Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/u2taaQFH-tvGcWCxftpQkHaANFA.roa
File: u2taaQFH-tvGcWCxftpQkHaANFA.roa (raw, json)
Hash identifier: /PvDX56rRgdldqdRIi/p4IIOBTS5EcKyUFPqsrT9yPc=
Subject key identifier: BB:6B:5A:69:01:47:FA:DB:C6:71:60:B1:7E:DA:50:90:76:80:34:50
Certificate issuer: /CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Certificate serial: 018570672D12BFCCEDED02A43917B13FC2A6
Authority key identifier: A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/u2taaQFH-tvGcWCxftpQkHaANFA.roa
Signing time: Mon 02 Jan 2023 02:54:48 +0000
ROA not before: Mon 02 Jan 2023 02:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49523
IP address blocks: 91.213.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:67:2d:12:bf:cc:ed:ed:02:a4:39:17:b1:3f:c2:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a3d3907f811cb83f16b816785e380bc24c8ac193
Validity
Not Before: Jan 2 02:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb6b5a690147fadbc67160b17eda509076803450
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:3a:4c:5d:4b:c5:3a:c4:ae:0d:cb:4c:e2:
8a:18:14:53:26:69:66:bf:eb:a8:75:ee:99:89:8d:
4e:5a:f1:fa:3d:b5:8e:e5:56:53:04:8f:e2:de:4e:
91:f6:3e:3e:28:9b:26:f6:b6:a1:0b:56:b3:ef:2b:
bb:8b:bd:24:fa:84:7a:22:bf:4e:d2:f4:d4:85:c1:
d6:4e:f6:7e:9b:e4:d0:53:32:14:86:20:d4:71:40:
f7:11:aa:dc:52:47:55:5e:25:16:6f:88:d1:b7:55:
d7:87:c0:7a:b0:7a:e2:a1:1a:c6:50:ce:80:26:a9:
ef:15:d6:34:02:7d:e0:38:18:4c:f0:16:c1:0d:40:
a5:94:d3:56:33:69:26:60:97:d2:11:81:4f:66:d6:
33:5c:0d:d5:d5:1a:79:fe:88:a2:5a:27:68:28:1d:
e3:10:af:db:be:fe:bf:88:63:82:bd:2d:5f:eb:89:
77:5a:ba:18:7f:e8:30:9a:64:6c:0d:47:7e:aa:76:
c4:32:cd:e0:e1:43:b5:ee:7a:d3:f0:21:e5:3b:41:
b9:5c:a4:a9:3f:b8:e3:1b:c1:8b:42:3a:2c:90:1d:
e0:07:fa:c9:18:ff:c6:b9:33:0c:d2:55:b2:44:4a:
5a:b4:18:c1:d6:62:3c:92:6c:26:67:5d:44:84:12:
9a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6B:5A:69:01:47:FA:DB:C6:71:60:B1:7E:DA:50:90:76:80:34:50
X509v3 Authority Key Identifier:
keyid:A3:D3:90:7F:81:1C:B8:3F:16:B8:16:78:5E:38:0B:C2:4C:8A:C1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/u2taaQFH-tvGcWCxftpQkHaANFA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/43eb05-affe-4274-913b-3320271fb3ac/1/o9OQf4EcuD8WuBZ4XjgLwkyKwZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.22.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:26:4d:03:1a:93:35:6f:65:77:a5:d8:ed:9e:82:79:eb:ea:
b8:62:21:70:cc:60:e3:f9:b1:6d:ef:a2:90:ee:b6:7a:b0:43:
a5:94:af:0d:90:76:38:cb:0a:84:a8:85:e1:e2:6f:82:1b:0b:
5c:ac:22:b9:b5:72:b2:bc:67:d3:e1:9d:bf:b2:e7:52:6f:2e:
5e:f0:98:1b:d6:52:03:e7:7f:71:80:43:77:55:cc:76:18:df:
31:9d:a9:7d:7f:04:de:31:dd:44:4f:55:a4:c8:05:cb:af:99:
a2:49:03:34:b5:e5:a5:b0:fd:d0:8b:9c:a3:c6:43:6a:d8:99:
1c:0e:bb:9f:89:50:7f:0f:e1:dc:73:b9:b3:ea:5c:9e:71:fe:
ad:27:a9:61:a8:60:73:49:51:8f:aa:d2:07:eb:80:f5:52:27:
1f:c7:54:8c:30:c7:3e:cf:a6:2b:f5:dd:49:a9:75:46:d7:d2:
3c:2b:df:d5:ce:b0:0d:25:8d:e4:0f:e9:fa:9f:06:54:81:e0:
4b:2b:c0:46:d9:f1:e4:1e:a6:2e:e5:95:2f:99:4a:9c:ba:98:
2d:2b:7c:a1:d5:a7:c0:4b:d1:17:cd:d6:31:33:7f:9d:22:f1:
0d:23:16:c8:da:b9:01:11:82:6e:86:be:85:85:02:2f:c9:60:
b7:ce:0b:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:15 2024 by rpki-client on console-ams.rpki-client.org