Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/bL9MC0gsbM8-gVY0FanNnNWZQGg.roa
File: bL9MC0gsbM8-gVY0FanNnNWZQGg.roa (raw, json)
Hash identifier: TsX2m0wfbZKuewx5EZG9pdZRim3A/i05Z67deSM6rPQ=
Subject key identifier: 6C:BF:4C:0B:48:2C:6C:CF:3E:81:56:34:15:A9:CD:9C:D5:99:40:68
Certificate issuer: /CN=459ad2ece3e5911093d964753b656459c9bc05a7
Certificate serial: 01856DDD31E1E49E708933FD4868B5E8758A
Authority key identifier: 45:9A:D2:EC:E3:E5:91:10:93:D9:64:75:3B:65:64:59:C9:BC:05:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZrS7OPlkRCT2WR1O2VkWcm8Bac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/bL9MC0gsbM8-gVY0FanNnNWZQGg.roa
Signing time: Sun 01 Jan 2023 15:04:50 +0000
ROA not before: Sun 01 Jan 2023 15:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8220
IP address blocks: 91.212.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:31:e1:e4:9e:70:89:33:fd:48:68:b5:e8:75:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=459ad2ece3e5911093d964753b656459c9bc05a7
Validity
Not Before: Jan 1 15:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cbf4c0b482c6ccf3e81563415a9cd9cd5994068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f8:2d:ff:c6:d9:1c:b2:f1:ca:3c:df:50:87:
de:ce:23:90:94:62:cb:21:1b:88:ed:5e:dc:b5:99:
49:2b:24:d6:31:5a:18:8c:89:d6:17:0c:c3:0a:ee:
73:ee:dc:6c:bc:82:ae:22:fa:dc:08:e9:30:16:97:
eb:44:aa:27:f0:7f:ea:65:93:5e:d0:bc:74:3d:26:
7f:1b:f7:c0:fb:e0:c6:bb:62:f2:43:de:3f:81:36:
6c:75:93:47:9c:8b:b9:39:09:65:2a:c9:8a:e6:6f:
bc:0f:5c:70:ba:78:bf:c2:12:57:38:e4:7c:35:21:
9d:89:8f:6f:1a:a1:9a:8f:91:7e:b4:73:78:62:0b:
af:57:d1:6d:0c:aa:22:9a:81:35:72:64:84:c2:c4:
cb:2e:df:61:0f:2e:63:6a:92:80:42:da:7d:18:74:
19:1e:c4:c5:fa:dc:d7:55:4d:46:b5:1c:b9:87:a8:
f1:21:17:0e:97:0f:4b:fb:3f:b9:4b:4a:c9:a1:d2:
8a:d8:e8:5c:88:9c:ec:11:89:83:a0:00:59:bf:7e:
48:52:1e:55:41:a0:3b:0d:55:62:34:ee:0c:3f:1a:
54:fd:53:97:40:ff:b2:42:87:4d:98:50:cc:ff:1f:
f7:f7:46:1c:d8:91:47:e8:15:20:13:36:fa:49:f0:
cd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BF:4C:0B:48:2C:6C:CF:3E:81:56:34:15:A9:CD:9C:D5:99:40:68
X509v3 Authority Key Identifier:
keyid:45:9A:D2:EC:E3:E5:91:10:93:D9:64:75:3B:65:64:59:C9:BC:05:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZrS7OPlkRCT2WR1O2VkWcm8Bac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/bL9MC0gsbM8-gVY0FanNnNWZQGg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/RZrS7OPlkRCT2WR1O2VkWcm8Bac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.43.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:cb:41:a0:1e:90:e4:7d:b6:8f:e2:f9:08:20:e7:f1:bb:ad:
63:4a:00:0e:d7:30:fd:35:26:c8:13:5e:f6:2c:fe:97:1d:12:
f0:f6:fa:47:5f:f7:89:2c:5d:e7:a1:69:27:38:0b:36:b9:93:
e8:58:3c:d5:e9:9f:37:91:63:4e:4c:6f:40:85:f0:80:ce:ff:
27:ef:a2:f9:58:d4:78:2c:31:f4:68:45:25:27:3c:76:bd:60:
d7:6b:1d:2e:29:ab:59:8d:ae:12:37:6f:43:73:b6:e0:fa:99:
54:6b:e2:01:04:72:1d:b7:8d:e0:bb:a9:88:7b:6c:35:e6:08:
05:d5:23:68:22:ef:cd:35:47:d2:a8:f9:48:d4:3e:28:ef:bc:
08:4c:cc:89:0a:7b:8f:61:4e:52:46:4e:f1:fd:5b:6c:d5:5b:
5a:a0:ca:c6:da:db:f5:f4:81:76:bc:e0:ce:2e:cf:dd:22:ce:
6e:88:4e:1f:8b:38:b2:ce:be:96:6f:9f:1e:14:be:93:5b:2e:
7c:13:21:f6:29:80:3c:5f:64:3a:d2:b8:47:5e:0c:a5:b8:6c:
32:7a:66:ce:29:e8:3e:e7:1a:e1:96:e9:f8:2c:ca:a9:c5:f7:
91:bc:80:d4:08:29:31:33:7f:7f:95:a3:18:4c:c0:84:31:2a:
de:70:1c:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:13:50 2024 by rpki-client on console-ams.rpki-client.org