Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/6bafe9-878b-46fd-a305-7ba25d5595fa/1/AkaLxivf5NNFI_D293PMDTOglK8.roa
File: AkaLxivf5NNFI_D293PMDTOglK8.roa (raw, json)
Hash identifier: 2an6Ka19B4Grrq27tJriA6cwtNMSX0cHBCSOniJSacU=
Subject key identifier: 02:46:8B:C6:2B:DF:E4:D3:45:23:F0:F6:F7:73:CC:0D:33:A0:94:AF
Certificate issuer: /CN=9f3ec21e10f3646e4dc0e23f5f7ec44501560de3
Certificate serial: 018D18854B6A39DFD4571F2CEA48CC85BE93
Authority key identifier: 9F:3E:C2:1E:10:F3:64:6E:4D:C0:E2:3F:5F:7E:C4:45:01:56:0D:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nz7CHhDzZG5NwOI_X37ERQFWDeM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/6bafe9-878b-46fd-a305-7ba25d5595fa/1/AkaLxivf5NNFI_D293PMDTOglK8.roa
Signing time: Wed 17 Jan 2024 17:43:25 +0000
ROA not before: Wed 17 Jan 2024 17:43:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 91.200.145.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 22 Mar 2024 13:10:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:18:85:4b:6a:39:df:d4:57:1f:2c:ea:48:cc:85:be:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f3ec21e10f3646e4dc0e23f5f7ec44501560de3
Validity
Not Before: Jan 17 17:43:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=02468bc62bdfe4d34523f0f6f773cc0d33a094af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:da:33:ff:92:c3:4d:d5:f0:45:59:bd:85:d8:
29:16:d3:0e:da:d3:27:82:09:50:01:d3:90:fc:8c:
e9:da:e2:66:9f:df:36:f7:37:62:c2:be:c2:39:76:
60:e6:f6:2a:e6:09:91:b2:b1:93:e3:b3:65:17:15:
2c:f7:16:f4:2a:4d:4c:57:89:cd:20:b4:b8:d3:ca:
6c:8a:bf:dd:53:60:71:84:1a:44:00:59:c1:82:d0:
97:b1:d6:43:14:47:45:be:6d:72:3c:fa:2d:39:6c:
b9:3e:91:8b:bb:f1:20:de:f2:c0:9b:bd:f3:11:75:
2b:e2:3f:43:9b:d5:62:f5:95:fb:ff:91:3a:e9:ee:
c9:e4:a4:c9:d1:01:e1:da:67:53:20:04:49:39:f7:
5d:ba:95:af:43:92:4a:6e:ca:3f:45:57:04:e8:09:
ba:00:ae:24:c8:09:e0:8e:84:aa:8d:95:7d:b5:43:
41:c7:19:6d:7f:07:01:bb:c9:7b:fd:03:92:99:71:
fb:22:d9:7d:78:a6:54:74:76:8b:1d:0b:e6:3e:38:
9c:f1:ef:21:8e:03:2b:05:c2:41:10:27:6d:08:73:
a6:94:4e:df:7a:5a:2a:c7:0f:0d:99:df:f0:7d:54:
95:8b:de:59:59:ed:97:b4:9d:df:1b:c3:1c:5e:d7:
9b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:46:8B:C6:2B:DF:E4:D3:45:23:F0:F6:F7:73:CC:0D:33:A0:94:AF
X509v3 Authority Key Identifier:
keyid:9F:3E:C2:1E:10:F3:64:6E:4D:C0:E2:3F:5F:7E:C4:45:01:56:0D:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nz7CHhDzZG5NwOI_X37ERQFWDeM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/6bafe9-878b-46fd-a305-7ba25d5595fa/1/AkaLxivf5NNFI_D293PMDTOglK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/6bafe9-878b-46fd-a305-7ba25d5595fa/1/nz7CHhDzZG5NwOI_X37ERQFWDeM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.145.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:3e:8a:3e:44:7b:b1:e3:98:dc:34:fa:fa:db:80:e1:2a:5b:
0b:98:df:f0:13:90:7a:cb:a0:63:95:92:cb:9e:ab:be:ac:03:
a9:14:f7:70:85:e4:25:be:b6:2a:5e:68:83:46:1a:db:1b:9a:
f3:81:4e:6c:a8:e6:7b:53:8b:51:7b:de:0d:ed:95:1d:ab:01:
34:d4:ae:f2:eb:24:03:20:fb:47:08:f3:4e:d9:11:1d:16:44:
17:90:b9:b1:e9:f2:f1:e6:1e:83:f8:b4:55:77:61:29:18:57:
8c:d0:be:2d:98:8a:37:38:74:3c:df:c3:6f:21:87:ad:37:48:
af:8a:cd:75:98:b1:9a:10:1e:a6:8d:e6:16:a4:f0:12:fe:bc:
84:2a:da:11:df:88:07:87:d8:5a:c8:d1:73:af:73:ba:cd:fd:
2a:9d:88:9a:4a:f2:a9:df:f8:9e:05:91:81:dd:0c:63:83:7a:
e2:ff:ac:a0:87:a2:1c:99:73:b8:aa:2a:dd:d6:50:0c:17:f7:
9b:32:86:78:9e:c4:dc:21:4c:c5:36:e9:5b:1a:4f:b1:14:60:
cb:6b:d8:29:be:e4:4f:29:dd:39:36:0e:bc:0a:4b:08:fd:89:
c9:e1:fe:1b:79:2f:ae:9c:d4:c8:a9:8e:10:7e:c5:ac:59:37:
8b:37:cc:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 22 16:08:04 2024 by rpki-client on console-ams.rpki-client.org