Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Tl-kQKiQK5mKI89nxY5N4HneLyg.roa
File: Tl-kQKiQK5mKI89nxY5N4HneLyg.roa (raw, json)
Hash identifier: nbgNs1Sk94vD6OQyipGPfQq1j00u3nwvTQ50ZJuh46M=
Subject key identifier: 4E:5F:A4:40:A8:90:2B:99:8A:23:CF:67:C5:8E:4D:E0:79:DE:2F:28
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 018BAEDB6B13B8EEE33E306E95C2948AD73D
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Tl-kQKiQK5mKI89nxY5N4HneLyg.roa
Signing time: Wed 08 Nov 2023 12:14:57 +0000
ROA not before: Wed 08 Nov 2023 12:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 273069
IP address blocks: 91.109.161.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:ae:db:6b:13:b8:ee:e3:3e:30:6e:95:c2:94:8a:d7:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: Nov 8 12:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4e5fa440a8902b998a23cf67c58e4de079de2f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:31:03:b2:9e:8f:44:85:2a:2b:1b:e0:38:39:
e3:3b:d6:70:e6:df:a4:42:dc:24:4f:b4:54:4c:6e:
c2:9c:2f:22:79:f5:30:9b:ca:93:27:27:59:4f:04:
42:17:aa:86:41:6d:be:3b:27:d4:c3:43:07:e6:e0:
7a:d9:3f:e3:63:77:78:54:bc:9a:50:df:a7:fe:28:
96:15:09:a3:72:85:4a:b1:f0:83:9d:61:38:21:4f:
8a:ab:46:5e:ff:80:f7:58:36:e1:18:6f:c2:33:ea:
2e:27:ee:16:b4:70:35:61:a3:1f:4d:17:c8:0f:e3:
65:b8:b7:26:17:c2:e2:2d:15:67:40:62:19:20:bb:
78:35:db:17:14:d3:75:f2:f8:a9:56:96:ec:23:ee:
ff:73:cc:50:72:3a:50:21:2a:e4:b3:78:17:e1:fd:
f7:ae:7d:e0:b7:8e:55:28:e0:86:dc:2e:1b:d4:c4:
1d:89:e8:dc:86:67:a5:8c:57:a0:76:b0:42:d6:50:
f1:65:cb:68:80:d9:7e:1f:fa:28:5b:74:13:11:38:
6e:c4:15:dd:76:8b:d2:bf:8e:24:cd:1d:ed:6d:94:
20:60:32:b4:43:3e:8f:05:4a:93:31:c6:17:b2:01:
76:40:2a:03:73:72:0d:58:fc:43:bd:6b:0f:92:5e:
32:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:5F:A4:40:A8:90:2B:99:8A:23:CF:67:C5:8E:4D:E0:79:DE:2F:28
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/Tl-kQKiQK5mKI89nxY5N4HneLyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.109.161.0/24
Signature Algorithm: sha256WithRSAEncryption
39:2b:0c:1a:8c:a8:3c:e0:30:82:bd:63:de:73:05:51:ce:df:
8a:75:c9:0e:40:12:b6:e5:39:85:02:58:86:4d:ed:11:06:0f:
4a:08:35:67:d7:52:9e:65:e7:fb:63:e9:85:aa:20:26:14:22:
0f:12:6a:44:19:cf:e1:d7:f0:af:05:f5:c1:58:bf:50:54:02:
5c:2c:b7:9b:2f:0a:04:20:d6:96:33:ad:4b:80:e4:9c:2b:9c:
89:c5:58:c0:5e:39:88:5c:61:6d:44:3d:bc:4b:61:4e:0f:9e:
c2:c1:d7:52:85:55:ff:96:2e:50:ee:26:35:9c:6f:1f:68:c3:
0c:67:54:1d:97:4b:5e:02:54:4f:2c:65:a4:28:a4:37:de:f4:
41:89:fe:11:6e:66:7d:02:64:77:ea:b9:67:63:e4:d5:22:8f:
a6:51:bb:44:d0:9d:83:9a:9d:f8:bc:5f:b5:22:c4:f0:f8:f7:
c2:7f:b7:0a:4d:ab:e6:e1:2e:4a:ff:16:34:e4:17:b5:67:72:
c6:50:bb:41:c5:f4:da:71:26:a3:a2:f0:5b:ab:d7:cc:b3:05:
69:3d:84:3d:43:90:f4:11:ff:d1:82:23:a2:7f:9c:95:4f:eb:
92:0a:f6:12:2f:e5:19:2e:72:2f:ee:f8:3c:bd:9a:80:19:8b:
5f:4e:84:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:25:47 2024 by rpki-client on console-fra.rpki-client.org