Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hNnWzxMr9rdLyi8Z60bYj5N1Jo4.roa
File: hNnWzxMr9rdLyi8Z60bYj5N1Jo4.roa (raw, json)
Hash identifier: 0EjuewhCFURfdX75FpsaxQqt/ZN6rUhT5g3c5HeC67U=
Subject key identifier: 84:D9:D6:CF:13:2B:F6:B7:4B:CA:2F:19:EB:46:D8:8F:93:75:26:8E
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01884C765B1B4C1C50A8FC8E1E2C092AFF7F
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hNnWzxMr9rdLyi8Z60bYj5N1Jo4.roa
Signing time: Wed 24 May 2023 06:33:24 +0000
ROA not before: Wed 24 May 2023 06:33:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210558
IP address blocks: 91.206.169.0/24 maxlen: 24
45.138.16.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:4c:76:5b:1b:4c:1c:50:a8:fc:8e:1e:2c:09:2a:ff:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 24 06:33:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84d9d6cf132bf6b74bca2f19eb46d88f9375268e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:75:5c:c3:62:b4:b0:ab:cc:3b:32:c1:bd:94:
af:b6:85:ee:ab:44:80:7c:5d:f4:d3:06:9a:37:f6:
b7:3e:60:fd:a7:82:80:0f:5c:5c:99:05:e4:0a:da:
ba:14:f8:8e:b6:f2:a3:62:59:cf:5f:dc:59:2e:a1:
f6:46:07:f1:69:2f:87:ae:36:b9:13:5a:36:95:cb:
39:6f:24:a4:24:bf:a1:c9:ec:26:4e:46:44:11:49:
ec:0b:ff:9e:81:f9:47:99:37:b9:ec:65:ea:d5:a6:
77:cd:7c:af:07:fa:f6:e5:74:51:f6:b1:f3:98:65:
96:81:27:f6:1a:f9:cd:a5:bc:aa:be:c4:46:3f:4d:
59:0f:60:ba:af:84:21:1f:5f:14:c2:8b:88:ac:fc:
25:24:56:14:fa:1f:31:de:20:53:01:99:d8:cc:c4:
f4:65:44:4a:dd:62:25:4e:2b:28:a8:07:14:78:55:
b0:c7:d2:d3:f6:27:bd:ae:1f:42:54:cd:8d:24:8e:
a4:54:df:9c:46:da:fb:ba:ea:78:e5:eb:4e:d8:18:
33:65:a6:5c:84:9f:01:b8:e3:b7:80:55:2f:14:d6:
e1:72:2a:43:ec:10:b6:5b:7d:27:3e:95:2b:8c:29:
4f:31:e5:0e:68:ef:fb:cd:1f:93:32:67:1c:36:2f:
4a:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D9:D6:CF:13:2B:F6:B7:4B:CA:2F:19:EB:46:D8:8F:93:75:26:8E
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/hNnWzxMr9rdLyi8Z60bYj5N1Jo4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.16.0/24
91.206.169.0/24
Signature Algorithm: sha256WithRSAEncryption
58:49:c4:32:2e:04:76:60:eb:49:4c:85:8f:ab:dd:17:f6:d9:
41:af:6e:82:3c:c9:aa:2d:67:5b:0e:d4:e4:4b:8e:a7:a7:c2:
29:30:37:c8:e1:46:9a:69:40:d2:a2:db:64:1a:47:6b:68:73:
6d:d1:08:67:90:15:cf:55:21:9b:19:d3:99:88:ee:cc:b5:f2:
11:00:a2:af:68:58:11:2c:48:e1:91:b3:b6:85:b2:ef:5d:7b:
71:35:53:3d:7b:53:5d:f6:76:be:94:fc:61:c6:b1:ea:e3:ac:
37:b8:ac:5f:1b:14:dc:4d:a6:29:09:64:d5:f6:72:17:80:a7:
ee:8d:8f:13:5d:ea:82:30:3e:2c:04:f3:c8:c5:0a:c4:fc:be:
b8:73:f8:16:c0:22:fe:cc:fc:59:36:f7:0b:8b:40:0f:55:01:
5b:6e:e1:27:46:03:2f:42:4b:ae:a9:ae:f6:fe:8d:1c:2a:63:
71:ee:85:3c:ef:a4:dc:5a:e7:2b:51:80:3e:8f:04:ac:5f:85:
77:12:63:93:ee:a0:7c:0a:68:47:01:8c:b2:02:6c:58:38:af:
87:d8:e1:ed:6b:9a:e0:86:aa:06:ea:4f:6c:19:dc:61:04:d5:
c7:84:da:3f:3f:2e:c3:8d:8b:69:44:57:00:a6:5f:a3:e7:e1:
59:fa:06:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 4 16:18:40 2023 by rpki-client on console-ams.rpki-client.org