Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/829ZBpTX-236CxFZvrJyDztbQaE.roa
File: 829ZBpTX-236CxFZvrJyDztbQaE.roa (raw, json)
Hash identifier: iIX0g6PBmwVz2tGO1esser3aJ7YStcc+6Lj+R8NM/zw=
Subject key identifier: F3:6F:59:06:94:D7:FB:6D:FA:0B:11:59:BE:B2:72:0F:3B:5B:41:A1
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0185727A2DF0E5D2E585367E4D287E5539AD
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/829ZBpTX-236CxFZvrJyDztbQaE.roa
Signing time: Mon 02 Jan 2023 12:34:47 +0000
ROA not before: Mon 02 Jan 2023 12:34:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9910
IP address blocks: 91.132.58.0/23 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:7a:2d:f0:e5:d2:e5:85:36:7e:4d:28:7e:55:39:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Jan 2 12:34:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f36f590694d7fb6dfa0b1159beb2720f3b5b41a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fb:5f:09:02:c9:51:ff:8e:13:cd:f4:2c:61:
b0:fd:83:b5:2c:db:df:39:df:62:c9:b9:70:0c:4c:
a2:24:0d:f0:6c:35:bb:c9:af:85:73:cb:17:4f:92:
bd:6e:10:0a:36:11:58:6d:be:82:72:d8:06:3f:26:
6b:ee:61:d4:21:46:a8:41:d9:48:aa:06:20:1c:d2:
ce:7b:45:f4:aa:71:bf:f7:da:c7:06:48:19:e9:ea:
c6:4f:6d:d5:a0:84:44:33:18:13:24:af:c7:99:01:
ed:fa:bc:8d:61:73:1d:aa:32:43:ee:46:02:7c:1f:
81:88:d5:d4:84:cf:64:6b:0a:48:8b:36:a3:28:9e:
00:7f:ae:bf:6c:25:5a:d7:21:f1:72:81:36:48:da:
8a:0a:6d:92:f8:91:38:2b:74:9b:ba:de:a4:df:e5:
d1:e1:27:55:6e:0f:56:4a:13:87:b4:b2:8e:84:23:
2b:07:61:7e:11:ba:3a:e2:19:a3:fd:6a:6a:46:15:
b7:a0:38:64:a9:36:3c:e9:ba:85:7a:84:f1:ae:97:
64:7b:47:a6:0d:a0:81:65:31:b5:72:b3:33:3d:b8:
a6:14:4b:53:22:a3:79:97:e0:0b:81:8a:4a:3c:68:
b9:61:36:ba:f6:20:c5:84:f9:4f:49:43:47:c9:f3:
2d:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:6F:59:06:94:D7:FB:6D:FA:0B:11:59:BE:B2:72:0F:3B:5B:41:A1
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/829ZBpTX-236CxFZvrJyDztbQaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.58.0/23
Signature Algorithm: sha256WithRSAEncryption
0a:ce:31:7c:9a:32:2f:30:cb:ea:94:8f:ce:f4:fc:ee:57:84:
2c:9a:57:eb:b9:33:27:b4:ba:91:68:17:49:47:51:7d:a3:3a:
d7:2e:6b:0b:a5:91:b3:cd:ab:eb:48:47:d0:61:44:36:2e:4d:
71:58:18:ca:83:e2:f9:81:e3:e2:5a:0e:3d:ff:1d:59:f9:f5:
4b:15:f4:9c:e9:b6:2e:06:c2:e1:bd:29:0c:f6:3f:a6:bd:cc:
5c:f5:53:80:37:1c:5c:cf:aa:0f:28:62:71:13:9c:28:ae:75:
ee:bf:69:bf:fb:72:f0:14:01:71:2a:3a:73:0f:0d:27:29:22:
15:d9:ce:3c:09:c7:09:58:da:11:bd:ed:d0:79:23:84:64:0b:
92:bb:ba:7f:a4:de:9f:b6:a5:19:c3:f5:ef:cf:ad:05:b0:23:
7a:cb:c0:f2:44:c8:37:c3:72:40:2c:74:1f:0b:27:65:b0:68:
f1:d2:9d:c5:a9:a0:37:63:7c:e9:18:89:78:7c:30:45:fb:65:
d6:a5:4f:ca:10:70:06:a2:04:2d:a3:4a:0f:5a:e1:23:a4:aa:
12:b3:6c:5c:45:dd:a6:99:2c:1a:2f:67:a5:9b:bd:35:81:c0:
5f:43:a9:66:70:b8:1d:07:e5:5d:29:1b:51:44:25:79:79:49:
8f:92:5c:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:24 2023 by rpki-client on console-ams.rpki-client.org