Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/95a02c-df3b-40ba-bde5-262438e859e4/1/0d_fjAKNMP-pb0DhMmICCMTWqK8.roa
File: 0d_fjAKNMP-pb0DhMmICCMTWqK8.roa (raw, json)
Hash identifier: poKQYciMr3Thyv9HMC/hFNiLEveGaTx+cuZmIr0LPnQ=
Subject key identifier: D1:DF:DF:8C:02:8D:30:FF:A9:6F:40:E1:32:62:02:08:C4:D6:A8:AF
Certificate issuer: /CN=47bbb74d41b298f59edd4da23d18b6bb5143f644
Certificate serial: 01856D81BAAB080100CB4DFCC614A065F55B
Authority key identifier: 47:BB:B7:4D:41:B2:98:F5:9E:DD:4D:A2:3D:18:B6:BB:51:43:F6:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R7u3TUGymPWe3U2iPRi2u1FD9kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/95a02c-df3b-40ba-bde5-262438e859e4/1/0d_fjAKNMP-pb0DhMmICCMTWqK8.roa
Signing time: Sun 01 Jan 2023 13:24:56 +0000
ROA not before: Sun 01 Jan 2023 13:24:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198635
IP address blocks: 91.199.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:ba:ab:08:01:00:cb:4d:fc:c6:14:a0:65:f5:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47bbb74d41b298f59edd4da23d18b6bb5143f644
Validity
Not Before: Jan 1 13:24:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d1dfdf8c028d30ffa96f40e132620208c4d6a8af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ac:89:ff:e8:7d:81:a7:f6:f9:01:29:a5:55:
70:74:0e:34:52:1e:06:74:87:08:75:98:0e:d9:39:
03:30:db:64:c2:9e:19:b7:53:38:2c:c1:1e:2f:ac:
c1:7b:2c:2f:93:3f:d2:47:03:f5:bd:9d:69:97:3d:
2e:fa:94:b7:3d:ce:c1:63:c7:c6:f2:3c:17:10:e2:
ed:f6:02:75:89:63:f0:f1:94:f0:4e:4e:94:29:16:
43:ef:28:ef:ec:a7:e3:c2:28:0c:c7:f2:40:16:65:
10:1b:27:bf:1f:db:8e:05:bf:e2:91:0d:4e:64:ff:
66:3c:a4:f4:48:b1:59:fb:ba:80:cf:78:34:06:49:
a5:0e:b1:81:08:64:c3:bf:2a:1b:b5:87:09:4f:24:
31:4a:18:d2:ad:09:9a:e2:2d:21:5b:a5:af:83:32:
6f:71:3f:20:15:1d:eb:df:2b:c8:eb:38:a1:66:9a:
db:33:31:4a:e1:cb:a9:6f:6f:0b:1f:cb:e5:e5:2b:
74:d4:02:53:ab:5c:f0:14:35:ad:12:6f:ab:0d:a8:
90:b2:c0:97:96:ad:6d:16:cf:62:91:b0:77:de:5d:
58:1a:2f:10:67:dd:d7:d4:56:48:c6:89:8d:6a:ac:
74:b9:ab:23:dd:11:3b:eb:a9:1e:43:42:7a:b5:b8:
74:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:DF:DF:8C:02:8D:30:FF:A9:6F:40:E1:32:62:02:08:C4:D6:A8:AF
X509v3 Authority Key Identifier:
keyid:47:BB:B7:4D:41:B2:98:F5:9E:DD:4D:A2:3D:18:B6:BB:51:43:F6:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R7u3TUGymPWe3U2iPRi2u1FD9kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/95a02c-df3b-40ba-bde5-262438e859e4/1/0d_fjAKNMP-pb0DhMmICCMTWqK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/95a02c-df3b-40ba-bde5-262438e859e4/1/R7u3TUGymPWe3U2iPRi2u1FD9kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.66.0/24
Signature Algorithm: sha256WithRSAEncryption
24:d5:30:0d:2b:80:1a:d3:84:f6:ba:ad:e0:6b:77:ac:4c:8e:
82:6a:56:f3:94:2c:0b:b9:8a:5c:01:bc:b4:fd:92:af:f3:5b:
07:40:56:34:60:27:60:d7:17:20:6d:90:16:34:7d:6e:81:2a:
1a:18:fd:2d:f6:03:d9:a5:44:e5:4f:bc:6f:ed:07:12:66:d4:
37:28:88:7c:8c:6f:74:ba:03:9b:54:f9:20:53:b6:2b:88:ac:
4f:25:04:d6:e0:71:e3:f7:4d:80:8c:69:e9:0f:0f:be:51:5a:
48:4d:f3:19:69:3a:ca:44:b9:7e:5f:23:99:db:e3:b2:8f:48:
d5:f9:75:1b:a3:7a:fb:1d:78:9c:f0:0a:4a:ae:84:8b:8e:5c:
b6:63:4c:62:56:1e:12:40:5f:9b:68:c0:92:1a:e7:20:1a:50:
25:a1:63:b2:6e:b1:4d:6b:9a:23:cc:1b:00:a5:3f:46:c2:7a:
c8:d9:bd:ee:56:46:75:c7:9b:a3:bf:33:68:2f:1a:cc:0a:0c:
4f:53:9c:78:71:c9:fa:79:b7:28:ed:86:59:13:1a:26:af:0a:
93:7f:38:a7:ad:79:45:8d:03:02:94:58:e6:4e:4d:a0:03:d3:
66:1b:e1:d7:ae:ad:dc:b3:2b:7d:a4:5b:02:76:b4:c4:f7:bd:
af:4d:46:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:02 2024 by rpki-client on console-fra.rpki-client.org