Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/1-BzJlugQ1vXisavr8ntTuQwP_0w.roa
File: 1-BzJlugQ1vXisavr8ntTuQwP_0w.roa (raw, json)
Hash identifier: wHUunlaetGt4d8e1nZpDnpgM9j+b2UPp2vyNmElnL0k=
Subject key identifier: F8:1C:C9:96:E8:10:D6:F5:E2:B1:AB:EB:F2:7B:53:B9:0C:0F:FF:4C
Certificate issuer: /CN=cbd085027dd3d2b9012533adffc9305e5ff0a548
Certificate serial: 018570FBA7898F378FEBAE239998175B4E61
Authority key identifier: CB:D0:85:02:7D:D3:D2:B9:01:25:33:AD:FF:C9:30:5E:5F:F0:A5:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y9CFAn3T0rkBJTOt_8kwXl_wpUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/1-BzJlugQ1vXisavr8ntTuQwP_0w.roa
Signing time: Mon 02 Jan 2023 05:36:58 +0000
ROA not before: Mon 02 Jan 2023 05:36:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197230
IP address blocks: 91.217.140.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:fb:a7:89:8f:37:8f:eb:ae:23:99:98:17:5b:4e:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbd085027dd3d2b9012533adffc9305e5ff0a548
Validity
Not Before: Jan 2 05:36:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f81cc996e810d6f5e2b1abebf27b53b90c0fff4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c8:78:65:3a:99:46:bf:ee:cb:02:f0:6a:4b:
f9:f9:8d:de:d2:74:81:0d:73:21:8c:af:5e:88:8c:
53:76:38:33:f2:50:ca:3a:a7:ed:7b:6a:8f:49:12:
6b:21:0c:31:22:c4:7a:44:8b:2a:55:19:1b:57:e6:
65:29:9f:4f:e4:ab:2b:e7:e1:04:7c:d0:9c:58:fa:
8f:69:b5:ee:f5:20:68:82:76:e4:76:ae:a1:19:23:
7e:14:66:09:71:a5:c0:0f:56:af:20:b2:3a:c0:ba:
67:04:62:39:33:61:7b:2b:03:75:90:4e:0d:8e:3d:
56:11:09:75:2e:02:e7:80:65:6d:fc:e5:3e:30:97:
49:f1:3c:ea:46:ee:ad:97:40:d5:76:34:55:95:56:
55:8e:e4:3d:92:49:5c:3e:9a:b1:6b:d4:93:65:cc:
16:c0:3e:37:a1:cb:fe:0e:ca:c6:0e:85:4c:c4:80:
26:b6:02:8c:c9:55:46:d0:e7:52:bf:81:84:d5:61:
9d:43:16:29:4c:61:d8:e7:52:a3:d7:9a:44:51:31:
a0:2f:1f:29:35:14:db:ac:a2:8f:b6:59:8b:e3:2e:
92:61:87:35:c1:07:d9:80:65:12:13:40:56:3c:18:
15:05:ee:5a:27:04:06:86:26:a7:3c:99:a3:13:09:
f6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:1C:C9:96:E8:10:D6:F5:E2:B1:AB:EB:F2:7B:53:B9:0C:0F:FF:4C
X509v3 Authority Key Identifier:
keyid:CB:D0:85:02:7D:D3:D2:B9:01:25:33:AD:FF:C9:30:5E:5F:F0:A5:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y9CFAn3T0rkBJTOt_8kwXl_wpUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/1-BzJlugQ1vXisavr8ntTuQwP_0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/cc2083-f966-4e07-9207-79c410cb6458/1/y9CFAn3T0rkBJTOt_8kwXl_wpUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.140.0/24
Signature Algorithm: sha256WithRSAEncryption
d9:9a:67:29:1d:1c:63:a8:eb:7e:38:cd:c3:58:27:73:cf:8d:
aa:da:13:4e:85:7a:15:5d:45:8c:e1:a7:01:64:b2:70:8f:d1:
67:e4:d2:06:60:60:d7:c8:dc:9d:30:36:9b:aa:87:0a:9b:0b:
43:4f:59:d2:68:cb:05:56:5e:ef:ff:d7:97:f9:a6:4e:87:23:
de:13:cb:80:9b:61:0e:8d:19:cf:51:1d:ac:0d:ce:ae:8d:fe:
cc:b1:34:df:a7:8d:db:7a:84:07:ed:1a:fa:c7:c4:fd:79:48:
e9:03:13:85:fe:fc:00:e7:49:d9:49:e5:4c:2a:46:ab:2d:9b:
48:a6:b9:9e:6d:e3:f8:ab:98:d2:95:d8:79:6c:10:41:06:10:
c4:f8:e3:8b:85:5a:60:dd:93:2d:31:ab:48:9a:70:8d:35:44:
27:b5:09:8f:7e:db:e6:36:da:8f:26:63:29:10:ca:33:19:95:
44:56:9f:f9:db:33:ac:4c:c5:6e:c2:3c:7c:18:86:3b:00:ab:
dc:91:b2:a0:9f:e0:b4:32:22:e0:f9:db:1a:8d:96:b8:83:43:
06:16:85:16:67:dd:74:d3:65:ae:32:88:21:36:c1:76:8e:1d:
4e:91:f3:8d:c9:2b:f4:aa:aa:2c:c3:e8:c2:55:c8:ca:10:9b:
70:eb:e8:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:52 2024 by rpki-client on console-ams.rpki-client.org