Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/dmXBAXSDrWVYzt89NMDExpZNAXk.roa
File: dmXBAXSDrWVYzt89NMDExpZNAXk.roa (raw, json)
Hash identifier: 8ZAH44okFczdso/y3dXQn12McLrn1p52bdFEueUJbQ8=
Subject key identifier: 76:65:C1:01:74:83:AD:65:58:CE:DF:3D:34:C0:C4:C6:96:4D:01:79
Certificate issuer: /CN=3c3f45021d6eb340a42b2e5dd1fbf721a1a66d61
Certificate serial: 01856BD3754FB5642D3EFCC28FAA063F814A
Authority key identifier: 3C:3F:45:02:1D:6E:B3:40:A4:2B:2E:5D:D1:FB:F7:21:A1:A6:6D:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PD9FAh1us0CkKy5d0fv3IaGmbWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/dmXBAXSDrWVYzt89NMDExpZNAXk.roa
Signing time: Sun 01 Jan 2023 05:34:58 +0000
ROA not before: Sun 01 Jan 2023 05:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3303
IP address blocks: 91.212.91.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:75:4f:b5:64:2d:3e:fc:c2:8f:aa:06:3f:81:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3c3f45021d6eb340a42b2e5dd1fbf721a1a66d61
Validity
Not Before: Jan 1 05:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7665c1017483ad6558cedf3d34c0c4c6964d0179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:ca:e8:9f:e7:b7:f3:2d:75:9b:f6:62:af:04:
f9:1e:ae:2c:eb:0a:88:b2:3e:cb:8c:08:04:5c:79:
47:55:b7:25:86:7f:0c:84:17:52:f6:ca:44:fa:7e:
92:e4:de:b3:f5:f7:17:93:ef:13:6f:34:85:b7:a6:
61:54:94:9c:b5:4f:c3:b9:fc:ea:b1:02:1b:40:3e:
39:ca:c4:8f:24:f7:10:af:3c:c2:d5:b2:fb:4d:92:
bc:2b:b2:c0:99:2f:95:c6:46:56:ee:c2:a6:d7:7b:
94:81:ce:ec:61:f7:82:73:40:73:8c:21:79:1d:89:
2c:cb:cd:ec:1b:68:2d:7c:4e:a3:9e:72:f7:99:4a:
57:a5:40:e7:4a:22:4f:12:72:af:2f:7a:0b:8c:c9:
b1:c4:0f:b8:1c:fd:80:50:4a:68:10:0a:2a:ca:b2:
57:79:51:a9:38:0b:8b:93:a0:7f:69:be:7f:ba:b8:
d8:18:d1:1e:37:00:ab:7e:89:6a:fe:1b:d0:18:58:
eb:e5:18:01:f4:d2:13:b3:83:c7:c4:88:66:d5:a1:
52:33:e4:be:4d:b4:33:d3:27:70:8e:2c:cb:fe:4a:
69:17:ed:02:2a:a2:97:c5:0b:3c:40:46:47:23:3e:
46:a5:05:76:97:62:99:30:8b:fe:f1:59:3f:3c:d0:
1e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:65:C1:01:74:83:AD:65:58:CE:DF:3D:34:C0:C4:C6:96:4D:01:79
X509v3 Authority Key Identifier:
keyid:3C:3F:45:02:1D:6E:B3:40:A4:2B:2E:5D:D1:FB:F7:21:A1:A6:6D:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PD9FAh1us0CkKy5d0fv3IaGmbWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/dmXBAXSDrWVYzt89NMDExpZNAXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/05257e-1e67-4158-8adb-47d6e4bae2cf/1/PD9FAh1us0CkKy5d0fv3IaGmbWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.91.0/24
Signature Algorithm: sha256WithRSAEncryption
50:18:dc:2f:80:cd:7f:db:7e:07:a6:c1:01:75:ae:d5:92:2f:
a9:79:58:c8:09:00:be:ff:60:78:68:12:78:6a:d5:78:6c:41:
a4:26:dd:2f:d8:7e:94:f3:f7:d8:c2:cf:ec:35:85:c3:8d:d1:
ab:14:31:fc:46:3a:23:70:3d:50:73:d9:b1:fa:d1:e9:ee:d2:
19:5a:26:48:50:ff:03:f7:ac:7d:4a:88:4c:ff:65:d8:b3:6a:
91:c7:8a:2e:6f:c7:5f:79:e4:a2:9d:0d:ff:26:47:fe:4e:74:
0f:6c:0d:00:13:b4:30:6c:d9:da:18:f7:b4:8d:75:42:dc:14:
d1:c1:46:bd:66:d1:a5:cb:8b:f8:6d:8b:7e:4b:21:4e:3f:ba:
c2:67:dd:14:7b:c6:fb:9b:fb:a5:14:a8:8b:2b:0b:f4:96:01:
1c:ec:00:3c:70:36:4b:1c:c0:5d:95:27:58:d1:34:24:4d:91:
eb:3f:8c:67:eb:96:fe:5a:65:08:7e:9f:86:ed:7a:76:11:bd:
b0:10:39:5b:29:5a:e0:12:6d:db:40:21:1c:87:3b:3b:21:47:
c5:5f:94:03:f2:60:3d:7e:30:41:77:bc:4d:a8:38:01:d0:b8:
81:18:c3:69:de:45:ee:dd:bb:97:44:a4:0a:e0:04:b5:c5:e8:
e5:46:b9:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 18:21:48 2024 by rpki-client on console-ams.rpki-client.org