Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/VdsAqI_CVl8kc-fed9hbD1SjXZY.roa
File: VdsAqI_CVl8kc-fed9hbD1SjXZY.roa (raw, json)
Hash identifier: /tCcYWzZUtakm6ii/zvorFPQ8QXvic6wUH1l2HWbc/I=
Subject key identifier: 55:DB:00:A8:8F:C2:56:5F:24:73:E7:DE:77:D8:5B:0F:54:A3:5D:96
Certificate issuer: /CN=afa474a5ea601c809291ee79bae3918964d0871e
Certificate serial: 0185708CE6307A9129C9A43104F282A16BD7
Authority key identifier: AF:A4:74:A5:EA:60:1C:80:92:91:EE:79:BA:E3:91:89:64:D0:87:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6R0pepgHICSke55uuORiWTQhx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/VdsAqI_CVl8kc-fed9hbD1SjXZY.roa
Signing time: Mon 02 Jan 2023 03:36:00 +0000
ROA not before: Mon 02 Jan 2023 03:36:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48736
IP address blocks: 91.209.241.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:e6:30:7a:91:29:c9:a4:31:04:f2:82:a1:6b:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afa474a5ea601c809291ee79bae3918964d0871e
Validity
Not Before: Jan 2 03:36:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55db00a88fc2565f2473e7de77d85b0f54a35d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:e3:e9:bb:77:8f:e0:c2:e3:7b:61:35:ee:76:
a8:c3:b3:3b:cc:3e:e3:3f:40:6c:bf:81:84:c1:2d:
5a:bc:8b:98:72:aa:c7:b9:a9:62:3d:e9:79:e5:07:
7f:d2:f9:77:a6:aa:ab:1e:31:76:8d:2b:1d:1a:bf:
30:2b:49:e5:be:83:c2:85:ff:a4:b4:da:d5:a3:fa:
43:88:03:31:2b:40:71:16:34:ca:47:c4:dc:ef:5d:
8e:26:ce:d1:df:ec:f4:46:e8:51:6a:a0:de:54:21:
71:50:78:5a:ec:32:19:9e:db:cc:16:ee:a1:0e:55:
b9:8f:6c:96:ad:88:2f:15:cf:b0:24:1a:50:b1:10:
9b:ae:29:42:fc:c4:20:25:86:d0:ae:c2:e3:b8:24:
19:7c:98:f1:07:65:e2:35:31:64:a7:88:32:f7:f5:
6e:fc:61:20:b6:26:46:e0:4d:6f:4f:8c:01:1c:c8:
fb:a5:f7:92:e6:7b:d6:a3:bb:95:8d:d4:3c:ce:75:
50:2b:14:88:d4:93:3f:82:c1:ab:b0:77:76:ba:94:
71:44:a8:d8:ef:57:ab:35:1d:60:85:5c:24:19:df:
80:d6:43:9f:54:b1:c1:aa:29:4c:3e:70:26:c2:11:
74:c9:83:88:19:4e:55:1e:9e:d7:1a:31:10:42:dd:
03:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:DB:00:A8:8F:C2:56:5F:24:73:E7:DE:77:D8:5B:0F:54:A3:5D:96
X509v3 Authority Key Identifier:
keyid:AF:A4:74:A5:EA:60:1C:80:92:91:EE:79:BA:E3:91:89:64:D0:87:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6R0pepgHICSke55uuORiWTQhx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/VdsAqI_CVl8kc-fed9hbD1SjXZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/cc4d76-3ae9-491e-9bd2-193cc61bce61/1/r6R0pepgHICSke55uuORiWTQhx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.241.0/24
Signature Algorithm: sha256WithRSAEncryption
30:dc:16:36:f3:08:ed:47:73:f6:43:ca:92:b2:ef:1d:ad:3c:
a1:11:a1:a5:9d:08:5d:a1:45:d6:01:36:4d:18:c3:ee:ce:29:
26:ef:d5:bd:7b:79:7a:1e:2d:ab:55:07:7f:ae:37:77:39:20:
a5:d0:c9:2f:93:23:f8:d6:ee:e7:de:76:54:f7:71:a1:0f:4b:
8d:ae:38:65:a3:96:81:9f:49:ea:6a:ce:67:b2:8e:f3:0c:58:
f9:be:fd:5e:14:41:b4:35:50:6b:6b:2f:4c:dd:39:eb:46:40:
9f:f0:18:76:62:25:73:f8:e9:b2:fa:ad:e6:43:25:73:9f:52:
ab:0c:11:0f:f5:d8:7f:a7:e0:50:62:69:09:99:85:6d:0e:0e:
2f:0b:8f:49:61:0e:e1:60:b4:48:65:1d:1d:58:d2:f1:29:6f:
f5:04:01:9e:fb:88:1a:22:8e:b4:f6:25:6b:cb:cc:83:ab:37:
3c:43:84:e8:77:6c:2f:4c:0c:6f:78:97:08:27:61:1e:3c:da:
7d:a8:31:f1:de:ad:a1:0a:9b:c3:ca:34:8d:7d:17:52:f5:57:
c7:6c:aa:a7:e4:d6:d5:35:67:6f:53:4a:80:6f:f3:af:0f:2d:
e2:5c:0b:3b:bd:2e:ab:6e:2e:39:5c:b1:35:b8:9f:22:6e:99:
8d:0c:7e:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:40:19 2024 by rpki-client on console-ams.rpki-client.org