Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/oDUyjfNFP6snVO7HdL4jzj2RuxA.roa
File: oDUyjfNFP6snVO7HdL4jzj2RuxA.roa (raw, json)
Hash identifier: Oo62kzlMaTQzz/j9SvEuWl19xxXa02S5f55KnazshBQ=
Subject key identifier: A0:35:32:8D:F3:45:3F:AB:27:54:EE:C7:74:BE:23:CE:3D:91:BB:10
Certificate issuer: /CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Certificate serial: 01856DC1C1D67EACF80CBA7B5A21CAAFFE18
Authority key identifier: 1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/oDUyjfNFP6snVO7HdL4jzj2RuxA.roa
Signing time: Sun 01 Jan 2023 14:34:52 +0000
ROA not before: Sun 01 Jan 2023 14:34:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58110
IP address blocks: 91.149.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:30:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:c1:d6:7e:ac:f8:0c:ba:7b:5a:21:ca:af:fe:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Validity
Not Before: Jan 1 14:34:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a035328df3453fab2754eec774be23ce3d91bb10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d7:a4:9f:aa:36:49:b6:87:c0:91:53:55:9f:
0e:fa:6c:e6:c6:db:1a:92:e7:50:9f:66:81:e9:07:
8e:b9:05:95:fd:2f:1c:2d:8a:03:29:ca:40:89:54:
bb:d4:f7:0e:d6:bf:9b:75:13:87:b5:dd:0e:b4:96:
4f:18:60:22:48:0a:76:e5:a6:56:7e:bc:a8:ec:1a:
64:64:77:c1:ae:76:37:e7:63:39:60:d3:da:9c:2e:
04:5f:b8:c9:ea:b0:33:51:65:af:77:a0:13:12:0d:
98:49:15:de:e1:3b:41:d6:09:61:b6:ba:9d:2c:0a:
e6:f9:fc:d4:b0:22:a9:7c:d6:a5:a2:8c:7d:e0:58:
87:27:f7:a5:68:54:4a:bc:7f:66:e9:89:2c:a6:bd:
19:25:14:f0:fb:60:c2:ba:f6:9d:99:49:1c:05:99:
65:93:31:1c:b0:66:be:7a:b5:24:08:d8:9c:9d:b8:
e9:b5:3e:63:9e:2b:30:e5:20:6a:db:a1:a6:0f:39:
1e:48:97:18:52:66:6c:b6:86:34:f5:76:22:7b:a4:
45:6c:a2:46:a4:d6:48:ea:10:23:cc:ec:ac:1e:96:
bd:22:b6:90:59:32:a8:e2:5e:77:40:6c:26:8d:2a:
a2:09:38:8e:06:91:3b:21:ed:09:1e:8c:7a:4b:d2:
af:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:35:32:8D:F3:45:3F:AB:27:54:EE:C7:74:BE:23:CE:3D:91:BB:10
X509v3 Authority Key Identifier:
keyid:1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/oDUyjfNFP6snVO7HdL4jzj2RuxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.192.0/24
Signature Algorithm: sha256WithRSAEncryption
10:05:d1:1c:dd:2a:c7:f9:b1:0a:97:11:63:69:a7:0b:b4:10:
b6:3c:ee:c3:c8:f8:99:7f:78:48:00:93:7e:7a:be:b4:cf:d2:
3b:68:28:a2:4d:6f:2f:4c:73:c7:a4:53:34:ad:47:d3:db:c0:
0d:67:10:8c:97:7e:3b:7b:0f:f4:93:fc:e4:5c:50:a8:65:2f:
97:39:74:c4:17:f9:c0:1c:69:a0:33:ad:d6:49:10:89:ca:1e:
7c:19:01:74:cc:14:13:a3:0d:f8:80:67:cf:3a:02:ce:fc:48:
03:0f:4a:2e:a6:79:17:6c:38:47:0a:6b:fa:81:01:39:71:d9:
42:6b:c1:76:ef:42:e3:1d:67:2e:f1:84:37:a2:0d:07:f7:16:
e8:2b:f2:30:49:c5:78:5b:76:02:7f:b1:99:b4:bb:d3:94:65:
8f:ee:91:e7:92:e9:de:e6:1f:c1:ca:25:7c:5b:1b:77:f0:17:
31:fa:78:7e:44:4a:56:4d:3f:53:b6:00:90:c4:81:b7:05:3c:
21:9d:7c:bb:1e:3c:4d:b3:8b:21:40:44:5e:9d:67:91:65:aa:
2f:7c:c0:fa:03:8c:e9:c5:17:58:72:6a:1c:d9:2f:d7:18:df:
f5:0d:1a:14:87:38:5c:56:3b:ac:5e:af:44:7e:a7:d3:71:99:
ba:4d:7e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:21 2024 by rpki-client on console-fra.rpki-client.org