Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/O7CoWFsBgHfb569I-tzQZxLTyGg.roa
File: O7CoWFsBgHfb569I-tzQZxLTyGg.roa (raw, json)
Hash identifier: +kYcb6hSXrrOe+vWOlRhKhiOZib/OLRxtD4OFV4Xtg4=
Subject key identifier: 3B:B0:A8:58:5B:01:80:77:DB:E7:AF:48:FA:DC:D0:67:12:D3:C8:68
Certificate issuer: /CN=c551472480683c61970f605fb199eeb6eae1218b
Certificate serial: 01856F796A86ED0303A180F017623CD2BDBD
Authority key identifier: C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/O7CoWFsBgHfb569I-tzQZxLTyGg.roa
Signing time: Sun 01 Jan 2023 22:35:06 +0000
ROA not before: Sun 01 Jan 2023 22:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56544
IP address blocks: 91.225.176.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:6a:86:ed:03:03:a1:80:f0:17:62:3c:d2:bd:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c551472480683c61970f605fb199eeb6eae1218b
Validity
Not Before: Jan 1 22:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bb0a8585b018077dbe7af48fadcd06712d3c868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:50:30:87:de:16:ea:eb:34:60:9b:90:3c:44:
bd:7b:7d:d3:57:47:ab:51:8e:89:96:7a:aa:7a:c2:
aa:84:5e:04:33:88:4d:09:28:15:02:f1:e6:55:7c:
17:6a:a1:11:59:58:69:3d:1b:cf:39:4c:a4:ce:22:
07:85:0a:48:39:62:bc:ff:87:4a:e8:10:ec:b4:e1:
25:c1:a6:25:2b:9d:2e:be:15:20:da:69:1e:8b:e4:
bd:b8:1a:98:c2:17:05:2d:3d:c4:e3:07:8d:ba:11:
55:68:d5:93:66:92:28:a6:b1:80:ed:8c:a6:45:c9:
da:b4:aa:8f:7f:ee:53:1e:8a:2e:7a:3a:b9:76:ce:
eb:3a:d3:a2:d2:e5:87:97:c7:1b:1c:be:86:a7:14:
5b:17:a3:27:6d:98:1b:41:ec:de:6a:d0:ce:ba:2a:
f3:de:d8:5f:40:4b:f3:0e:ec:b3:6a:a5:b2:bf:5a:
75:61:ec:16:95:e3:d1:47:70:42:bd:5e:6c:20:5c:
3a:d6:c0:33:ab:86:47:04:a5:3b:cc:cd:d2:54:f8:
4c:3f:e4:03:21:a9:ef:70:e7:e3:21:56:e0:b5:8a:
f9:c2:75:f8:c0:e6:c4:56:81:c9:ea:3c:1b:36:39:
a8:fd:81:80:48:ed:76:e7:e4:7f:15:18:3d:47:f1:
5d:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:B0:A8:58:5B:01:80:77:DB:E7:AF:48:FA:DC:D0:67:12:D3:C8:68
X509v3 Authority Key Identifier:
keyid:C5:51:47:24:80:68:3C:61:97:0F:60:5F:B1:99:EE:B6:EA:E1:21:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xVFHJIBoPGGXD2BfsZnuturhIYs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/O7CoWFsBgHfb569I-tzQZxLTyGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/39ef81-db85-47d6-87c2-57eb5ef896e1/1/xVFHJIBoPGGXD2BfsZnuturhIYs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.176.0/22
Signature Algorithm: sha256WithRSAEncryption
74:f6:c8:a3:14:5a:68:6f:79:d8:d7:e3:01:f7:0b:df:d8:4d:
77:bc:a0:fc:77:42:f7:03:56:44:ee:9b:70:95:c8:a9:2b:e4:
f4:db:04:e9:7f:61:d8:68:a0:80:c1:03:33:12:31:98:2d:bd:
c9:87:e8:2f:57:29:b2:e3:31:6b:50:72:67:d8:7d:ff:0e:34:
c4:6c:61:94:0f:39:d1:47:3c:a0:c8:55:11:58:91:30:51:e4:
a0:89:4a:33:61:b4:b5:09:5b:57:35:64:b4:49:bd:89:b7:06:
1f:c5:61:0c:59:ee:09:f8:8d:69:1a:e0:8e:b6:f1:f5:61:bb:
b8:80:22:8a:84:50:58:29:b0:c7:1e:5b:51:45:dd:4a:40:aa:
9e:ca:6b:8b:c4:87:47:b9:b5:ee:58:f4:83:d3:0b:0b:5b:b1:
48:f1:cb:cb:e1:2d:f0:f3:42:2d:29:56:5a:be:ae:9c:9e:0e:
7d:c9:9c:80:bb:59:71:27:60:fd:02:62:a9:58:25:a7:ba:ec:
04:11:b5:44:bf:66:e1:29:83:f5:2e:f7:58:08:76:bc:5c:1c:
e0:53:f2:e7:4c:b3:0a:50:d5:d5:93:10:9a:ac:7e:88:a9:e3:
68:92:85:a7:49:33:e2:83:b2:49:f3:c3:e7:18:e3:8b:27:e8:
b2:67:5e:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:16:27 2024 by rpki-client on console-ams.rpki-client.org