Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/393218-46e5-468b-b58b-7f3352234e21/1/RssU-j_XzDGbZhQO7NwZWhueBQ0.roa
File: RssU-j_XzDGbZhQO7NwZWhueBQ0.roa (raw, json)
Hash identifier: iIhvGC703iIZ1wB4B3+F6tZ303/uR05QRchW6AiAxPc=
Subject key identifier: 46:CB:14:FA:3F:D7:CC:31:9B:66:14:0E:EC:DC:19:5A:1B:9E:05:0D
Certificate issuer: /CN=a49d2e50b7738aed0acc1a0ec2fee30080255838
Certificate serial: 0186C9A13DE4351FEDF12A4E6970FD8109FD
Authority key identifier: A4:9D:2E:50:B7:73:8A:ED:0A:CC:1A:0E:C2:FE:E3:00:80:25:58:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJ0uULdziu0KzBoOwv7jAIAlWDg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/393218-46e5-468b-b58b-7f3352234e21/1/RssU-j_XzDGbZhQO7NwZWhueBQ0.roa
Signing time: Fri 10 Mar 2023 03:47:12 +0000
ROA not before: Fri 10 Mar 2023 03:47:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 91.230.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Mar 2023 21:42:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c9:a1:3d:e4:35:1f:ed:f1:2a:4e:69:70:fd:81:09:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a49d2e50b7738aed0acc1a0ec2fee30080255838
Validity
Not Before: Mar 10 03:47:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=46cb14fa3fd7cc319b66140eecdc195a1b9e050d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6d:ae:64:71:be:d6:f3:fc:c2:13:42:7a:16:
56:19:34:5c:d8:fd:14:ec:26:40:35:6c:84:b0:81:
10:5f:b3:f8:65:34:f7:15:71:ec:82:92:c7:93:11:
9b:92:76:10:e7:5b:62:db:7a:32:f8:99:a0:17:33:
cb:40:34:00:9e:c5:44:ed:8e:1c:af:32:ed:e5:92:
1a:69:8b:ac:17:a0:21:d7:56:7c:63:03:52:4f:c7:
8e:0b:16:e7:ed:7b:6d:9c:94:6a:b3:34:9f:3a:d0:
ef:7b:f3:ae:fd:6e:3b:d3:e0:9a:9d:2c:e4:1b:a0:
9c:f1:6b:90:96:32:5c:22:fd:d1:65:3f:1e:8a:6d:
29:31:b9:47:9b:c7:de:17:19:1b:b2:fb:22:9b:f4:
8b:5d:78:36:12:ca:77:f9:13:85:57:56:b6:bb:cf:
c1:59:77:96:f4:76:57:39:19:13:82:f1:54:27:8f:
42:bd:f3:b0:63:64:a9:1e:fa:f0:e7:05:dc:d0:98:
59:fc:27:45:f9:63:4a:d7:38:11:cd:a4:45:a5:ef:
d5:aa:61:0e:7c:99:c0:a1:b2:2d:e1:da:b0:57:7b:
04:8f:42:f3:29:01:65:1f:b4:4e:f4:7f:59:7f:3a:
6c:89:1e:61:0c:70:0c:5b:cf:a1:d0:a3:8b:91:d1:
92:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CB:14:FA:3F:D7:CC:31:9B:66:14:0E:EC:DC:19:5A:1B:9E:05:0D
X509v3 Authority Key Identifier:
keyid:A4:9D:2E:50:B7:73:8A:ED:0A:CC:1A:0E:C2:FE:E3:00:80:25:58:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJ0uULdziu0KzBoOwv7jAIAlWDg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/393218-46e5-468b-b58b-7f3352234e21/1/RssU-j_XzDGbZhQO7NwZWhueBQ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/393218-46e5-468b-b58b-7f3352234e21/1/pJ0uULdziu0KzBoOwv7jAIAlWDg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.40.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:b7:bd:0c:15:48:ff:c9:a5:d6:85:52:e5:f5:74:14:ac:ba:
c5:1a:37:8e:b3:16:39:ca:fa:d2:3e:30:f7:8a:90:a4:b9:ae:
b9:41:b5:5f:a3:55:2b:eb:c0:23:15:e7:c2:61:e4:7e:6b:72:
57:da:4d:5a:83:4e:ce:5b:33:2d:6c:ef:33:83:55:b4:58:c5:
80:73:68:34:85:ec:7a:04:52:df:f1:6d:60:05:12:88:4c:4e:
07:6d:c5:47:39:a9:73:cd:d2:ef:ca:9e:fe:d8:60:b5:3f:e2:
64:18:b3:51:ea:c3:6c:74:c4:c0:7d:61:a5:f4:2c:f4:07:98:
74:81:93:36:dc:77:e4:38:fa:3e:30:87:cf:23:67:bd:52:99:
db:f5:69:a5:02:ab:79:59:8b:54:8c:00:77:0f:63:30:73:1d:
f4:b2:75:8d:ec:40:18:a2:ea:f0:80:29:50:e5:35:54:da:b9:
1a:e3:76:d5:27:ba:6a:09:7e:e6:67:4d:24:e4:b9:99:48:92:
b0:09:2c:74:89:d5:e2:3b:fe:c5:8f:5f:73:8f:1b:b0:6b:0c:
6d:7b:0f:d7:c1:61:43:69:ec:5a:c3:f1:c7:c5:b5:b2:67:69:
7d:b6:9b:ce:c2:8b:2c:70:9a:03:bf:d9:8f:05:04:3c:e0:f8:
cc:e8:39:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:51 2024 by rpki-client on console-ams.rpki-client.org