Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/f8VqFw192bT4vAAciyxKTJKcNkg.roa
File: f8VqFw192bT4vAAciyxKTJKcNkg.roa (raw, json)
Hash identifier: FmqyRffMZWcL1hSb+qdu8ncMXrnopyjorcvTszMdcWg=
Subject key identifier: 7F:C5:6A:17:0D:7D:D9:B4:F8:BC:00:1C:8B:2C:4A:4C:92:9C:36:48
Certificate issuer: /CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12
Certificate serial: 01857270FC494E4070DA50817C2D9A5949A0
Authority key identifier: 98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/f8VqFw192bT4vAAciyxKTJKcNkg.roa
Signing time: Mon 02 Jan 2023 12:24:45 +0000
ROA not before: Mon 02 Jan 2023 12:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15547
IP address blocks: 91.212.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:70:fc:49:4e:40:70:da:50:81:7c:2d:9a:59:49:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12
Validity
Not Before: Jan 2 12:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fc56a170d7dd9b4f8bc001c8b2c4a4c929c3648
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:23:4a:2c:17:76:21:1a:16:2b:9c:04:02:b2:
c1:57:08:16:f5:34:53:8b:65:9a:d5:65:a9:59:85:
a4:27:d8:81:16:57:d3:63:af:a0:ab:41:b2:d7:cf:
0c:f4:0f:cd:76:f4:cc:57:ff:d2:b9:a9:24:4f:0f:
3e:33:f8:8d:51:3b:23:6b:0f:ac:8a:13:c9:36:17:
51:e5:ad:41:6e:b7:d2:df:17:fb:9a:cb:03:09:91:
b3:e8:c5:48:ab:b3:a2:ad:3c:e6:a9:d5:3a:cd:e5:
13:e2:67:0b:66:ec:92:db:c7:9b:02:58:85:ff:82:
a0:c4:6b:ec:59:6a:68:83:d8:f3:a6:06:c9:05:d3:
71:d9:fe:98:2f:cb:47:a6:14:b3:0c:72:4f:32:48:
23:03:74:c3:00:b6:03:91:26:c9:50:4d:86:fa:1e:
74:80:54:e3:39:2a:e8:e3:b0:2d:44:1a:8d:08:0b:
b5:46:c1:5c:47:34:1e:8a:8f:99:60:54:94:b3:56:
7a:fb:2a:f0:c7:1c:39:b5:fe:1b:d4:5c:89:6f:73:
97:f6:33:5b:74:95:2a:a4:d5:90:2c:f2:24:2d:71:
50:84:11:6e:eb:fe:3e:6e:cb:ec:e9:e2:b6:31:82:
b3:68:d7:5a:05:94:42:e1:f4:dc:d8:b5:b7:6f:5f:
7f:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:C5:6A:17:0D:7D:D9:B4:F8:BC:00:1C:8B:2C:4A:4C:92:9C:36:48
X509v3 Authority Key Identifier:
keyid:98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/f8VqFw192bT4vAAciyxKTJKcNkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/mP1EDLuwS5abkrtrOcC7tBY0zRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.152.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:74:d5:ba:d2:c7:a5:75:34:ec:8b:1e:0e:68:55:f5:1d:6b:
72:a4:27:cb:74:d0:0d:78:44:ca:58:14:9c:58:69:d2:4d:38:
f5:7f:c3:ce:ec:0c:6b:5a:5b:7f:07:0e:d8:be:97:b9:61:4a:
92:16:04:12:a1:2f:28:9d:50:1d:f6:f5:20:18:0a:6e:46:b8:
75:7b:f2:0f:aa:19:4e:5c:78:08:af:9d:96:af:95:60:1f:f7:
1a:e6:0b:56:39:f6:77:21:08:a6:5e:7e:7b:16:ba:18:05:4e:
3c:cf:01:2e:c7:75:60:63:29:44:98:ce:bc:22:c2:f2:e0:a6:
b6:a6:e1:6d:b9:ef:e9:63:8d:55:7a:38:1f:01:ee:fe:28:fb:
8e:98:ad:1d:61:18:8c:cc:1d:f3:c4:d2:c4:0a:19:8a:94:82:
de:5c:2e:e3:1d:39:7e:e4:02:43:f7:30:89:13:67:9c:7e:36:
bf:ce:99:47:46:dd:f1:13:89:f5:46:cf:7b:ab:66:4e:19:13:
f7:5d:ed:5d:cd:ed:47:2e:c0:31:3a:08:90:2b:1d:a0:4e:c0:
51:e5:91:bd:e5:b2:8c:f1:c8:a5:ee:00:95:02:49:9c:ad:6c:
2b:f1:c5:c4:a4:24:5a:e7:b3:fc:f5:13:44:2e:f7:10:6a:e9:
ac:77:e4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:16 2024 by rpki-client on console-ams.rpki-client.org