Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4b66ea-ff52-4fbb-874a-e842680ba1a7/1/VbPnW9yS2xKoXMkAwluEvG29-uE.roa
File: VbPnW9yS2xKoXMkAwluEvG29-uE.roa (raw, json)
Hash identifier: v44tqe8UDb/SGIdO0XzRVL2JOv8C9BsiG+Pm6w+FQWA=
Subject key identifier: 55:B3:E7:5B:DC:92:DB:12:A8:5C:C9:00:C2:5B:84:BC:6D:BD:FA:E1
Certificate issuer: /CN=ec2408f545242558c1103c0194b4f561eb9a23a2
Certificate serial: 0185711E3E7C8392A64C8918C9407298BE92
Authority key identifier: EC:24:08:F5:45:24:25:58:C1:10:3C:01:94:B4:F5:61:EB:9A:23:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7CQI9UUkJVjBEDwBlLT1YeuaI6I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4b66ea-ff52-4fbb-874a-e842680ba1a7/1/VbPnW9yS2xKoXMkAwluEvG29-uE.roa
Signing time: Mon 02 Jan 2023 06:14:45 +0000
ROA not before: Mon 02 Jan 2023 06:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47848
IP address blocks: 91.208.178.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:3e:7c:83:92:a6:4c:89:18:c9:40:72:98:be:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec2408f545242558c1103c0194b4f561eb9a23a2
Validity
Not Before: Jan 2 06:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55b3e75bdc92db12a85cc900c25b84bc6dbdfae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5a:4a:9f:85:70:e6:b9:40:8e:74:f2:7e:cc:
1d:6e:16:3d:e5:22:77:f6:f2:bc:40:18:af:7a:29:
3f:9f:70:0c:42:60:ae:d5:b2:8b:72:06:9e:ff:ca:
57:3b:e0:d8:3f:73:87:a8:cd:0d:b5:13:9d:f6:f8:
58:4b:ca:b1:da:5d:fe:90:ba:83:c9:58:ce:8d:8e:
c7:8b:ab:fc:a3:97:c3:fd:8a:00:0f:69:35:f3:d2:
c6:c2:c8:6d:49:1c:a9:92:c4:c4:34:4f:a8:6f:b5:
2a:52:14:52:4e:f8:9b:51:26:00:ad:4d:91:16:f8:
9b:e4:ad:ef:9f:dd:29:a3:3d:66:ac:ad:5a:32:37:
c6:38:cb:16:5c:b8:85:82:be:de:54:d4:57:c6:cb:
b8:41:dd:f1:40:f6:cb:d0:e9:52:bf:b2:be:2c:9c:
73:8f:6c:9b:03:6f:ea:5b:9b:ec:09:81:c9:ed:20:
ae:9f:03:31:ba:d1:15:0f:62:63:e8:1e:72:ee:1a:
0d:a6:c0:4b:98:aa:58:1f:c4:60:aa:10:c0:d5:aa:
ab:a3:6b:d2:56:59:e1:12:bf:40:5d:36:d8:68:9e:
65:75:81:10:f7:04:8a:21:ad:75:9d:9a:62:0e:89:
7c:c2:ad:08:90:59:a0:1c:08:ba:c3:a3:0a:26:12:
9c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:B3:E7:5B:DC:92:DB:12:A8:5C:C9:00:C2:5B:84:BC:6D:BD:FA:E1
X509v3 Authority Key Identifier:
keyid:EC:24:08:F5:45:24:25:58:C1:10:3C:01:94:B4:F5:61:EB:9A:23:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7CQI9UUkJVjBEDwBlLT1YeuaI6I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4b66ea-ff52-4fbb-874a-e842680ba1a7/1/VbPnW9yS2xKoXMkAwluEvG29-uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4b66ea-ff52-4fbb-874a-e842680ba1a7/1/7CQI9UUkJVjBEDwBlLT1YeuaI6I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.178.0/24
Signature Algorithm: sha256WithRSAEncryption
02:57:7e:cf:31:e4:db:a7:30:6c:eb:53:8f:ee:1b:f4:29:8a:
09:55:f7:c5:e9:75:b2:8b:fb:4b:9c:ca:ba:51:7f:0a:44:a2:
88:5a:cf:62:17:9b:c9:b3:fc:4a:40:81:f7:7f:c3:70:1f:f7:
55:39:2e:0b:18:8d:4f:60:4d:a4:80:3a:93:15:26:d0:d3:d9:
ae:51:10:c2:e5:17:6d:8f:10:df:8c:86:d1:b4:79:9f:59:5b:
61:e4:68:53:3f:29:64:29:5c:0f:cf:da:6b:44:2e:cc:9a:f9:
2e:be:b8:ad:62:43:77:41:67:97:a3:8e:97:2f:11:02:9b:40:
ac:60:9b:53:35:8c:d6:a8:75:69:7f:34:db:74:54:cb:b2:21:
0e:a0:e0:65:f3:30:82:8b:25:3c:7d:a7:5d:9a:e9:b9:17:ca:
dc:48:f8:4a:cb:d5:f8:2e:4a:3d:b9:31:44:04:e8:77:81:7a:
d2:72:f6:fb:19:a0:e1:5b:1f:94:2d:ed:38:64:b7:a6:eb:03:
99:86:c9:df:65:6a:54:1a:c3:2d:b6:9f:24:99:74:c5:bb:86:
cb:91:33:2b:52:57:d0:5b:77:c3:01:22:41:b9:00:e2:c6:d0:
fe:7f:2a:1a:e4:0b:62:3f:69:dd:6a:f0:36:a1:a9:e3:f0:a8:
f6:5e:7a:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:37:32 2024 by rpki-client on console-fra.rpki-client.org