Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/ZFvvxOIkwQH0tnihxke_anlmrMM.roa
File: ZFvvxOIkwQH0tnihxke_anlmrMM.roa (raw, json)
Hash identifier: efWR03VQ88hZpYFt3z+l+P8Lr+UWgj+lvJMlH61UBZM=
Subject key identifier: 64:5B:EF:C4:E2:24:C1:01:F4:B6:78:A1:C6:47:BF:6A:79:66:AC:C3
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 01890B83CC7D85D75091CCD4771CADDBD44F
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/ZFvvxOIkwQH0tnihxke_anlmrMM.roa
Signing time: Fri 30 Jun 2023 08:55:34 +0000
ROA not before: Fri 30 Jun 2023 08:55:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.199.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 03 Jul 2023 07:32:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:0b:83:cc:7d:85:d7:50:91:cc:d4:77:1c:ad:db:d4:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Jun 30 08:55:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=645befc4e224c101f4b678a1c647bf6a7966acc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:28:84:6c:68:d9:1e:47:fb:40:72:43:ff:35:
5a:11:06:9d:2c:44:de:28:e1:30:4b:6b:bb:60:53:
78:8d:3a:41:2d:47:8c:90:31:9d:c3:3e:b0:fd:de:
8e:94:85:e7:93:14:4f:0e:2f:54:94:a3:d4:bc:14:
91:32:5d:a2:0a:7d:8f:20:05:6c:19:55:3e:3d:33:
ff:43:c7:50:78:2b:ef:da:5f:e7:cd:60:68:89:48:
ca:4e:ad:37:fa:c3:0a:5a:82:6e:84:cd:3c:2c:15:
3c:c2:01:bd:97:f5:ab:d5:2b:bd:da:6f:06:b9:b9:
61:9a:21:cf:1b:5e:3d:64:04:f3:6d:9f:f1:66:41:
12:e9:8f:be:51:3c:53:74:aa:50:54:12:e1:72:d9:
ab:8c:a5:f6:0d:87:b1:70:26:b2:c1:35:a8:f0:36:
0b:23:22:64:5a:41:8c:74:ba:88:78:90:90:48:e5:
36:c4:0c:85:cb:74:54:a0:ce:e1:e8:01:33:ba:95:
6f:3c:24:94:81:b0:69:4e:10:a2:63:b6:47:6f:fb:
2d:23:9c:c6:6c:90:b5:1b:de:ff:21:5a:28:33:e4:
ce:78:ee:45:b0:38:16:b1:6b:82:83:48:4b:f6:22:
97:fe:4b:9f:92:7b:4d:f1:45:0e:e1:94:26:7e:96:
8f:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:5B:EF:C4:E2:24:C1:01:F4:B6:78:A1:C6:47:BF:6A:79:66:AC:C3
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/ZFvvxOIkwQH0tnihxke_anlmrMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.47.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:31:8c:ba:cb:2a:58:63:8b:3e:7c:45:83:3a:e5:18:e9:26:
00:ad:80:22:cd:85:2d:c1:c3:60:b6:be:70:d2:a0:64:b5:65:
46:09:ae:e2:1c:45:e7:05:5a:23:9c:46:75:7c:b0:28:93:05:
c0:00:36:bc:53:80:99:1c:53:c4:56:fd:41:3b:19:81:0c:5a:
1e:8d:76:a4:4d:7d:1e:92:1f:c6:69:0c:4b:f5:a8:d3:74:06:
52:01:4e:4b:0b:8b:12:0e:70:20:e1:ff:d7:78:4a:8b:b3:a8:
5d:cd:ea:82:55:1c:0e:5a:71:be:af:59:31:28:4e:fc:e7:96:
1f:3f:d2:2b:17:bb:8a:bd:c2:b9:16:48:d0:ce:54:4c:7f:df:
99:29:a6:18:22:8a:7b:6b:22:d6:da:3c:44:0c:68:97:36:8a:
ad:cd:7f:00:e9:f9:9a:4a:b2:7f:8d:3a:53:c3:96:9a:57:8e:
16:3d:08:5f:9b:55:cb:2a:ab:88:ea:56:50:aa:29:9c:55:bf:
53:37:1a:06:8c:a2:5f:7d:e7:5e:f2:1e:ae:61:36:a4:e2:65:
ee:84:ff:38:84:c7:99:27:c3:e8:90:c4:6d:ca:39:5e:cf:07:
e3:17:ab:b3:ea:19:75:12:d6:87:a2:2d:06:29:d3:ef:f1:3e:
bc:a7:74:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:19 2024 by rpki-client on console-ams.rpki-client.org