Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/DN3yMDMQonCqCb08O7DPwyAFbF8.roa
File: DN3yMDMQonCqCb08O7DPwyAFbF8.roa (raw, json)
Hash identifier: 5409a8GjNCwhI/QxFLuw0Qfis1nsHsfR3//Vv73CijA=
Subject key identifier: 0C:DD:F2:30:33:10:A2:70:AA:09:BD:3C:3B:B0:CF:C3:20:05:6C:5F
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 018870C4C9D9BD17D8B988E406EC1A079BE4
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/DN3yMDMQonCqCb08O7DPwyAFbF8.roa
Signing time: Wed 31 May 2023 07:45:24 +0000
ROA not before: Wed 31 May 2023 07:45:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.199.42.0/24 maxlen: 24
91.199.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Jun 2023 07:52:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:70:c4:c9:d9:bd:17:d8:b9:88:e4:06:ec:1a:07:9b:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: May 31 07:45:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cddf2303310a270aa09bd3c3bb0cfc320056c5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:96:f7:4e:13:6d:df:5d:4e:8f:39:2c:a6:45:
b3:62:34:0d:9b:54:16:1e:6a:d7:3d:95:4f:15:6c:
06:bb:c4:7f:6a:8d:7b:fd:c3:b7:35:fa:41:66:71:
3a:f3:cd:70:e0:96:29:60:c2:af:ae:c3:b2:29:5e:
c6:8a:4e:0d:73:6d:74:94:70:ed:d2:37:69:f8:36:
f3:52:f2:e1:6a:35:66:41:dd:b3:bd:58:2b:3e:3a:
f1:42:39:ba:42:e0:91:2e:73:06:06:3d:55:9b:d2:
72:ee:4e:0d:d7:43:9b:a8:4a:e3:40:4c:33:f7:7e:
5a:ac:f6:03:dc:ab:10:e1:f3:e3:2f:84:b1:7f:8b:
8c:da:0c:4f:98:ea:26:79:78:67:b2:d9:fe:43:10:
0e:6f:99:ee:f5:45:5c:97:0c:62:6c:b6:53:43:6c:
1b:a4:b6:5e:31:1a:a9:d0:5c:75:33:e5:2a:18:5b:
52:0b:47:73:3f:a4:7c:41:75:19:82:a9:fd:26:74:
ca:a6:ef:94:ed:0e:ce:15:01:67:63:7d:e7:ca:dc:
19:d4:05:b4:40:8b:39:93:45:3b:8a:2a:c5:a8:f7:
cd:64:0d:57:49:78:ad:8f:34:e4:6e:e6:54:6c:97:
30:8f:54:15:e4:b7:15:e7:8f:11:86:20:d1:7f:f3:
72:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DD:F2:30:33:10:A2:70:AA:09:BD:3C:3B:B0:CF:C3:20:05:6C:5F
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/DN3yMDMQonCqCb08O7DPwyAFbF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.42.0/24
91.199.47.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:d2:f7:b8:a7:5c:5d:ab:54:15:7e:a3:ab:a2:98:2a:db:f7:
2c:2c:6c:f4:f0:a7:6d:98:71:a3:c5:f5:5d:67:3f:38:b9:85:
3f:a7:9e:1e:0c:e2:d0:7c:0f:bc:79:c5:0a:5e:8b:f5:69:c6:
6d:d0:ce:19:64:b7:43:8c:c6:64:c8:66:95:25:27:4d:d8:93:
7f:02:9c:28:4a:7a:17:4f:7f:89:aa:ba:da:45:1e:99:a7:b3:
c7:80:01:88:42:c8:04:68:63:27:1e:76:2f:04:23:4c:7a:92:
d6:b8:a4:cd:55:35:4a:b7:79:c8:9b:19:ca:a6:1b:80:ee:c5:
b0:aa:0e:d1:7f:0c:ec:f3:7b:cf:62:10:e6:56:e4:1c:52:a2:
63:b6:97:6a:50:5a:5f:2b:fb:04:ea:d8:a7:d3:a9:c7:9d:1e:
f8:be:cc:1d:6c:51:c8:10:06:0a:44:92:35:51:d6:99:d7:10:
cd:2d:a8:07:2e:e9:2e:44:0f:5b:07:d2:f7:c4:1f:1d:b6:bb:
82:fc:f9:81:dd:a2:0a:c2:5d:a9:cc:05:5b:de:ac:5b:ef:8e:
fe:5e:e6:28:ef:c3:74:df:96:61:0b:09:d6:56:9d:04:6b:13:
83:05:6b:93:5b:ed:a1:32:a8:e6:c2:ca:f7:e1:41:ce:51:dd:
13:c5:17:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:58 2024 by rpki-client on console-fra.rpki-client.org