Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/kXQUX8LfedbP0Q1upAKNcOXQgAg.roa
File: kXQUX8LfedbP0Q1upAKNcOXQgAg.roa (raw, json)
Hash identifier: FzKD+wbp0sEQNNQ7IR4hi7ID+z+cN+VDCOZsIzeqxl4=
Subject key identifier: 91:74:14:5F:C2:DF:79:D6:CF:D1:0D:6E:A4:02:8D:70:E5:D0:80:08
Certificate issuer: /CN=266547208206ad54474c69fccbedc24aa56a62c2
Certificate serial: 01856D540E25C1D21C70AB935E69030A1A73
Authority key identifier: 26:65:47:20:82:06:AD:54:47:4C:69:FC:CB:ED:C2:4A:A5:6A:62:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmVHIIIGrVRHTGn8y-3CSqVqYsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/kXQUX8LfedbP0Q1upAKNcOXQgAg.roa
Signing time: Sun 01 Jan 2023 12:35:03 +0000
ROA not before: Sun 01 Jan 2023 12:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12301
IP address blocks: 91.196.112.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:54:0e:25:c1:d2:1c:70:ab:93:5e:69:03:0a:1a:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=266547208206ad54474c69fccbedc24aa56a62c2
Validity
Not Before: Jan 1 12:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9174145fc2df79d6cfd10d6ea4028d70e5d08008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ed:ba:18:48:27:05:93:6e:97:e7:5c:a0:f7:
c7:3c:ac:78:d8:68:eb:90:0f:e0:3d:5b:cc:71:9d:
3a:24:5a:93:be:fc:c6:85:15:21:c2:d5:9f:c5:52:
07:00:e3:fd:ae:a6:75:83:6b:8e:90:fa:37:df:c3:
e5:23:c4:0a:72:b1:e9:76:25:1a:82:f8:62:c7:ab:
87:d1:ff:53:79:bc:a1:60:75:d8:0b:69:b7:c0:04:
ef:4a:7c:d8:88:c9:c5:2c:90:8e:4d:f3:c2:e2:07:
e8:cd:ae:b5:8f:1e:42:c9:21:9c:e2:e3:e3:50:34:
2b:df:98:a7:78:a9:44:be:e1:26:e6:94:df:2e:3e:
8e:c8:6f:35:2b:1d:e1:d3:cd:39:09:fc:98:f7:12:
75:f7:7f:e3:7b:34:56:ab:af:66:b6:2a:60:67:83:
65:e9:9b:21:37:90:f2:83:48:41:91:97:04:d7:74:
df:c3:8e:1b:ca:25:59:a2:57:32:85:80:b7:14:c2:
62:04:24:7e:8e:6c:02:06:68:97:f7:da:99:6a:13:
76:27:04:27:b1:ca:f9:33:9a:09:76:12:b4:fe:4e:
9f:ca:a5:19:c4:bc:7d:7d:46:f5:e0:f7:9e:03:92:
5a:fb:e9:a5:02:a0:d4:e3:c0:a5:7f:21:2b:4a:f6:
df:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:74:14:5F:C2:DF:79:D6:CF:D1:0D:6E:A4:02:8D:70:E5:D0:80:08
X509v3 Authority Key Identifier:
keyid:26:65:47:20:82:06:AD:54:47:4C:69:FC:CB:ED:C2:4A:A5:6A:62:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmVHIIIGrVRHTGn8y-3CSqVqYsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/kXQUX8LfedbP0Q1upAKNcOXQgAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/a8f553-f52c-4949-97e2-822d159a97af/1/JmVHIIIGrVRHTGn8y-3CSqVqYsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.112.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:ba:ea:94:0b:12:37:4a:54:a9:7b:3c:40:2e:37:44:71:6e:
84:a0:59:cf:f7:35:e4:51:f9:1f:c3:7e:34:b5:2e:5f:52:b8:
a8:38:13:06:49:78:24:5e:d9:e6:72:d6:48:61:8b:26:a7:07:
18:67:16:4b:00:99:16:10:58:13:f4:6c:86:af:76:23:ed:f2:
c1:77:cf:07:f2:b7:88:eb:a6:95:ed:15:b7:77:bc:12:9f:65:
dd:05:83:67:fb:42:08:0b:01:d0:7b:6e:f9:92:af:d4:44:b3:
31:d1:fe:9f:2e:bd:87:31:db:a5:a8:3b:41:94:58:40:90:42:
19:f3:45:a3:24:ee:72:cd:5e:f7:6e:f2:6b:1c:64:9e:7f:a8:
22:4e:dc:6f:46:23:4b:b5:f1:d8:65:31:54:86:a8:3d:ec:da:
f0:ad:ac:c6:61:95:11:02:66:80:81:9d:dd:a2:fe:89:e5:6f:
f9:4f:5a:84:7a:79:bd:c5:90:47:ac:7d:e8:df:94:cf:6d:ec:
ee:4d:fc:47:17:7b:0b:eb:cf:9c:c5:ec:bc:77:a6:2a:13:3d:
05:8f:f1:00:59:8d:fa:66:c2:3b:e2:a6:d8:d6:4b:5a:0a:ea:
1c:50:f3:de:87:0f:eb:34:ed:30:11:35:52:dc:09:ca:7b:85:
7e:87:dd:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:19 2024 by rpki-client on console-ams.rpki-client.org