Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/SZUhqlA-BziXrW2--sCoRb9jxEw.roa
File: SZUhqlA-BziXrW2--sCoRb9jxEw.roa (raw, json)
Hash identifier: hRSsZOJwCXd7RM/Te92FLiSHlu1WE4Pz8lj9d8zJko0=
Subject key identifier: 49:95:21:AA:50:3E:07:38:97:AD:6D:BE:FA:C0:A8:45:BF:63:C4:4C
Certificate issuer: /CN=f341cfec38131f83ae3df6998fa02837585c91dd
Certificate serial: 01857246A7C574F406D3C3E6D2CAE7F0A166
Authority key identifier: F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/SZUhqlA-BziXrW2--sCoRb9jxEw.roa
Signing time: Mon 02 Jan 2023 11:38:31 +0000
ROA not before: Mon 02 Jan 2023 11:38:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 196610
IP address blocks: 91.214.253.0/24 maxlen: 24
91.214.253.0/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:a7:c5:74:f4:06:d3:c3:e6:d2:ca:e7:f0:a1:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f341cfec38131f83ae3df6998fa02837585c91dd
Validity
Not Before: Jan 2 11:38:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=499521aa503e073897ad6dbefac0a845bf63c44c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:13:ac:29:51:8e:8f:90:6f:d7:5b:c3:ec:16:
75:f9:cf:94:92:31:13:1a:ae:fb:ad:64:87:61:f3:
24:a7:3c:9c:2b:82:70:39:19:9e:38:d7:70:d4:03:
66:34:3b:6f:7c:08:21:5b:53:da:0d:f4:bd:d7:02:
02:f9:f6:74:20:37:83:de:c1:89:a7:77:a1:67:9c:
38:a2:ca:ef:88:27:62:cd:ee:49:f2:3e:86:a6:e5:
86:83:74:e8:70:9b:dc:6e:11:35:1e:5b:5c:8b:3e:
f8:1d:f4:2a:dd:00:18:35:b9:dd:d0:2a:85:3a:ce:
2d:a2:2f:77:7a:73:ae:82:5f:fb:b0:ec:3e:10:57:
4e:cf:44:9e:84:cd:06:cf:ac:2e:15:1a:59:c2:c0:
ac:f4:0b:ac:54:69:5d:d4:3d:23:0b:89:f6:a3:33:
14:93:34:bf:19:80:a2:95:d9:ea:d7:5b:63:91:5e:
68:b5:de:7e:2a:ce:7c:e7:2c:2d:4d:0a:26:b6:aa:
62:c5:b0:35:d2:1c:ef:36:2e:dd:cf:75:a7:04:20:
6f:7c:04:f2:11:69:d9:db:98:54:6c:34:c2:c0:b7:
c4:f9:cd:cb:96:b0:2b:4f:f1:69:a3:3e:29:60:f0:
9f:65:90:b5:c9:eb:89:93:eb:a8:58:c2:1e:b5:d2:
7b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:95:21:AA:50:3E:07:38:97:AD:6D:BE:FA:C0:A8:45:BF:63:C4:4C
X509v3 Authority Key Identifier:
keyid:F3:41:CF:EC:38:13:1F:83:AE:3D:F6:99:8F:A0:28:37:58:5C:91:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/80HP7DgTH4OuPfaZj6AoN1hckd0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/SZUhqlA-BziXrW2--sCoRb9jxEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/22f851-77ee-4d64-a95e-09afb7d6fb16/1/80HP7DgTH4OuPfaZj6AoN1hckd0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.253.0/24
Signature Algorithm: sha256WithRSAEncryption
90:4a:6b:e2:11:f5:e7:17:54:ab:be:18:69:65:8d:ed:92:07:
f9:88:a3:8f:ee:35:ee:5d:1d:6e:ae:87:52:29:a0:da:73:bd:
94:d6:2c:44:4c:f5:2b:d7:03:a9:f7:21:ec:0a:3b:66:f5:03:
a6:e7:d1:a1:df:72:df:1d:2e:db:06:5e:33:ce:d3:d6:86:5c:
20:be:67:82:a2:c7:02:96:1f:d3:fa:2a:54:b8:45:b6:cc:91:
d8:da:90:3e:ad:d1:76:8c:96:70:28:e0:da:3a:10:63:61:70:
17:2a:e2:20:1a:06:f8:68:94:9a:ca:71:23:72:6f:56:f5:09:
ae:5c:32:fc:ec:5d:dc:de:8e:df:c8:1d:1b:b1:c9:9d:b0:a2:
04:f5:e5:93:9e:d4:da:9b:4e:fa:2a:57:69:85:a1:33:9b:4f:
77:37:cb:68:88:fb:17:c1:fd:8e:41:56:de:66:df:01:a4:22:
ba:7a:c5:cc:c7:d7:e3:be:68:50:69:d9:45:4c:5b:00:50:0b:
c1:4c:7a:f8:2e:6c:a9:0e:a3:5d:f4:be:29:19:3b:b6:f5:ae:
15:08:bc:2b:4c:68:a0:2a:c0:00:4c:4c:fb:ad:42:0c:00:0e:
dd:e0:57:41:dc:7e:8e:f9:46:fc:e8:34:85:40:d6:3b:f6:bc:
e2:36:ae:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:49 2024 by rpki-client on console-fra.rpki-client.org