Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/usL3QLqtgwUaR0rZp8P1aa9GnWo.roa
File: usL3QLqtgwUaR0rZp8P1aa9GnWo.roa (raw, json)
Hash identifier: TqAKjyqa084yAhZUmr55qgBS7pRtn0ngQJOLqyF8MPc=
Subject key identifier: BA:C2:F7:40:BA:AD:83:05:1A:47:4A:D9:A7:C3:F5:69:AF:46:9D:6A
Certificate issuer: /CN=0d6bad3f3dd0ac556f3f7a80d1c69b9fd964dd6c
Certificate serial: 01856E26673D06C7D96744C90F2808AE3ECA
Authority key identifier: 0D:6B:AD:3F:3D:D0:AC:55:6F:3F:7A:80:D1:C6:9B:9F:D9:64:DD:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DWutPz3QrFVvP3qA0cabn9lk3Ww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/usL3QLqtgwUaR0rZp8P1aa9GnWo.roa
Signing time: Sun 01 Jan 2023 16:24:48 +0000
ROA not before: Sun 01 Jan 2023 16:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57854
IP address blocks: 91.235.242.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:26:67:3d:06:c7:d9:67:44:c9:0f:28:08:ae:3e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d6bad3f3dd0ac556f3f7a80d1c69b9fd964dd6c
Validity
Not Before: Jan 1 16:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bac2f740baad83051a474ad9a7c3f569af469d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bf:a5:10:55:38:9d:aa:53:21:10:53:7a:04:
86:3c:f0:cc:58:c3:12:ad:5f:bf:85:ba:88:86:df:
97:4f:51:b3:c1:85:e2:e3:60:3f:1f:be:1b:e9:c4:
ec:ed:33:4f:1d:9c:bc:f5:90:a4:85:1b:61:e5:29:
04:e3:71:17:4b:b3:4c:e0:ce:bf:77:e7:7a:d5:fd:
f2:e1:6e:60:0a:4d:cd:38:ce:cd:16:66:c3:f0:df:
12:84:a8:1b:9d:ab:5e:3d:fd:64:9d:00:61:89:e7:
8c:80:aa:e5:b6:31:39:b3:95:64:33:03:41:17:d9:
92:d3:55:9e:e0:f8:2f:ca:fe:c6:33:fa:63:1e:a3:
48:77:81:0f:74:2c:08:20:e6:19:45:46:7e:e4:a5:
e0:9a:c7:c5:0d:ae:35:7f:c6:b5:b2:f4:45:37:5a:
53:ab:71:d5:7c:2e:03:0d:f8:c0:c5:9d:51:ff:86:
46:1b:e5:ae:22:79:36:17:ef:93:4f:6e:ee:d9:ac:
dd:9e:bf:ba:7c:f1:42:7a:7b:1f:14:92:0e:e4:2f:
99:01:71:39:f3:94:aa:40:b1:d4:d1:2c:00:c8:1e:
96:7b:75:6e:80:b2:89:3c:59:23:04:06:dc:90:45:
f8:21:ec:95:98:75:c5:0f:a5:ef:30:df:f9:22:15:
54:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C2:F7:40:BA:AD:83:05:1A:47:4A:D9:A7:C3:F5:69:AF:46:9D:6A
X509v3 Authority Key Identifier:
keyid:0D:6B:AD:3F:3D:D0:AC:55:6F:3F:7A:80:D1:C6:9B:9F:D9:64:DD:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DWutPz3QrFVvP3qA0cabn9lk3Ww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/usL3QLqtgwUaR0rZp8P1aa9GnWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/93/aca736-4088-480b-af5f-89b6c219d90b/1/DWutPz3QrFVvP3qA0cabn9lk3Ww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.242.0/24
Signature Algorithm: sha256WithRSAEncryption
17:49:22:5f:32:b2:3b:40:a4:cf:64:5c:f3:57:3e:62:60:d2:
3b:88:c2:4f:b3:e0:e5:16:80:a0:85:22:17:82:0f:ce:e4:63:
e0:d6:ab:fd:74:3a:b8:3b:85:24:d1:56:50:00:60:cf:ba:a5:
6a:eb:f8:08:e4:42:d5:ef:66:e9:5b:68:78:6e:3a:bf:83:1c:
75:15:f9:a5:db:4d:52:c8:3b:29:fd:3d:be:15:90:b0:93:0e:
e2:ff:e7:df:ce:33:73:1b:73:ad:3e:54:f7:08:2d:b0:ea:90:
52:4d:52:7d:21:7b:c6:aa:1a:f8:fc:6f:47:3b:6c:bb:c4:76:
3e:9a:73:0b:2b:9f:3e:26:5d:2b:8c:72:b1:02:d8:54:0b:29:
3a:6b:6b:51:f8:88:d0:e6:60:cc:44:50:84:5d:ef:da:48:b2:
41:f0:f3:c8:37:19:9c:ae:19:3d:23:e5:c5:8c:44:ab:c8:7c:
6d:83:7f:e9:18:20:f3:90:b4:0c:92:72:c1:30:cb:41:82:ab:
95:72:ae:6b:33:3c:e7:42:28:9c:fd:af:78:43:2f:6b:85:30:
89:66:45:ac:f0:52:11:f0:7f:8e:3f:20:5e:c8:77:99:87:79:
e2:4d:fd:1f:4c:93:fa:fd:17:cc:1b:41:7a:37:da:84:aa:a7:
d7:64:05:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 17:26:07 2024 by rpki-client on console-fra.rpki-client.org