Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/V9TkEfzhqY0gnSNWuBHRSsiob7Q.roa
File: V9TkEfzhqY0gnSNWuBHRSsiob7Q.roa (raw, json)
Hash identifier: HV6hj7rvnDER5m1QY8ywQpVliID6mH1hsO/aLDR6G38=
Subject key identifier: 57:D4:E4:11:FC:E1:A9:8D:20:9D:23:56:B8:11:D1:4A:C8:A8:6F:B4
Certificate issuer: /CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Certificate serial: 01856F429E914780582497E175C8E0F4A26D
Authority key identifier: 5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/V9TkEfzhqY0gnSNWuBHRSsiob7Q.roa
Signing time: Sun 01 Jan 2023 21:35:14 +0000
ROA not before: Sun 01 Jan 2023 21:35:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 19551
IP address blocks: 91.231.192.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:9e:91:47:80:58:24:97:e1:75:c8:e0:f4:a2:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d82ca6f8eb685a573e5d1d91f8f06121ab02a37
Validity
Not Before: Jan 1 21:35:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=57d4e411fce1a98d209d2356b811d14ac8a86fb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ee:3a:72:2c:e7:b1:f5:49:f5:5c:54:ce:c0:
09:29:dc:e8:a5:3a:f4:ab:71:13:3a:39:24:6b:26:
b4:74:ff:9b:a9:a5:dc:66:65:92:cf:a5:2d:09:31:
18:61:8f:fe:8f:3d:ab:6c:64:7f:22:4d:18:85:37:
c7:56:a6:97:e9:54:9b:61:08:a5:34:0e:96:88:b2:
a4:7e:c9:af:ab:bc:fa:01:72:4d:df:8b:1a:8b:0b:
28:db:c7:e3:9a:75:35:4e:51:25:9a:07:70:8c:ce:
0e:36:ca:de:81:01:25:46:63:d2:7c:e0:b3:67:15:
b5:91:e3:dd:3b:b5:12:fe:50:a1:b1:a6:f7:f3:cf:
82:6f:bb:f5:bf:b3:98:b1:95:a7:3e:7c:62:c7:ea:
1b:55:d3:c1:21:af:10:62:bb:f8:71:fe:66:48:f3:
e5:63:a7:1a:fb:37:96:4e:97:68:06:76:ed:cd:61:
2e:81:cc:b1:ed:5e:63:f4:e9:40:ac:2f:ec:3d:c4:
d8:94:1c:a6:48:0c:fe:f0:6b:47:f7:46:c9:5b:a3:
53:8d:ca:fc:26:e1:a0:f9:e8:d0:2a:ef:a9:b6:1d:
de:50:44:84:12:e1:28:7c:76:5d:9d:03:93:71:3b:
9e:b2:3f:61:cc:9c:66:bf:92:49:ba:a9:6f:ea:43:
ad:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:D4:E4:11:FC:E1:A9:8D:20:9D:23:56:B8:11:D1:4A:C8:A8:6F:B4
X509v3 Authority Key Identifier:
keyid:5D:82:CA:6F:8E:B6:85:A5:73:E5:D1:D9:1F:8F:06:12:1A:B0:2A:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYLKb462haVz5dHZH48GEhqwKjc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/V9TkEfzhqY0gnSNWuBHRSsiob7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/d54bc0-f781-48b0-9f6d-b5f0d21053f8/1/XYLKb462haVz5dHZH48GEhqwKjc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.192.0/22
Signature Algorithm: sha256WithRSAEncryption
80:93:ad:c7:52:63:84:3c:da:9a:cc:e7:b4:0f:5a:ef:60:ef:
48:0b:6c:fa:4f:88:44:9c:76:30:6c:80:9d:82:ca:0c:9e:50:
5f:ed:22:37:a3:b3:d3:be:02:54:e9:12:a0:2e:2e:6f:24:e2:
26:92:c9:ee:61:c7:99:18:fc:ef:0b:69:7c:19:c8:33:c4:14:
ad:cd:cf:47:b9:61:6a:bd:4c:ff:ad:83:c8:a2:49:07:83:a4:
06:78:3b:39:86:58:54:61:a3:78:99:af:f0:d3:f0:f7:64:b4:
2b:90:ed:d0:55:ba:e1:42:36:50:69:26:d5:86:ec:fe:a4:5b:
0d:e6:22:71:d0:7e:c7:36:32:6a:bc:2b:fb:25:71:ba:d9:a0:
64:d2:26:1c:24:ec:23:96:8a:80:78:a6:2e:f6:05:af:76:d3:
b2:b8:f2:84:65:9b:77:38:fb:e2:02:be:54:50:b2:f5:9d:f8:
c5:4e:75:18:53:e2:27:54:5d:71:fa:0f:fc:f2:17:6d:3a:26:
dc:b8:bb:b4:e2:05:c3:e9:73:2c:f4:82:74:09:ee:26:5a:0f:
4f:35:c3:f3:59:18:69:9c:b8:fe:a7:3f:59:b9:00:59:34:e4:
6f:a4:dd:e9:0b:d3:4a:51:3b:ef:e8:cf:b1:dd:1a:1e:6a:5d:
7c:78:97:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:40 2024 by rpki-client on console-ams.rpki-client.org