Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/mojozFfS7atLGP5rptKkT_BuSP0.roa
File: mojozFfS7atLGP5rptKkT_BuSP0.roa (raw, json)
Hash identifier: 1NJ1mGtmoFSr314JpJTvKIhYeT/870ZvN2DUowU86wY=
Subject key identifier: 9A:88:E8:CC:57:D2:ED:AB:4B:18:FE:6B:A6:D2:A4:4F:F0:6E:48:FD
Certificate issuer: /CN=3576dfd9bc98c613b84327d34062075acc56272f
Certificate serial: 018572E81217794E2DBEC54583075ED0ADE7
Authority key identifier: 35:76:DF:D9:BC:98:C6:13:B8:43:27:D3:40:62:07:5A:CC:56:27:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NXbf2byYxhO4QyfTQGIHWsxWJy8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/mojozFfS7atLGP5rptKkT_BuSP0.roa
Signing time: Mon 02 Jan 2023 14:34:49 +0000
ROA not before: Mon 02 Jan 2023 14:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58075
IP address blocks: 91.210.125.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:12:17:79:4e:2d:be:c5:45:83:07:5e:d0:ad:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3576dfd9bc98c613b84327d34062075acc56272f
Validity
Not Before: Jan 2 14:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9a88e8cc57d2edab4b18fe6ba6d2a44ff06e48fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:82:40:7c:81:47:7b:2e:89:da:3c:f1:40:f0:
5d:07:d0:d0:ae:85:7c:3e:99:d5:2d:05:e9:31:7b:
89:3c:ed:90:fb:66:c8:07:93:c9:3b:7c:ac:d3:20:
b4:18:b1:c4:a7:d9:8b:50:dd:ed:db:60:64:88:a4:
71:8e:6d:ee:3a:2d:ef:81:de:ce:cf:a9:15:02:6a:
2f:43:ca:a7:c5:26:df:08:cf:b8:97:53:30:96:e3:
fb:b9:cf:2f:52:23:11:85:95:5f:bb:a5:33:10:ff:
c4:41:54:72:b3:12:bf:8c:2a:50:55:58:11:d6:69:
6e:a4:d2:59:33:4a:bf:38:47:46:27:e7:ad:46:1c:
1e:4e:55:07:c0:ce:39:5c:ce:b8:fa:e3:f2:04:38:
b6:5e:de:a9:6c:7a:28:75:a9:d2:f7:4d:94:a4:e6:
8d:41:bc:2d:8c:26:b0:3e:ce:48:15:64:74:18:08:
61:40:6b:c9:2d:34:eb:f9:17:9e:4a:e4:00:b7:43:
46:3e:46:dd:bb:8e:d0:9b:ee:03:00:c2:56:bf:74:
80:1a:c6:18:61:2a:53:3a:57:f1:db:39:86:30:32:
bb:a1:42:bd:92:69:3d:e9:ea:56:ce:3e:4d:39:57:
fa:8f:33:15:77:e8:79:08:1b:20:43:8e:7e:12:bb:
1d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:88:E8:CC:57:D2:ED:AB:4B:18:FE:6B:A6:D2:A4:4F:F0:6E:48:FD
X509v3 Authority Key Identifier:
keyid:35:76:DF:D9:BC:98:C6:13:B8:43:27:D3:40:62:07:5A:CC:56:27:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NXbf2byYxhO4QyfTQGIHWsxWJy8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/mojozFfS7atLGP5rptKkT_BuSP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/311fe5-3885-4c3f-8ca0-9bcf6cadaad6/1/NXbf2byYxhO4QyfTQGIHWsxWJy8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.125.0/24
Signature Algorithm: sha256WithRSAEncryption
54:25:63:4a:1a:63:54:0d:33:ce:e3:9f:72:9d:49:82:71:75:
c2:75:ed:a7:5a:06:08:8a:8a:b4:dc:da:e8:dd:5e:5a:00:dd:
77:ff:97:e2:2d:22:36:11:e0:2d:aa:b9:1f:4c:b7:a1:5d:25:
1c:bb:6e:67:73:fa:a2:0a:47:db:5e:5b:01:35:f1:d4:f7:57:
60:88:88:50:f5:df:97:7b:a5:e8:f3:7e:cb:d1:79:a6:bd:12:
39:04:71:d0:53:6e:96:dd:0d:51:15:5c:2e:b9:9f:95:5a:03:
88:ee:f5:0d:6c:c3:d1:98:32:88:36:3b:52:99:74:ae:ec:0a:
60:4d:c0:66:35:c9:8a:08:c8:f6:a2:10:c2:4f:82:db:d8:53:
e2:26:45:10:91:c3:03:ce:be:a0:ff:f7:d2:11:11:db:e4:e0:
28:b8:76:cf:88:6e:a3:da:91:8e:55:60:eb:59:83:51:d3:06:
70:d0:3f:74:b0:70:8e:72:36:11:16:bd:76:da:2a:0e:b1:9b:
3f:2f:66:21:90:2d:08:19:92:51:58:50:b9:e2:bc:6e:2a:c2:
60:cc:8d:cb:6c:b2:76:10:5e:3a:9e:f4:05:21:f4:ea:3d:7e:
0a:85:b9:79:db:ec:1c:e5:9a:a7:b5:8f:db:2e:60:94:74:1d:
24:41:c7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:12 2024 by rpki-client on console-ams.rpki-client.org