Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/l9f8pr2uszltQy3KlfAI9ABEjQo.roa
File: l9f8pr2uszltQy3KlfAI9ABEjQo.roa (raw, json)
Hash identifier: XYpp7AdtH4DY5qsRLNJ/rGuXPKn2Evhev1UvTGyEXVs=
Subject key identifier: 97:D7:FC:A6:BD:AE:B3:39:6D:43:2D:CA:95:F0:08:F4:00:44:8D:0A
Certificate issuer: /CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Certificate serial: 01856CB8204B8ADA451C7D44127192CB3184
Authority key identifier: AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/l9f8pr2uszltQy3KlfAI9ABEjQo.roa
Signing time: Sun 01 Jan 2023 09:44:44 +0000
ROA not before: Sun 01 Jan 2023 09:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5391
IP address blocks: 91.239.120.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:20:4b:8a:da:45:1c:7d:44:12:71:92:cb:31:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2f7748fe363dc5939e9b854fc00403130eba5
Validity
Not Before: Jan 1 09:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97d7fca6bdaeb3396d432dca95f008f400448d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:bf:a9:6d:a4:3a:dd:87:b2:fe:80:20:63:ba:
89:cb:b0:23:79:76:8e:8d:87:e0:1f:90:02:1c:4c:
37:74:bf:c8:2a:df:da:24:19:d7:5a:dc:7c:f6:99:
a9:50:ec:9d:7b:3f:b2:75:dd:dd:b2:75:19:6c:cc:
c1:3b:ab:91:32:e8:22:95:96:ef:37:4a:83:4f:2c:
74:88:b7:a7:2a:2d:65:aa:d8:77:d3:92:99:17:19:
16:8a:1f:fc:98:fc:c5:c0:9b:24:a9:ea:a3:eb:f5:
69:fa:cb:1d:7a:d7:21:5c:d3:47:77:80:bf:ed:a5:
38:7a:c9:14:8b:aa:e4:1f:5a:ea:2b:f9:53:bd:7a:
8b:01:b7:8f:08:76:26:99:a1:44:f7:38:6b:a4:52:
fe:7f:d0:48:67:c8:09:06:53:6b:3c:6c:23:a2:c3:
f5:0c:d4:33:a5:62:c1:6c:3b:c5:07:f7:2c:a5:40:
04:9d:ce:77:f5:9c:d2:4e:cd:0d:be:34:dd:30:12:
f0:97:93:46:f2:c3:45:95:61:ba:32:b9:74:bd:56:
4e:aa:63:5f:d9:67:d2:5f:50:c8:22:5b:96:bd:40:
a3:12:11:46:00:1c:f8:9b:65:46:46:15:c9:29:a8:
d4:f0:94:89:e4:b8:ec:07:e4:b0:aa:f4:76:73:95:
df:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:D7:FC:A6:BD:AE:B3:39:6D:43:2D:CA:95:F0:08:F4:00:44:8D:0A
X509v3 Authority Key Identifier:
keyid:AC:A2:F7:74:8F:E3:63:DC:59:39:E9:B8:54:FC:00:40:31:30:EB:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKL3dI_jY9xZOem4VPwAQDEw66U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/l9f8pr2uszltQy3KlfAI9ABEjQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/cccc41-dd2c-41f0-82bf-e92dd8fa6abb/1/rKL3dI_jY9xZOem4VPwAQDEw66U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.120.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:0e:bb:22:10:b5:04:c8:b4:8e:6a:0d:73:51:69:63:e5:62:
c8:19:c2:7b:86:b6:f4:b8:fe:b3:e1:68:1e:03:bb:88:0b:ef:
66:20:f8:83:6e:a0:b6:bc:b4:25:1a:94:c2:03:ea:3d:99:50:
c2:84:8b:0e:65:11:a2:74:80:66:4a:e3:ab:3b:fd:4e:ce:e0:
8b:24:e8:a6:89:73:b3:20:59:30:84:e0:2e:5c:a7:00:fc:8d:
93:47:5a:4a:3b:c0:f3:ef:f0:9a:31:22:c2:8f:2d:c1:2b:82:
16:ac:a8:31:dc:78:73:ae:0f:83:e5:c5:c7:5a:f1:1e:09:a2:
7e:b7:04:5f:e1:f0:2f:0f:d9:0a:80:1e:ea:06:e5:71:30:ef:
2f:ff:85:c9:17:ea:a2:50:99:7d:94:5c:5a:e8:2a:e6:84:88:
f7:c2:80:5a:29:9b:4c:03:a2:9e:a4:b1:3a:d6:f3:ef:2b:0e:
e0:1a:8b:6d:bc:67:e4:fb:e0:7a:2a:0c:b7:0d:de:bd:61:68:
4b:12:85:4a:a5:0e:a6:9d:9e:be:31:27:8f:59:17:db:58:6c:
d5:18:82:f9:e1:15:93:59:39:f6:d6:de:e8:d6:99:4e:86:c4:
46:2e:d4:de:01:ba:5f:ab:3d:fe:87:4f:da:8c:10:7e:70:06:
06:23:c2:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:52 2024 by rpki-client on console-ams.rpki-client.org