Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/c7120e-d797-4b5c-a5a7-16b55ed49053/1/bMFSD1I2kmVTw5yReuGFfEppmLo.roa
File: bMFSD1I2kmVTw5yReuGFfEppmLo.roa (raw, json)
Hash identifier: 5EvkkxwVaYP0O6EDdydxqy79ERr3O9E8qW+9508UX8w=
Subject key identifier: 6C:C1:52:0F:52:36:92:65:53:C3:9C:91:7A:E1:85:7C:4A:69:98:BA
Certificate issuer: /CN=e4e1770df8c6e803fceb364c868e3246e4d33742
Certificate serial: 0185734CD2A68E60F0FEAEB1849F1B6B2082
Authority key identifier: E4:E1:77:0D:F8:C6:E8:03:FC:EB:36:4C:86:8E:32:46:E4:D3:37:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5OF3DfjG6AP86zZMho4yRuTTN0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/c7120e-d797-4b5c-a5a7-16b55ed49053/1/bMFSD1I2kmVTw5yReuGFfEppmLo.roa
Signing time: Mon 02 Jan 2023 16:24:52 +0000
ROA not before: Mon 02 Jan 2023 16:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57122
IP address blocks: 91.230.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:d2:a6:8e:60:f0:fe:ae:b1:84:9f:1b:6b:20:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4e1770df8c6e803fceb364c868e3246e4d33742
Validity
Not Before: Jan 2 16:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6cc1520f5236926553c39c917ae1857c4a6998ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:1c:94:3b:34:9e:70:af:7b:13:2c:23:a6:0f:
b7:63:51:71:83:eb:42:bd:9a:47:21:3d:33:03:ea:
4d:eb:5c:26:2a:49:10:49:a5:05:c5:95:c0:fb:9c:
e1:af:4f:b6:60:9b:ab:bc:33:0a:b4:6a:d0:5d:d0:
1f:68:90:25:f7:52:15:b2:01:94:74:60:e2:a6:a6:
6a:18:fb:60:d2:7b:83:28:18:28:09:bf:bc:63:d3:
46:6b:22:dc:a8:2b:ee:10:79:86:04:4d:2c:8c:79:
50:3f:eb:83:f4:85:bf:80:c6:19:f5:a5:6c:6b:45:
02:b6:50:96:b1:76:6a:68:89:2b:f9:60:70:53:cf:
fa:1f:f2:2e:8f:e5:89:2d:15:15:d0:fc:1a:18:ee:
8b:e8:ae:93:06:64:40:b4:74:15:61:52:fe:fe:91:
b3:f5:62:ca:33:ff:3c:13:35:cf:dc:ab:e9:2b:78:
df:5d:5f:71:f3:c3:cb:97:c0:5d:3c:72:68:bb:25:
5e:89:ae:95:00:37:c9:83:5b:9c:ce:9b:26:00:43:
41:38:71:b9:a9:79:2f:ca:be:47:27:4f:06:0d:a8:
cc:f1:c5:88:0c:31:a5:4c:4a:68:3b:3f:34:e8:34:
13:85:fd:6b:a6:69:fa:9b:c1:e9:12:3e:79:1f:01:
2d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:C1:52:0F:52:36:92:65:53:C3:9C:91:7A:E1:85:7C:4A:69:98:BA
X509v3 Authority Key Identifier:
keyid:E4:E1:77:0D:F8:C6:E8:03:FC:EB:36:4C:86:8E:32:46:E4:D3:37:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5OF3DfjG6AP86zZMho4yRuTTN0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c7120e-d797-4b5c-a5a7-16b55ed49053/1/bMFSD1I2kmVTw5yReuGFfEppmLo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/c7120e-d797-4b5c-a5a7-16b55ed49053/1/5OF3DfjG6AP86zZMho4yRuTTN0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.231.0/24
Signature Algorithm: sha256WithRSAEncryption
60:99:13:9c:64:18:d2:8b:37:4f:7b:72:64:7e:d2:ae:45:ae:
2a:d8:f4:c5:b0:7e:6c:eb:e3:96:ce:da:c5:f9:5f:76:35:44:
d4:32:2c:09:38:a0:2a:0f:8d:bc:d1:c0:68:44:a1:35:8d:b0:
26:e5:77:b2:d1:6e:96:d3:07:2b:25:76:dc:16:88:c7:cb:98:
f5:ac:47:04:02:86:76:da:43:0e:f9:03:cb:10:0d:6d:92:61:
a5:96:fe:5b:4e:ae:3a:10:55:58:d8:f0:96:27:2b:c8:10:5b:
af:ad:1a:9e:5b:58:53:54:98:15:0c:dc:cf:fc:f5:6a:dd:46:
36:33:9b:f9:81:ac:91:a7:ce:92:a8:f4:a3:e4:85:ce:bf:9f:
b7:60:28:91:74:4d:cd:15:82:63:e4:96:c3:95:15:eb:07:d3:
45:ba:7f:b5:05:37:20:16:89:e7:a6:57:61:50:c0:60:69:11:
bb:fe:56:8f:17:f1:59:e6:3d:0e:d7:2a:db:68:bb:c9:9f:df:
1a:62:d3:f8:e9:5a:b3:36:d5:29:01:55:e2:04:cf:ee:ec:f7:
0d:6e:b0:19:6c:8d:50:8a:82:e3:5d:02:86:ff:9f:4e:aa:86:
4e:5c:f9:54:55:18:54:85:94:48:84:ab:01:97:24:ed:44:33:
e6:56:e2:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:35:22 2024 by rpki-client on console-ams.rpki-client.org