Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/VfOfrphOua0oS9-Rm6U0BXr2urY.roa
File: VfOfrphOua0oS9-Rm6U0BXr2urY.roa (raw, json)
Hash identifier: j+Udvwaf3ATMndNw7xNwjU5GuiYwmwBGRxOkA1tjTXY=
Subject key identifier: 55:F3:9F:AE:98:4E:B9:AD:28:4B:DF:91:9B:A5:34:05:7A:F6:BA:B6
Certificate issuer: /CN=a50f21c3dc93757fc03282a835600d659f961e8e
Certificate serial: 01857015478243AE43FDC9E7EF903BED2690
Authority key identifier: A5:0F:21:C3:DC:93:75:7F:C0:32:82:A8:35:60:0D:65:9F:96:1E:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pQ8hw9yTdX_AMoKoNWANZZ-WHo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/VfOfrphOua0oS9-Rm6U0BXr2urY.roa
Signing time: Mon 02 Jan 2023 01:25:20 +0000
ROA not before: Mon 02 Jan 2023 01:25:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 13000
IP address blocks: 91.207.64.0/23 maxlen: 23
91.208.247.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:47:82:43:ae:43:fd:c9:e7:ef:90:3b:ed:26:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a50f21c3dc93757fc03282a835600d659f961e8e
Validity
Not Before: Jan 2 01:25:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=55f39fae984eb9ad284bdf919ba534057af6bab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:43:74:43:ba:d1:ed:df:f6:f5:fe:4f:0c:f1:
94:72:db:3a:11:84:9e:71:f5:eb:ab:0c:e0:6b:b8:
a2:ba:45:d9:08:04:64:29:f0:c5:19:43:8c:41:14:
db:e1:69:83:5a:35:3e:04:f1:d5:39:1b:7c:b4:85:
48:2a:f0:34:19:03:b9:dd:ea:2c:79:7f:c6:5c:b0:
d9:da:70:39:1d:0d:19:9a:05:58:85:42:06:5f:80:
eb:25:07:ac:ef:2f:f0:af:5c:25:53:a3:d8:c1:3e:
41:6f:c3:2c:e6:f5:c5:c4:bc:a5:24:93:2b:00:c5:
13:2b:78:6d:aa:78:35:a0:64:26:f2:bc:9c:d3:31:
58:ee:7a:08:c8:e8:51:27:8a:9e:cd:24:aa:2a:af:
6e:ac:2f:61:de:01:90:57:53:14:89:f9:58:c5:e0:
39:9e:c4:69:36:59:6d:34:4c:2a:ba:fd:e5:9c:48:
89:c8:50:a0:fd:26:d0:60:31:58:a2:4c:2d:3d:78:
54:53:93:94:70:f6:97:57:51:a8:94:33:15:38:a0:
00:80:1d:11:36:75:37:8f:58:70:54:ad:ee:70:dc:
c9:eb:cb:06:13:1d:1e:99:6a:55:a7:67:2c:81:dc:
94:c9:f6:9c:a2:bb:c9:92:66:39:39:cf:15:54:30:
0f:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:F3:9F:AE:98:4E:B9:AD:28:4B:DF:91:9B:A5:34:05:7A:F6:BA:B6
X509v3 Authority Key Identifier:
keyid:A5:0F:21:C3:DC:93:75:7F:C0:32:82:A8:35:60:0D:65:9F:96:1E:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pQ8hw9yTdX_AMoKoNWANZZ-WHo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/VfOfrphOua0oS9-Rm6U0BXr2urY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/ea1df7-808a-47c3-ae51-b0843ec38823/1/pQ8hw9yTdX_AMoKoNWANZZ-WHo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.64.0/23
91.208.247.0/24
Signature Algorithm: sha256WithRSAEncryption
47:93:b2:90:89:82:d0:42:71:81:c1:1e:dd:9e:b3:6b:e9:05:
be:3a:78:46:1c:23:e0:10:5d:42:2a:a2:c0:19:2b:96:74:25:
a1:6e:8d:68:f3:26:aa:af:f1:d6:51:4b:78:36:59:f7:b7:99:
f9:bf:14:47:ad:f7:48:a2:83:62:7d:04:6a:4b:6a:2d:e9:3f:
1d:8c:fc:e9:31:8c:c4:6e:fa:b6:54:97:53:69:7b:c4:a0:b2:
74:2b:25:63:2b:25:3b:7d:c8:dd:e8:ee:f7:e7:ed:91:83:a1:
d4:23:2a:f2:16:56:48:ac:0d:09:87:e6:90:51:89:2f:10:5b:
9a:b1:af:70:a9:ab:3f:74:46:a0:dc:91:68:15:18:ec:0b:2c:
0c:ef:10:d4:c3:f7:81:06:dc:73:5c:0e:c2:7d:d6:5a:94:a3:
41:c1:cd:0f:a5:8c:e0:a4:a8:77:78:b6:1f:ee:b8:e0:cc:73:
89:28:76:06:4b:21:cc:03:c3:18:b5:90:82:70:8c:70:41:32:
70:75:d9:b0:22:82:fd:7d:06:0b:01:7c:08:16:7e:e3:f1:52:
79:9b:2c:4d:d6:00:43:cc:9c:45:93:ed:84:61:7a:a6:54:7c:
3e:c9:63:0f:7b:af:c4:8c:88:51:43:dc:53:7b:6b:9b:09:30:
0a:92:de:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:15 2024 by rpki-client on console-ams.rpki-client.org