Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/AnLELPaiJXRVgUrEdoI8Wphkppc.roa
File: AnLELPaiJXRVgUrEdoI8Wphkppc.roa (raw, json)
Hash identifier: 843uM2pLOvR3icN+SX5ptwu8QujvUk+I9uchDdYRrU0=
Subject key identifier: 02:72:C4:2C:F6:A2:25:74:55:81:4A:C4:76:82:3C:5A:98:64:A6:97
Certificate issuer: /CN=b3b77e52cc777a1eafe69a517f95d2c219c19080
Certificate serial: 018CC8714C8BC2ED9832460043B13F52241F
Authority key identifier: B3:B7:7E:52:CC:77:7A:1E:AF:E6:9A:51:7F:95:D2:C2:19:C1:90:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7d-Usx3eh6v5ppRf5XSwhnBkIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/AnLELPaiJXRVgUrEdoI8Wphkppc.roa
Signing time: Tue 02 Jan 2024 04:31:57 +0000
ROA not before: Tue 02 Jan 2024 04:31:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51688
IP address blocks: 91.220.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Jan 2024 13:51:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:71:4c:8b:c2:ed:98:32:46:00:43:b1:3f:52:24:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b77e52cc777a1eafe69a517f95d2c219c19080
Validity
Not Before: Jan 2 04:31:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0272c42cf6a2257455814ac476823c5a9864a697
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:59:47:27:98:79:68:33:db:14:36:49:f7:81:
c0:28:82:b4:de:72:27:75:05:ac:a2:ed:b3:ca:20:
ed:1f:64:66:5c:0b:2d:e4:e9:f7:54:5e:92:5e:ad:
16:3f:9e:c2:6a:15:29:1d:e7:59:84:fc:49:9d:66:
4f:dc:22:00:37:98:8e:d1:ad:5c:df:d9:6c:4a:56:
48:b2:23:92:a3:04:07:fc:47:c7:a3:0c:29:60:f6:
d7:58:26:40:b1:ed:20:c5:3e:0c:e2:0c:06:f6:42:
45:5a:c2:65:8f:e7:52:2e:14:92:b5:5b:c7:3a:a9:
f0:82:31:7a:01:e3:63:af:87:21:3e:55:f3:c7:6a:
85:59:dd:b6:ef:21:c9:0c:62:5e:c8:b5:98:c7:26:
5b:a4:f8:6d:fd:c9:c3:a3:71:aa:76:f2:84:2a:31:
3b:41:fe:40:32:8a:76:67:b4:9e:14:35:58:bc:24:
22:60:67:1d:74:89:70:a9:29:08:fc:5d:d8:31:2a:
d0:1e:08:7b:a2:e1:3f:03:69:dd:2b:f8:ef:fe:7d:
ca:34:88:39:2d:68:6c:82:ec:26:46:6a:b8:a8:1b:
8c:21:c7:56:30:50:b1:31:d2:89:a0:b2:13:1f:58:
9f:ac:1b:c3:28:97:d2:e9:a5:38:c8:fd:bb:9d:84:
98:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:72:C4:2C:F6:A2:25:74:55:81:4A:C4:76:82:3C:5A:98:64:A6:97
X509v3 Authority Key Identifier:
keyid:B3:B7:7E:52:CC:77:7A:1E:AF:E6:9A:51:7F:95:D2:C2:19:C1:90:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7d-Usx3eh6v5ppRf5XSwhnBkIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/AnLELPaiJXRVgUrEdoI8Wphkppc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/s7d-Usx3eh6v5ppRf5XSwhnBkIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.40.0/24
Signature Algorithm: sha256WithRSAEncryption
13:9c:b8:80:e6:03:d4:5c:86:b3:cc:31:ae:5f:62:ba:1c:d8:
28:b3:a4:8b:58:30:b2:34:25:bc:66:b9:14:ba:dd:7e:34:e2:
57:76:c2:23:a7:d8:08:36:e0:3a:43:11:27:c7:cb:ed:b5:a2:
b5:e4:5d:f4:27:2b:87:4b:95:67:0c:52:88:3f:98:8b:e0:01:
24:9f:db:a6:9d:87:28:22:76:3d:d8:f2:76:fa:99:8a:9d:a2:
26:a6:26:96:35:aa:80:fe:6c:3d:a6:30:8b:41:69:62:b8:6d:
bc:93:91:e6:55:51:3d:a8:84:e6:f7:76:25:22:7a:cf:a9:d7:
b7:fb:d5:b0:1d:ce:e1:6a:10:9e:ea:1f:28:05:b3:f6:92:2a:
e6:4f:93:dd:83:e1:23:cf:44:a3:0a:16:07:64:08:ac:76:a5:
e8:34:d8:bd:ea:94:e0:76:57:ec:c7:d8:1c:c9:ea:67:b9:ab:
a7:5a:97:9d:0d:dd:8f:84:6a:2c:cc:47:be:a9:5e:7f:b6:44:
be:6f:36:fd:22:46:06:11:03:c0:73:96:70:8b:d8:be:e1:66:
83:32:09:85:e3:b0:31:e6:cd:e6:6e:c0:67:41:4d:3a:7d:c5:
68:ea:4d:7a:c0:47:17:a2:98:0e:99:68:77:00:4b:43:5e:03:
dd:15:80:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jan 25 18:00:40 2024 by rpki-client on console-fra.rpki-client.org