Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/73c829-1518-4d41-92c2-7e0ab8bcae89/1/awXe-s2EOGx_8nA4amSPXZlyVzc.roa
File: awXe-s2EOGx_8nA4amSPXZlyVzc.roa (raw, json)
Hash identifier: JwWKC2SXLZFJwM/rxgFDCjNcsjDuNI59DucsEf91L3k=
Subject key identifier: 6B:05:DE:FA:CD:84:38:6C:7F:F2:70:38:6A:64:8F:5D:99:72:57:37
Certificate issuer: /CN=316f433bb4cedd72d86c44ed8599903522b5e4f1
Certificate serial: 018571308C889D8BBB72544805D911A4620D
Authority key identifier: 31:6F:43:3B:B4:CE:DD:72:D8:6C:44:ED:85:99:90:35:22:B5:E4:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MW9DO7TO3XLYbETthZmQNSK15PE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/73c829-1518-4d41-92c2-7e0ab8bcae89/1/awXe-s2EOGx_8nA4amSPXZlyVzc.roa
Signing time: Mon 02 Jan 2023 06:34:45 +0000
ROA not before: Mon 02 Jan 2023 06:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61051
IP address blocks: 91.209.46.0/24 maxlen: 24
2a05:f540::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:30:8c:88:9d:8b:bb:72:54:48:05:d9:11:a4:62:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=316f433bb4cedd72d86c44ed8599903522b5e4f1
Validity
Not Before: Jan 2 06:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b05defacd84386c7ff270386a648f5d99725737
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:09:5e:cc:db:92:ab:93:6e:52:5d:48:cd:40:
2b:1d:7e:d5:98:5c:44:1b:bf:4b:d3:7e:b1:c5:90:
e4:0e:a3:c9:fa:11:c1:73:75:eb:ea:f8:6f:93:57:
95:f4:5f:89:c4:0b:b0:b8:08:5b:0d:ce:fd:ba:34:
44:cf:ae:49:03:c1:cd:71:5b:96:8b:55:e2:c9:54:
3d:b4:f6:e7:9a:51:3b:c3:0d:7a:45:e7:0b:49:62:
2c:be:34:31:24:4a:b7:94:bc:5a:a9:d0:72:dc:0f:
35:58:7d:2c:04:dd:56:33:7e:1e:86:e9:18:fc:ca:
38:d9:2e:6c:b8:6e:8a:41:bb:61:b7:b4:f7:d2:82:
e0:9d:2f:7b:41:cb:e8:8d:c3:a0:a8:3b:28:ee:ba:
51:58:c7:e6:16:a0:a9:f9:42:12:2b:bf:ef:ee:25:
cc:a0:88:60:1b:97:9d:5d:6a:db:34:9d:0e:e7:29:
c5:c4:79:89:b2:5b:d6:30:33:b7:4a:9f:fd:1f:2f:
d1:ef:61:b0:28:42:61:54:ec:7f:79:0c:9f:3f:92:
85:61:06:e7:95:a9:c6:95:b4:a9:c0:41:ff:40:2f:
df:fc:13:b7:0d:25:b0:a0:52:77:b4:e0:09:69:f7:
c4:8c:77:98:82:02:82:3b:5a:2f:ba:fa:e6:30:01:
35:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:05:DE:FA:CD:84:38:6C:7F:F2:70:38:6A:64:8F:5D:99:72:57:37
X509v3 Authority Key Identifier:
keyid:31:6F:43:3B:B4:CE:DD:72:D8:6C:44:ED:85:99:90:35:22:B5:E4:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MW9DO7TO3XLYbETthZmQNSK15PE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/73c829-1518-4d41-92c2-7e0ab8bcae89/1/awXe-s2EOGx_8nA4amSPXZlyVzc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/73c829-1518-4d41-92c2-7e0ab8bcae89/1/MW9DO7TO3XLYbETthZmQNSK15PE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.46.0/24
IPv6:
2a05:f540::/29
Signature Algorithm: sha256WithRSAEncryption
0f:a9:68:95:0d:47:a9:4c:f9:67:31:02:91:a7:3b:94:bd:0d:
10:8b:7c:f0:99:eb:f4:d9:67:89:1d:40:04:cc:00:d4:e0:a6:
58:e8:0e:22:b8:d2:ae:d1:38:c7:7f:32:f0:f3:cc:16:c0:48:
3d:e6:a1:fe:b0:a6:b1:6f:7b:a9:a4:12:6a:a9:be:c4:46:17:
5f:20:26:88:9e:48:ac:12:8a:a9:f5:de:4b:bd:9a:7e:fe:33:
bc:ae:a9:39:14:6d:e9:b9:fb:c1:97:33:f0:c3:95:c0:f0:7f:
6f:e6:92:52:22:01:a9:06:cf:f9:d1:7b:56:33:e4:80:60:a0:
89:6c:70:98:e0:72:b6:04:2b:64:85:96:eb:89:83:d8:f2:49:
d6:1e:29:62:7a:88:56:55:48:5d:0d:c7:01:7b:da:f8:1f:4f:
f0:b4:42:0b:68:c9:d1:55:44:dc:52:0d:99:da:2d:61:7e:f8:
c6:e1:0c:03:a8:4b:ca:9c:1e:9d:4c:38:d2:ea:10:82:f6:39:
94:a5:b6:0d:be:67:d1:07:a4:da:24:d5:8c:a2:03:ec:c3:72:
01:f1:2c:73:5f:d8:c7:0d:f9:2f:06:a1:70:24:ef:bd:cc:4d:
9f:06:85:e7:ce:95:a7:67:e9:91:be:ee:80:84:73:96:ac:f3:
de:3f:bf:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:30 2024 by rpki-client on console-fra.rpki-client.org