Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/kHd1PIURv6pcPSuCtRBIw_SSR_s.roa
File: kHd1PIURv6pcPSuCtRBIw_SSR_s.roa (raw, json)
Hash identifier: /8mtRwaCJJiXYiyycSBSGtmJjf1sMoE8AemhhChSno4=
Subject key identifier: 90:77:75:3C:85:11:BF:AA:5C:3D:2B:82:B5:10:48:C3:F4:92:47:FB
Certificate issuer: /CN=32545768f47c35785eebad7a3438a4b1c4f8dc30
Certificate serial: 01857015368AD23FA4134A9751D7727BD235
Authority key identifier: 32:54:57:68:F4:7C:35:78:5E:EB:AD:7A:34:38:A4:B1:C4:F8:DC:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MlRXaPR8NXhe6616NDikscT43DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/kHd1PIURv6pcPSuCtRBIw_SSR_s.roa
Signing time: Mon 02 Jan 2023 01:25:16 +0000
ROA not before: Mon 02 Jan 2023 01:25:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47770
IP address blocks: 91.208.129.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:36:8a:d2:3f:a4:13:4a:97:51:d7:72:7b:d2:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32545768f47c35785eebad7a3438a4b1c4f8dc30
Validity
Not Before: Jan 2 01:25:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9077753c8511bfaa5c3d2b82b51048c3f49247fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:62:b3:24:16:2a:0a:78:ec:44:61:56:ec:53:
66:7c:0c:36:e1:a0:1f:6f:85:f8:7e:61:ae:15:9b:
0b:d6:6e:b2:ab:a9:af:bb:db:77:8d:20:c0:d8:8c:
9e:23:90:14:0f:a5:fe:4f:61:89:1f:09:d4:70:40:
e9:29:61:bc:05:cf:bf:ff:b4:7f:a2:fb:e6:98:9f:
9c:ab:f5:e5:7d:27:45:b2:80:ca:55:24:64:2c:05:
f1:ac:2d:63:90:c7:22:c5:c3:cb:a1:82:2a:2d:9d:
53:0b:91:fa:7f:ed:8e:38:6c:95:e3:7a:9a:73:fe:
65:a4:9c:8c:89:6a:85:cb:5e:ae:b4:73:29:24:71:
50:7a:a3:9a:28:e0:db:1a:a3:10:24:3d:97:ec:de:
c7:f8:ad:4f:64:86:e8:3d:bd:45:7d:a8:c0:d3:bc:
b2:0a:70:40:25:01:df:1c:cd:1b:39:94:e5:d2:85:
6f:6d:03:e1:6b:87:fb:4f:4f:d4:e0:b3:4f:e6:04:
03:a7:d2:a6:2f:3d:e1:dd:53:99:2d:81:4b:3a:ee:
fe:ca:3c:5f:81:7a:49:92:13:10:ad:4d:83:3d:99:
66:45:ca:ff:00:a4:7c:61:08:31:56:c7:95:bb:64:
ee:1c:b1:33:5d:9a:73:dc:16:b7:af:69:6e:a1:d5:
34:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:77:75:3C:85:11:BF:AA:5C:3D:2B:82:B5:10:48:C3:F4:92:47:FB
X509v3 Authority Key Identifier:
keyid:32:54:57:68:F4:7C:35:78:5E:EB:AD:7A:34:38:A4:B1:C4:F8:DC:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MlRXaPR8NXhe6616NDikscT43DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/kHd1PIURv6pcPSuCtRBIw_SSR_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/47bc76-974e-4018-94fd-7f46c8c68e7e/1/MlRXaPR8NXhe6616NDikscT43DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.129.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:28:47:86:e4:b1:cd:bf:c9:44:f3:c6:0b:91:d0:92:56:8c:
46:67:7c:a4:e9:b9:f8:c3:fe:5a:76:01:5e:77:f3:fe:be:79:
6e:6b:61:ed:72:50:b0:6f:e8:05:c6:3f:79:f9:c7:6f:f9:53:
05:fd:fe:e9:b8:a0:56:49:8e:7a:1c:49:a3:49:dc:63:1e:a0:
d3:9a:c7:15:8c:29:d5:bf:1c:51:cb:20:3c:32:bf:30:e4:86:
f7:9b:b9:62:ec:6f:47:49:fd:ce:ee:86:1f:e3:3e:d6:71:39:
f9:9c:96:f9:af:4e:fe:1f:10:9f:7d:23:27:bc:42:12:9c:86:
42:c5:3d:36:9f:1c:89:ba:5f:34:0e:d3:cd:f2:a3:22:c6:54:
13:ba:fa:f3:86:10:c4:c2:93:0f:58:77:d3:d2:eb:56:b7:a8:
e9:05:40:1d:60:a0:5a:fb:f0:50:85:f8:33:25:2f:1d:4b:ce:
d7:83:c8:f9:0d:6e:25:3f:00:fa:15:47:8f:b8:a1:dd:13:1b:
96:90:08:69:80:ce:6b:c1:bd:a2:f8:e3:7b:aa:94:8e:c0:24:
37:7b:35:1f:47:9a:d6:3c:ec:62:c4:c8:ed:99:3d:6a:bc:d3:
bf:03:47:eb:1b:45:93:9a:be:02:18:d8:45:b6:3e:43:8c:82:
95:eb:23:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:23 2024 by rpki-client on console-ams.rpki-client.org