Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/WMvk9wz2AqQnyOtYPdRm2oB-20A.roa
File: WMvk9wz2AqQnyOtYPdRm2oB-20A.roa (raw, json)
Hash identifier: 16yftOupG9XwRa62Ot14HPngmW4gOv6SKSKdlkrBb48=
Subject key identifier: 58:CB:E4:F7:0C:F6:02:A4:27:C8:EB:58:3D:D4:66:DA:80:7E:DB:40
Certificate issuer: /CN=1bb80b4a3327c583aecdb03cef3f64f33bd59b08
Certificate serial: 018571153E2FD7FF3D5D25177D23A95DE3E6
Authority key identifier: 1B:B8:0B:4A:33:27:C5:83:AE:CD:B0:3C:EF:3F:64:F3:3B:D5:9B:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7gLSjMnxYOuzbA87z9k8zvVmwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/WMvk9wz2AqQnyOtYPdRm2oB-20A.roa
Signing time: Mon 02 Jan 2023 06:04:55 +0000
ROA not before: Mon 02 Jan 2023 06:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56967
IP address blocks: 91.212.111.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:15:3e:2f:d7:ff:3d:5d:25:17:7d:23:a9:5d:e3:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bb80b4a3327c583aecdb03cef3f64f33bd59b08
Validity
Not Before: Jan 2 06:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=58cbe4f70cf602a427c8eb583dd466da807edb40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7b:23:75:51:43:72:c6:19:79:a9:d2:c2:ac:
bf:88:ea:da:d6:49:2d:bc:fb:98:8b:33:5b:3b:c6:
f9:0b:4e:7d:e9:5b:95:2f:57:cd:ba:20:65:d1:1e:
8c:39:5d:27:87:d8:a0:10:4a:51:18:51:67:79:21:
66:c8:08:2d:23:83:65:ea:b5:45:dc:73:85:47:49:
79:a5:5c:fd:36:8b:2a:ac:e2:78:62:e7:93:d8:66:
a7:6c:9a:23:f0:c2:b0:3f:c6:2f:2c:f9:68:d4:66:
69:4b:c0:75:9d:af:67:41:ef:e5:ca:23:57:41:2d:
86:2e:6d:2d:c4:99:11:ab:fb:5b:12:87:e5:f1:15:
18:91:ad:69:d2:60:e8:9e:f2:2f:03:5c:c4:69:18:
5a:39:b4:79:54:94:1c:35:95:e2:ea:20:ba:eb:68:
f2:78:f3:b8:17:a1:cb:9a:2d:ec:b9:1b:7b:aa:d9:
22:d4:c4:ce:c6:18:0e:b6:3f:65:ea:e2:4e:9e:bf:
23:4b:a2:26:63:d1:07:13:d3:cb:fb:91:ee:08:7f:
dd:7b:4c:4c:78:a9:33:ad:1e:dd:12:77:f2:5c:b8:
73:86:c3:51:44:ea:20:ec:64:86:84:99:32:40:e1:
70:97:f1:44:72:89:1e:bb:ff:e0:27:e7:a4:03:82:
cd:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:CB:E4:F7:0C:F6:02:A4:27:C8:EB:58:3D:D4:66:DA:80:7E:DB:40
X509v3 Authority Key Identifier:
keyid:1B:B8:0B:4A:33:27:C5:83:AE:CD:B0:3C:EF:3F:64:F3:3B:D5:9B:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7gLSjMnxYOuzbA87z9k8zvVmwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/WMvk9wz2AqQnyOtYPdRm2oB-20A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/5ff89a-2f15-4090-bcc2-807b7c2d6389/1/G7gLSjMnxYOuzbA87z9k8zvVmwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.111.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:00:87:7c:58:ae:14:c6:a9:e5:3d:41:30:af:79:10:ae:a5:
48:86:b2:86:1f:f1:69:de:c9:db:51:5a:fd:e2:d1:7d:56:82:
5f:da:e0:70:35:61:e4:91:cf:e9:e0:0d:27:10:f8:f9:b1:f2:
2c:5f:a4:d4:1c:47:62:13:66:84:2a:a6:73:67:1b:5f:17:9f:
26:3b:90:f9:c5:92:67:17:b0:52:c0:bb:5e:86:e6:71:c9:5d:
e9:b7:16:1c:0a:16:6e:44:bb:55:98:ab:c6:e2:4f:7d:19:cc:
e7:33:fa:c3:83:e9:ef:02:f4:ef:e7:a0:79:ca:b9:3a:2c:15:
12:de:b5:63:27:a2:c9:0a:a3:cd:d2:cc:17:a2:c1:c5:cc:7e:
34:a3:d9:5b:af:a4:d3:a1:c1:59:c9:6c:ad:19:81:11:f3:59:
1f:07:53:5c:53:ac:c9:3b:6d:14:8a:d4:25:87:b8:ff:ec:79:
c7:e1:03:03:5d:e6:44:22:e9:6d:51:02:11:8e:ef:58:59:1f:
a4:33:c7:c2:a5:8c:2f:1a:70:8b:04:89:5b:a8:9a:9e:49:fd:
7c:fb:22:dd:0b:eb:29:22:da:4e:c8:1d:cf:17:42:fa:26:3a:
aa:63:96:b3:82:b0:05:27:b0:fa:b2:c3:8d:9a:77:4c:92:14:
18:a1:dc:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:27 2024 by rpki-client on console-ams.rpki-client.org