Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/d4e2b3-aff8-49cd-9c7e-97d8d44e10ce/1/089r96tGFuZUR3C4-sZXdCyzZD4.roa
File: 089r96tGFuZUR3C4-sZXdCyzZD4.roa (raw, json)
Hash identifier: EoSqm05W+eOIRNy64iScUw+UPknF641W299Ujyv+wrY=
Subject key identifier: D3:CF:6B:F7:AB:46:16:E6:54:47:70:B8:FA:C6:57:74:2C:B3:64:3E
Certificate issuer: /CN=e75a8cef5fd2a8f185aff59a8c6ebdd98363ac67
Certificate serial: 018833BF24AF7E6CC321C342D8735A5AF174
Authority key identifier: E7:5A:8C:EF:5F:D2:A8:F1:85:AF:F5:9A:8C:6E:BD:D9:83:63:AC:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51qM71_SqPGFr_WajG692YNjrGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/d4e2b3-aff8-49cd-9c7e-97d8d44e10ce/1/089r96tGFuZUR3C4-sZXdCyzZD4.roa
Signing time: Fri 19 May 2023 11:22:24 +0000
ROA not before: Fri 19 May 2023 11:22:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199080
IP address blocks: 91.198.213.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:33:bf:24:af:7e:6c:c3:21:c3:42:d8:73:5a:5a:f1:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e75a8cef5fd2a8f185aff59a8c6ebdd98363ac67
Validity
Not Before: May 19 11:22:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3cf6bf7ab4616e6544770b8fac657742cb3643e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:55:96:ff:12:cc:87:da:33:92:c6:a1:95:73:
46:32:82:10:a1:69:2f:75:cb:4b:ae:aa:79:46:cb:
8a:ed:fe:e5:73:38:19:71:51:be:bf:f2:4e:d2:81:
5c:43:6b:d6:f9:f6:d3:0b:0d:0d:9b:c6:15:e7:da:
9f:b0:26:70:d5:6d:f6:95:a0:19:75:80:43:d3:6d:
1d:03:cf:46:5b:df:75:63:9a:42:6a:29:f4:9f:df:
9a:90:89:63:aa:54:5e:6a:cc:8c:0d:78:93:1b:60:
a1:d7:c3:23:05:cb:98:61:b2:f4:e1:86:db:15:98:
fc:c9:12:21:89:bb:7d:a0:86:31:67:67:88:f8:01:
f2:2e:c4:58:44:53:7d:9e:d4:83:73:1b:c5:69:09:
e5:63:01:2b:ca:1a:13:f7:83:79:fc:8f:f5:ef:f8:
d0:f8:9e:3b:3e:d2:0f:b3:5d:d6:c5:ec:0b:ce:e6:
cd:19:92:46:3a:f1:18:99:d4:bc:a8:9a:cf:9c:6a:
3e:80:5c:4f:c1:0b:10:c7:43:a6:23:4e:71:30:08:
68:85:df:08:2f:13:d6:18:02:ff:38:27:3c:c7:8c:
59:1a:24:48:37:e1:49:e3:27:70:c1:44:29:85:08:
ee:06:79:bd:69:92:42:a6:c1:4a:5a:c2:d4:1d:fd:
9a:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:CF:6B:F7:AB:46:16:E6:54:47:70:B8:FA:C6:57:74:2C:B3:64:3E
X509v3 Authority Key Identifier:
keyid:E7:5A:8C:EF:5F:D2:A8:F1:85:AF:F5:9A:8C:6E:BD:D9:83:63:AC:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51qM71_SqPGFr_WajG692YNjrGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/d4e2b3-aff8-49cd-9c7e-97d8d44e10ce/1/089r96tGFuZUR3C4-sZXdCyzZD4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/d4e2b3-aff8-49cd-9c7e-97d8d44e10ce/1/51qM71_SqPGFr_WajG692YNjrGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.213.0/24
Signature Algorithm: sha256WithRSAEncryption
47:21:a5:17:67:c5:68:3f:a6:2a:3c:de:06:f7:49:2d:20:7f:
65:96:2a:b6:4e:b5:e8:94:33:69:f3:04:e2:0b:89:16:c5:10:
30:a9:34:4d:1e:3c:24:1a:4d:69:d6:5e:42:72:95:d8:4f:38:
c1:4e:10:a3:63:0d:84:f8:70:87:63:13:20:e8:82:0e:4d:c0:
24:d0:d2:80:af:e4:c8:d3:e2:61:cc:95:c6:03:62:d5:69:d0:
b9:f3:43:d5:0f:18:bf:a2:4f:24:28:df:c7:4f:eb:25:17:f5:
b0:2e:0f:58:8d:19:c8:9b:80:23:17:f2:a9:23:b1:ff:88:a5:
5a:45:c2:81:c8:6c:a1:26:35:e4:3c:e6:39:f8:3f:60:40:cb:
49:62:2f:31:3c:d1:02:47:cd:fb:fa:e0:e2:01:40:a1:59:a8:
06:11:31:e0:ed:52:5b:7c:10:7f:bb:a2:2a:d6:28:ea:f4:c3:
36:a1:36:2d:40:8b:ac:ea:e3:97:7d:13:a6:78:68:14:b7:de:
59:47:60:7a:bc:20:ba:a2:57:30:0e:e8:e2:4c:fb:9b:cb:47:
04:9b:ac:2c:78:40:ab:6e:8f:f3:ce:40:d8:53:d2:73:55:5c:
a6:91:16:26:25:d6:81:03:54:0c:04:5c:a6:a8:f0:8e:5f:e2:
f6:83:c4:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:19:30 2024 by rpki-client on console-ams.rpki-client.org