Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/ChNhsajEu1DhQobRd-MDA9httkI.roa
File: ChNhsajEu1DhQobRd-MDA9httkI.roa (raw, json)
Hash identifier: L65AOmGNL0SWh776LcMaW+NaAuJ1RKhN4saYaazwN+8=
Subject key identifier: 0A:13:61:B1:A8:C4:BB:50:E1:42:86:D1:77:E3:03:03:D8:6D:B6:42
Certificate issuer: /CN=c092d8d5511b19ece456960f23bfa886ee1d570b
Certificate serial: 018818C5FFE2023B3F7EF59B163DF9EB9E5E
Authority key identifier: C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/ChNhsajEu1DhQobRd-MDA9httkI.roa
Signing time: Sun 14 May 2023 05:40:09 +0000
ROA not before: Sun 14 May 2023 05:40:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58322
IP address blocks: 91.106.32.0/23 maxlen: 23
91.106.32.0/24 maxlen: 24
91.106.33.0/24 maxlen: 24
91.106.34.0/24 maxlen: 24
91.106.34.0/23 maxlen: 23
91.106.32.0/22 maxlen: 22
91.106.35.0/24 maxlen: 24
91.106.44.0/24 maxlen: 24
91.106.40.0/22 maxlen: 22
91.106.40.0/21 maxlen: 21
91.106.41.0/24 maxlen: 24
91.106.42.0/23 maxlen: 23
91.106.42.0/24 maxlen: 24
91.106.43.0/24 maxlen: 24
91.106.44.0/23 maxlen: 23
91.106.44.0/22 maxlen: 22
91.106.40.0/23 maxlen: 23
91.106.40.0/24 maxlen: 24
91.106.45.0/24 maxlen: 24
91.106.46.0/23 maxlen: 23
91.106.46.0/24 maxlen: 24
91.106.47.0/24 maxlen: 24
91.106.48.0/24 maxlen: 24
91.106.49.0/24 maxlen: 24
91.106.50.0/24 maxlen: 24
91.106.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 10 Dec 2023 19:21:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:18:c5:ff:e2:02:3b:3f:7e:f5:9b:16:3d:f9:eb:9e:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c092d8d5511b19ece456960f23bfa886ee1d570b
Validity
Not Before: May 14 05:40:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0a1361b1a8c4bb50e14286d177e30303d86db642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:8a:92:6f:81:3a:4f:da:43:ab:47:8e:55:de:
05:f1:aa:f7:4a:72:c8:61:d4:48:2a:5e:c9:ac:60:
37:25:e8:1e:9a:81:26:62:6e:f4:82:bb:b5:ce:dd:
51:71:be:f3:4a:cb:b6:1a:03:13:7a:f1:6c:21:0d:
5b:86:e1:40:35:6b:db:ca:e4:b4:ac:3f:9e:e4:b8:
eb:4c:ca:04:d7:ce:95:29:d0:85:5e:70:63:38:b4:
65:76:b2:44:9f:62:f9:81:0d:67:d2:9a:15:a4:8a:
7b:c6:2c:ee:3d:f3:b8:21:60:a7:8b:5d:ca:2e:39:
1c:ba:df:a7:40:eb:8a:3c:00:73:7d:d3:93:2d:7c:
c8:6e:58:b4:c8:7b:c3:16:c6:29:c2:e5:7b:c0:19:
34:c2:c4:6b:81:03:6c:1e:21:6a:b9:05:52:69:fc:
0b:7d:73:3e:61:99:67:42:da:c7:0f:29:3c:71:f5:
96:5b:ae:18:90:d9:8e:49:69:ea:0b:2e:da:a7:8c:
2d:20:33:cb:f6:23:96:bc:dd:6e:64:0e:5a:4a:95:
92:95:2f:81:bf:3f:f6:78:6f:16:0d:a7:a6:13:59:
41:4a:37:0f:6d:d1:85:12:d1:f8:58:81:52:ee:49:
66:49:b9:e4:a5:97:b0:b2:dc:96:40:6d:8f:60:72:
c8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:13:61:B1:A8:C4:BB:50:E1:42:86:D1:77:E3:03:03:D8:6D:B6:42
X509v3 Authority Key Identifier:
keyid:C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/ChNhsajEu1DhQobRd-MDA9httkI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.32.0/22
91.106.40.0-91.106.51.255
Signature Algorithm: sha256WithRSAEncryption
b6:7e:6c:61:a4:b8:2f:4c:3c:37:e6:66:07:cd:d5:08:e3:f6:
05:06:d8:b9:9e:76:2a:57:f7:01:c2:dc:21:96:d1:d7:ab:12:
36:f8:08:66:f9:76:25:1b:5c:e9:77:b2:db:a8:e0:40:11:b4:
12:11:0e:c2:06:09:f6:5f:71:d4:87:42:db:3b:76:d3:3e:a0:
34:74:d3:82:63:7d:62:db:fb:6a:10:7a:02:a5:33:2f:9a:f2:
5e:3c:8a:ca:38:e9:af:d8:e2:5b:f4:49:19:95:ea:96:99:c0:
c4:40:ff:8c:07:fc:53:45:dc:b9:6f:9b:ac:18:50:a0:c0:ed:
19:c9:68:fd:64:26:f7:5d:a6:31:bc:75:6a:87:31:fe:50:8f:
7f:ec:3d:21:0a:4f:4f:6d:2a:a8:a4:56:90:ab:4c:34:d7:62:
87:3f:b6:ab:2d:89:80:0c:7b:b3:e5:6c:21:54:93:b2:56:9f:
8e:fd:9c:12:7e:9d:af:b4:d5:ae:85:79:e8:f2:24:87:68:0a:
72:a6:40:42:55:ff:60:47:5c:28:d3:87:54:88:2e:11:9a:2a:
b5:0d:8c:d6:41:66:46:7e:05:93:69:26:4d:71:23:f7:df:e1:
de:68:3b:d0:97:07:84:dd:d9:91:52:ca:33:93:c0:2f:07:d0:
6d:31:59:29
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org