Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/_vVTWQTPsbaTHiU4jR5mq-yMNaM.roa
File: _vVTWQTPsbaTHiU4jR5mq-yMNaM.roa (raw, json)
Hash identifier: sltPbzp5CnMydsYecbNDQsC7whs+it2YtSWTqhSCPXw=
Subject key identifier: FE:F5:53:59:04:CF:B1:B6:93:1E:25:38:8D:1E:66:AB:EC:8C:35:A3
Certificate issuer: /CN=b3b77e52cc777a1eafe69a517f95d2c219c19080
Certificate serial: 0189FA39FBEF6C24D80EB04DEDB6A70A56C3
Authority key identifier: B3:B7:7E:52:CC:77:7A:1E:AF:E6:9A:51:7F:95:D2:C2:19:C1:90:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s7d-Usx3eh6v5ppRf5XSwhnBkIA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/_vVTWQTPsbaTHiU4jR5mq-yMNaM.roa
Signing time: Tue 15 Aug 2023 17:24:11 +0000
ROA not before: Tue 15 Aug 2023 17:24:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51688
IP address blocks: 91.220.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fa:39:fb:ef:6c:24:d8:0e:b0:4d:ed:b6:a7:0a:56:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3b77e52cc777a1eafe69a517f95d2c219c19080
Validity
Not Before: Aug 15 17:24:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fef5535904cfb1b6931e25388d1e66abec8c35a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:27:cc:fd:ba:1c:bc:1c:96:4f:3d:b4:6e:22:
6f:44:e1:cf:43:0d:b2:f2:a1:0f:61:29:7b:ae:c5:
d4:9c:66:83:26:e1:99:99:e0:d3:53:e1:f7:f8:78:
41:8c:49:98:27:1c:16:fd:5d:10:b9:d2:35:cd:93:
31:a6:46:d0:e4:eb:92:0b:aa:12:94:d3:a6:d4:20:
70:98:59:04:df:7c:55:89:04:9a:ad:e9:3d:7a:c5:
29:77:28:65:ac:1d:9e:53:ff:7b:8e:84:2d:3b:a1:
f2:d7:35:48:32:ba:b0:98:c4:3e:d2:12:16:fe:63:
e7:5a:52:42:7c:9c:08:48:ca:02:a5:7f:fa:c6:cd:
e0:96:f0:ea:1e:9f:dc:8e:19:55:0d:68:cc:c4:5a:
57:ea:44:39:c5:cb:ee:7d:8d:33:a2:87:1a:ad:c2:
9f:c8:76:14:90:e0:72:5c:7d:c5:18:cf:d5:76:67:
63:7f:94:1a:09:50:ae:6a:cc:67:b5:ab:23:19:d6:
1f:36:f9:77:ef:c6:4c:91:ab:b6:5d:27:b8:b0:02:
54:4b:1a:14:a1:26:23:0f:fd:a9:eb:0e:53:77:6d:
dc:f3:d4:39:4a:6e:04:c8:60:27:45:9f:03:b3:c8:
a3:f7:db:a7:4a:28:bc:7e:43:e4:f4:85:55:29:7f:
e6:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F5:53:59:04:CF:B1:B6:93:1E:25:38:8D:1E:66:AB:EC:8C:35:A3
X509v3 Authority Key Identifier:
keyid:B3:B7:7E:52:CC:77:7A:1E:AF:E6:9A:51:7F:95:D2:C2:19:C1:90:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s7d-Usx3eh6v5ppRf5XSwhnBkIA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/_vVTWQTPsbaTHiU4jR5mq-yMNaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/772440-876c-42d0-80f5-b4aee8c5d48e/1/s7d-Usx3eh6v5ppRf5XSwhnBkIA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.40.0/24
Signature Algorithm: sha256WithRSAEncryption
50:b6:76:ee:02:96:c2:21:4f:37:6c:8f:ac:54:7f:03:a7:e0:
9a:5e:4c:62:43:49:e3:87:eb:44:24:4d:72:c1:b9:5d:62:18:
2d:a0:b1:41:08:f4:a2:c5:9b:3a:1c:0c:53:e2:5d:aa:b6:be:
65:a7:c1:ab:42:45:64:f0:77:4d:62:34:fc:e6:54:ef:63:e7:
1c:7e:c0:ee:ef:43:d7:ba:22:78:59:ce:f8:1d:99:92:fa:52:
68:f0:42:9d:1a:77:6d:95:29:4e:b1:f4:75:27:5c:73:ca:38:
70:f2:f7:f6:1d:29:16:95:53:df:96:29:8c:d2:23:ff:e7:d4:
d8:ce:d6:19:ef:3b:9d:21:77:2c:30:af:f1:85:dd:ef:52:19:
8a:01:80:4f:c6:39:45:8d:72:f2:08:6c:8c:a3:d2:05:66:95:
69:aa:59:f1:3e:3d:a1:b4:6c:99:83:7d:92:29:69:c1:40:70:
1c:fd:d1:6b:c0:0e:ba:ef:09:95:cc:18:e5:64:e5:35:32:35:
9d:18:9a:b1:6f:a8:d6:c1:0e:c5:e4:bd:f1:fb:e3:6b:f4:a4:
f6:24:40:e7:22:e8:92:7c:fd:bf:fa:6f:e5:db:32:e3:85:54:
bd:91:30:b7:21:16:8e:0f:02:97:ce:90:6b:3e:ba:05:f9:55:
3d:76:96:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:51:15 2024 by rpki-client on console-fra.rpki-client.org