Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/9c0b2e-7be9-4bc4-9320-b2247b3a52d8/1/iZBnM2g37_UqByPUjEF2Lp2z0k4.roa
File: iZBnM2g37_UqByPUjEF2Lp2z0k4.roa (raw, json)
Hash identifier: 2x3SbqbNdO8yZQBybfxmW5QQiUyQ6xAj5xmb0gUas/s=
Subject key identifier: 89:90:67:33:68:37:EF:F5:2A:07:23:D4:8C:41:76:2E:9D:B3:D2:4E
Certificate issuer: /CN=0aae1a6058bbdcd0835068e3b4f9de51f2bd9057
Certificate serial: 01856FCBA51150D8332E00FD2D2A19388BA7
Authority key identifier: 0A:AE:1A:60:58:BB:DC:D0:83:50:68:E3:B4:F9:DE:51:F2:BD:90:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cq4aYFi73NCDUGjjtPneUfK9kFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/9c0b2e-7be9-4bc4-9320-b2247b3a52d8/1/iZBnM2g37_UqByPUjEF2Lp2z0k4.roa
Signing time: Mon 02 Jan 2023 00:04:55 +0000
ROA not before: Mon 02 Jan 2023 00:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44524
IP address blocks: 91.199.142.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:a5:11:50:d8:33:2e:00:fd:2d:2a:19:38:8b:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0aae1a6058bbdcd0835068e3b4f9de51f2bd9057
Validity
Not Before: Jan 2 00:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=899067336837eff52a0723d48c41762e9db3d24e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:25:0f:ce:e4:4a:7f:fe:db:af:63:62:66:f4:
de:47:b9:7e:e4:b8:39:4c:58:5c:ca:fa:cd:4d:cd:
4e:5f:d3:37:31:3d:9d:2a:9d:1d:dd:e7:d1:ac:9b:
fe:8a:ad:5e:4c:bb:a6:c9:b0:44:9b:0d:01:a3:e9:
2a:8d:95:c5:3d:da:25:0f:17:46:3a:09:ae:03:33:
a7:40:3a:97:af:94:20:f3:98:8a:61:d7:23:8e:b3:
00:3a:2d:93:72:77:37:4f:77:a8:12:e6:09:e8:2e:
c6:e4:b1:fd:60:c7:c5:88:8c:c5:e9:b5:ac:a8:5f:
5e:03:34:a6:42:bf:69:50:5c:39:99:c6:c0:71:36:
1c:ae:dc:bd:9e:a5:62:0c:5e:83:f4:11:6c:d2:93:
92:8e:29:cd:29:e1:a7:49:00:15:64:9a:d9:77:ec:
f0:79:84:89:2b:84:6f:6c:3a:4c:71:42:af:6e:84:
c6:c5:34:8b:c0:e4:61:ee:84:65:be:0c:1e:a5:25:
49:c6:f6:06:58:11:40:f6:e3:e2:55:c9:f4:b8:22:
65:ac:10:b9:5a:8f:4b:32:c3:c2:88:f2:46:38:35:
e0:3b:ae:a0:6c:7b:02:a5:fa:21:d6:9f:4e:75:29:
1f:89:0b:62:e8:5b:ae:71:eb:88:a2:18:cc:c2:1d:
a1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:90:67:33:68:37:EF:F5:2A:07:23:D4:8C:41:76:2E:9D:B3:D2:4E
X509v3 Authority Key Identifier:
keyid:0A:AE:1A:60:58:BB:DC:D0:83:50:68:E3:B4:F9:DE:51:F2:BD:90:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cq4aYFi73NCDUGjjtPneUfK9kFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/9c0b2e-7be9-4bc4-9320-b2247b3a52d8/1/iZBnM2g37_UqByPUjEF2Lp2z0k4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/9c0b2e-7be9-4bc4-9320-b2247b3a52d8/1/Cq4aYFi73NCDUGjjtPneUfK9kFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.142.0/24
Signature Algorithm: sha256WithRSAEncryption
46:e2:37:86:b5:f1:ae:76:78:5b:51:e9:4c:32:e3:69:95:07:
94:1b:6c:5a:fa:51:8d:36:74:e7:47:4b:71:f4:35:06:57:c8:
0f:8f:2e:98:53:57:28:35:b5:70:7a:e8:f9:ab:8d:8e:2d:62:
24:c6:c9:eb:1a:8b:7a:c3:9e:f6:4e:2d:ce:b7:d6:8b:07:4e:
c2:9b:ff:82:ce:f7:1b:3a:2e:16:16:9b:6b:e3:3c:1f:3a:58:
a3:76:0f:62:1c:6d:b3:58:86:0e:a4:55:24:da:e0:e5:54:8c:
0f:c3:ef:d1:9a:19:b1:c8:de:3d:c2:2e:bc:d8:78:c7:86:a0:
31:91:f7:15:9d:d6:34:da:ab:09:3c:8e:04:ce:c5:77:03:f8:
92:8d:8c:8e:81:e5:c0:72:73:da:55:2a:dd:c7:6a:5e:a6:6f:
25:47:92:85:2c:cf:9d:9d:2c:69:39:e1:21:cc:55:2f:95:da:
3e:78:7e:7f:a2:3c:92:9e:35:5f:06:ba:58:39:2e:3f:85:03:
06:65:ee:9a:16:7b:4a:17:71:06:33:49:76:36:12:a8:b8:d1:
27:35:89:11:ac:a8:eb:38:4b:89:0c:7b:61:b4:56:4f:11:6b:
ae:bb:9d:5e:08:4a:e5:17:1f:aa:51:a0:83:f4:eb:ce:16:e1:
59:08:c8:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:22:38 2024 by rpki-client on console-fra.rpki-client.org