Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/4nkmLNexW9bXeAP8YADxei3ty54.roa
File: 4nkmLNexW9bXeAP8YADxei3ty54.roa (raw, json)
Hash identifier: HgWXe5vJn4fP1vzLOWXgCz4qbSuiG4OvhZQKktyXCZc=
Subject key identifier: E2:79:26:2C:D7:B1:5B:D6:D7:78:03:FC:60:00:F1:7A:2D:ED:CB:9E
Certificate issuer: /CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Certificate serial: 01856F9DB6470CC3C8B58B955F00CE929525
Authority key identifier: 8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/4nkmLNexW9bXeAP8YADxei3ty54.roa
Signing time: Sun 01 Jan 2023 23:14:44 +0000
ROA not before: Sun 01 Jan 2023 23:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1885
IP address blocks: 91.93.185.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:b6:47:0c:c3:c8:b5:8b:95:5f:00:ce:92:95:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d59c4323f767ce4ffc85daad208b90c04fbd3e9
Validity
Not Before: Jan 1 23:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e279262cd7b15bd6d77803fc6000f17a2dedcb9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ce:af:33:5c:4a:5e:f6:8e:ce:13:d1:ab:7c:
89:6f:59:a1:6b:d2:0a:b2:1b:85:cc:bc:65:13:73:
cd:53:37:09:4a:39:03:15:8f:08:78:f6:7c:ac:df:
e4:66:83:a4:ef:47:02:58:94:d6:4d:8f:7a:41:78:
d7:98:65:bc:9a:3c:0b:6d:f9:e9:43:cc:7c:8c:17:
e3:99:67:a6:8f:2c:fb:09:57:5c:a6:8f:43:c9:ff:
13:be:90:d2:37:cc:52:8f:e5:e1:9d:66:95:91:6d:
c4:5b:55:a7:86:69:3b:9a:40:9b:3d:3c:63:dd:44:
15:8c:a1:66:17:88:0f:17:a3:da:35:9c:44:91:d1:
98:e9:ef:5e:18:b3:a7:4f:b0:77:ea:85:29:82:46:
9d:d2:42:98:63:34:e4:c4:3a:cb:07:0b:32:5f:a9:
25:9c:6a:e4:49:45:c8:87:d2:ce:f9:a9:44:10:20:
5f:be:e9:ca:7c:80:8d:2c:62:23:2c:19:98:9a:ac:
2c:64:5b:60:2a:e3:ba:ad:20:ba:67:2a:99:13:96:
13:f9:3f:3f:12:46:15:2a:e4:39:2b:10:1c:42:f4:
1c:99:3f:a6:72:a8:0e:78:65:a3:4b:b4:e9:f0:64:
af:3f:aa:73:f2:37:14:5a:28:e1:56:b0:fb:8e:cd:
4e:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:79:26:2C:D7:B1:5B:D6:D7:78:03:FC:60:00:F1:7A:2D:ED:CB:9E
X509v3 Authority Key Identifier:
keyid:8D:59:C4:32:3F:76:7C:E4:FF:C8:5D:AA:D2:08:B9:0C:04:FB:D3:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jVnEMj92fOT_yF2q0gi5DAT70-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/4nkmLNexW9bXeAP8YADxei3ty54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f09ecf-e805-4158-b315-f2be9f6c664c/1/jVnEMj92fOT_yF2q0gi5DAT70-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.93.185.0/24
Signature Algorithm: sha256WithRSAEncryption
35:ec:38:d2:33:d0:39:97:6c:23:ab:77:82:6c:89:d0:fb:cb:
f1:9a:67:c8:0b:87:66:cd:2d:c9:e2:fd:b7:71:75:1d:c8:17:
f4:f1:24:0c:57:22:79:eb:e8:50:b3:27:4f:5b:07:21:1c:2e:
d9:54:f7:98:a0:2a:1c:72:8b:c9:bf:6c:fb:c8:97:9c:70:6f:
e0:07:8a:d2:08:d0:82:09:b9:a2:7d:9a:f0:e3:75:27:a1:39:
3b:1f:3c:3d:44:27:b6:b3:7b:13:70:9b:cf:f2:98:2a:ff:33:
52:78:64:e5:b8:b2:b7:e3:c6:dd:55:1b:b5:56:d9:92:e3:a0:
a2:ab:2c:a4:fa:d8:b9:db:67:0b:be:42:a2:60:e6:d2:ee:b1:
b7:3c:84:8d:8a:6f:f5:04:19:c2:8d:60:54:7c:c2:43:59:74:
ea:0e:33:ba:80:5f:d6:f7:93:16:3b:b3:01:29:0a:cf:5e:d3:
43:cf:24:a7:18:a4:da:5e:0e:37:f5:85:c8:0d:99:ac:cd:04:
05:e1:3e:53:c6:88:1d:9e:a1:d9:6b:20:11:a0:2b:7f:b4:b0:
dc:bc:59:65:ea:94:16:71:dd:12:68:b7:85:46:94:3b:62:fc:
74:60:64:6b:b6:ba:7d:6d:74:8e:25:95:6d:dc:7d:4b:01:b8:
5e:58:97:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:22 2024 by rpki-client on console-ams.rpki-client.org