKy4MRR4/IvQ//QsWS7rU=
Subject key identifier: 0B:36:10:D4:3B:B9:DC:2A:98:74:F2:42:79:39:CF:B5:65:3F:EA:72
Certificate issuer: /CN=aef20efc0ae4013e6f4867c15f2377b235095b86
Certificate serial: 01856C41483BE68B460CBA2D4F1A70BF8AB4
Authority key identifier: AE:F2:0E:FC:0A:E4:01:3E:6F:48:67:C1:5F:23:77:B2:35:09:5B:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rvIO_ArkAT5vSGfBXyN3sjUJW4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/CzYQ1Du53CqYdPJCeTnPtWU_6nI.roa
Signing time: Sun 01 Jan 2023 07:34:55 +0000
ROA not before: Sun 01 Jan 2023 07:34:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48102
IP address blocks: 91.210.4.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:30:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:48:3b:e6:8b:46:0c:ba:2d:4f:1a:70:bf:8a:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aef20efc0ae4013e6f4867c15f2377b235095b86
Validity
Not Before: Jan 1 07:34:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0b3610d43bb9dc2a9874f2427939cfb5653fea72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:ae:e4:8f:99:70:a7:1f:41:cf:71:c4:0a:49:
aa:8a:19:fa:98:01:82:a8:43:7d:00:66:7f:89:0d:
7b:18:52:eb:e1:78:04:0a:70:8b:60:76:a8:d3:ed:
2a:f2:9b:25:ce:c8:54:34:33:2b:88:00:c1:00:7c:
67:a2:51:99:da:dc:d4:95:38:ea:92:fd:db:e0:20:
d2:26:1d:f8:1d:10:e3:45:71:77:0c:32:54:3c:e1:
f4:0f:85:02:7f:86:5a:94:5d:ec:da:c8:03:1a:2b:
a8:b3:47:c5:e0:5d:3e:66:09:9f:b6:ab:8a:18:1a:
b3:1a:8f:0b:37:86:0a:a2:74:9e:1f:68:5e:42:cb:
e3:13:53:7f:09:e0:ec:9e:42:3d:af:e2:72:06:44:
fb:26:f3:44:b8:dd:34:61:a1:8e:8e:19:84:24:95:
ab:16:9e:74:c1:c8:8a:1a:f1:41:0b:8c:5d:09:59:
19:0f:b8:3b:9e:c0:c8:1e:98:87:92:43:07:2f:8e:
f9:10:37:0e:9f:6b:16:1d:af:d4:dc:09:65:d4:89:
62:36:1f:51:34:97:fc:81:3d:65:fb:39:71:30:f0:
da:f9:ef:43:2a:8c:73:e0:b3:f1:9f:73:61:64:9d:
5a:69:d5:90:e7:f2:c8:d4:77:d5:5b:a3:04:a0:48:
12:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:36:10:D4:3B:B9:DC:2A:98:74:F2:42:79:39:CF:B5:65:3F:EA:72
X509v3 Authority Key Identifier:
keyid:AE:F2:0E:FC:0A:E4:01:3E:6F:48:67:C1:5F:23:77:B2:35:09:5B:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rvIO_ArkAT5vSGfBXyN3sjUJW4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/CzYQ1Du53CqYdPJCeTnPtWU_6nI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/136faf-cf20-4265-98a3-d9b82d9ecc45/1/rvIO_ArkAT5vSGfBXyN3sjUJW4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.4.0/22
Signature Algorithm: sha256WithRSAEncryption
44:bd:61:4b:a7:da:5a:7a:11:97:c3:78:6b:c0:ea:60:ea:50:
74:07:f5:7b:7c:42:3f:3e:79:ca:27:d5:3c:04:17:6f:47:db:
cd:a7:e2:75:a4:88:e9:50:bb:5d:7d:4c:ed:61:10:cd:1d:7b:
e3:b6:66:b8:ea:5f:58:d2:61:1d:ca:24:a4:79:0b:cb:9d:f2:
43:14:f3:38:02:e4:eb:d9:ef:89:d5:ef:be:f2:6c:81:18:75:
fe:de:48:a8:36:7a:2b:b3:95:e0:f6:f2:61:c0:fe:d2:c3:7e:
c6:e7:9f:1e:07:1f:b4:36:48:b2:37:73:3f:75:37:0a:79:10:
09:ca:b0:6a:31:03:6b:20:89:88:33:f5:4e:5b:ee:cb:1c:f3:
a0:e0:4c:54:8c:df:c2:90:cb:0d:37:0c:55:5a:06:e4:75:6c:
86:c3:ad:0b:78:1a:8c:5a:19:05:ca:fd:39:b1:23:d0:b4:a8:
64:99:a9:68:4e:06:6b:ed:1a:9a:84:f3:c1:ff:8c:2c:14:12:
5b:ac:f4:bb:36:9e:39:61:cc:e3:b3:ff:72:4d:94:6a:9f:38:
ed:41:c0:92:b7:5d:c1:a2:de:33:bc:d5:db:1e:aa:1c:ed:d2:
b0:b9:f7:a4:21:09:97:81:a4:a4:76:10:dc:24:75:23:7c:47:
c2:34:2b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:57 2024 by rpki-client on console-ams.rpki-client.org