Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/xX31zhIHkyNS4p_UvmUNi6e50BM.roa
File: xX31zhIHkyNS4p_UvmUNi6e50BM.roa (raw, json)
Hash identifier: 0kdFVlA/mkA+tsGBItyILYlXqzO449303PshHWCbuYg=
Subject key identifier: C5:7D:F5:CE:12:07:93:23:52:E2:9F:D4:BE:65:0D:8B:A7:B9:D0:13
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 018829AE5C7DEC2C9C480B7AD2E2B17B341B
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/xX31zhIHkyNS4p_UvmUNi6e50BM.roa
Signing time: Wed 17 May 2023 12:27:52 +0000
ROA not before: Wed 17 May 2023 12:27:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.199.44.0/24 maxlen: 24
91.199.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 May 2023 13:07:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:29:ae:5c:7d:ec:2c:9c:48:0b:7a:d2:e2:b1:7b:34:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: May 17 12:27:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c57df5ce1207932352e29fd4be650d8ba7b9d013
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a7:43:ed:d8:60:e9:2f:09:6b:59:f9:c8:6b:
70:e0:45:95:cb:01:a4:95:48:f9:3e:e2:0b:4b:ee:
f4:53:95:2f:cb:17:2c:89:77:7a:b4:2b:6a:ff:8d:
f9:03:57:ab:2a:2a:d8:b1:79:13:0e:31:39:d2:db:
b5:90:34:0c:fb:7b:e4:e3:da:9c:62:ea:6b:13:47:
b7:13:20:6b:1c:90:c9:ee:3a:aa:3c:96:52:69:32:
b1:61:41:fa:28:2b:ad:c7:2e:93:66:c0:70:c6:b3:
82:93:0e:0d:b4:82:d9:62:a9:86:96:01:f2:b4:29:
a4:23:31:3f:68:a8:29:3a:c5:41:01:e0:fc:b5:9a:
78:91:f4:00:5d:63:47:fc:84:25:85:3f:7d:15:24:
5a:e3:cd:af:53:49:b1:f7:ca:48:5d:59:cb:43:8a:
15:ed:82:06:41:2f:2f:d5:b3:4e:52:79:4c:3c:16:
77:96:e7:bc:2d:32:f8:b6:05:b4:5a:35:85:9e:27:
40:8b:39:46:2f:df:1d:12:55:5c:d6:53:84:cc:6d:
58:5d:ae:a3:4c:0e:99:5a:57:e9:65:2c:ce:94:7b:
c3:34:28:04:40:8c:4a:c3:4f:5c:7a:70:bf:2a:19:
00:60:07:62:26:98:b1:68:d9:13:50:70:62:69:29:
72:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7D:F5:CE:12:07:93:23:52:E2:9F:D4:BE:65:0D:8B:A7:B9:D0:13
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/xX31zhIHkyNS4p_UvmUNi6e50BM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.44.0/24
91.199.47.0/24
Signature Algorithm: sha256WithRSAEncryption
56:77:ea:0c:de:84:4f:f0:73:9e:ee:a5:fb:d7:e0:0c:0d:46:
ae:72:4c:58:8d:b3:bd:07:75:47:91:cb:65:53:26:ac:a5:89:
60:9f:ac:6e:23:68:27:81:28:8f:dd:49:61:9d:8e:99:9c:0c:
5e:04:7a:18:28:28:07:a9:57:cb:0a:dc:63:93:46:2e:1c:7c:
cc:39:28:f8:0a:55:b6:8d:36:0d:ab:d4:74:d4:1e:de:10:4d:
c9:a2:91:f3:dd:c0:f6:5a:56:c0:8b:e7:55:67:39:b1:a1:0e:
63:31:68:26:eb:2a:49:e7:21:ab:66:a4:4b:19:6c:fc:bb:b6:
a3:a9:54:4e:d4:8e:92:1a:ef:66:dd:32:41:09:d7:67:93:46:
49:f7:c4:9d:45:4c:f5:ef:fd:13:af:0b:5c:14:67:5f:b7:99:
17:ea:83:62:bc:f5:d8:e4:dc:26:e0:9e:38:9f:d3:c6:78:e9:
3b:11:a8:a0:6f:b5:21:5d:ff:99:e4:34:39:06:b9:b2:74:1d:
93:be:3a:c4:69:01:e2:b1:aa:bd:fb:14:20:2f:da:2f:c5:94:
e0:25:33:5e:bc:0a:0c:bd:9d:cc:fd:14:30:8b:cb:4d:59:d5:
ac:20:0d:f2:d1:30:ca:a0:68:3e:f5:0b:f1:9b:4f:92:47:d1:
e6:15:6f:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:19 2024 by rpki-client on console-ams.rpki-client.org