Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/0iCZSPK_Xbxhxlfn7n_yz-n14_Q.roa
File: 0iCZSPK_Xbxhxlfn7n_yz-n14_Q.roa (raw, json)
Hash identifier: ILWKWsKIfH9tfrF3RBOet60fyzyD4m3g3+7+i8OuHoE=
Subject key identifier: D2:20:99:48:F2:BF:5D:BC:61:C6:57:E7:EE:7F:F2:CF:E9:F5:E3:F4
Certificate issuer: /CN=d4459dd6f7ccecfebeb434fc08db8e22d4569c23
Certificate serial: 018A4A7965AA31417A750D3D54D7118F38CB
Authority key identifier: D4:45:9D:D6:F7:CC:EC:FE:BE:B4:34:FC:08:DB:8E:22:D4:56:9C:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EWd1vfM7P6-tDT8CNuOItRWnCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/0iCZSPK_Xbxhxlfn7n_yz-n14_Q.roa
Signing time: Thu 31 Aug 2023 07:23:04 +0000
ROA not before: Thu 31 Aug 2023 07:23:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 36113
IP address blocks: 91.223.67.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4a:79:65:aa:31:41:7a:75:0d:3d:54:d7:11:8f:38:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4459dd6f7ccecfebeb434fc08db8e22d4569c23
Validity
Not Before: Aug 31 07:23:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d2209948f2bf5dbc61c657e7ee7ff2cfe9f5e3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6f:bc:38:bf:e6:37:c3:4b:5d:f4:40:7f:07:
dd:61:36:f1:c4:55:fd:9b:9b:95:20:0a:a8:3a:22:
77:94:54:a4:b4:40:a4:74:34:c4:a3:8a:ba:89:93:
39:4e:70:a4:4c:08:15:ab:6a:6c:48:17:92:4a:7e:
5c:25:b2:eb:a8:7b:83:95:73:60:fe:44:2d:32:e3:
f4:80:fc:2d:de:5d:3c:75:67:16:60:e1:d1:e5:b4:
3d:13:31:2c:80:c7:98:78:6f:32:57:a0:28:b7:fd:
2b:fe:df:75:36:0f:5d:b3:ea:4d:4a:41:b2:09:b4:
88:c9:c7:8f:15:a1:2c:3d:03:90:ce:8b:08:83:0f:
b5:06:47:d9:98:10:d9:4d:4f:83:ae:39:c1:22:d9:
45:b3:06:11:af:ee:71:06:07:50:ca:a1:4a:be:d7:
23:1d:94:5f:e1:3b:e6:a2:97:9c:c9:2f:cd:03:5f:
24:2f:e1:33:9e:f5:fe:c8:1a:dc:ad:9c:79:4a:65:
39:67:9e:40:c6:60:dd:e0:3c:3b:e3:f8:0e:61:20:
48:8c:f3:38:34:95:24:44:68:92:71:9c:4e:76:29:
3c:95:08:f9:43:7f:0a:d8:a3:dc:72:f5:e9:d2:74:
82:4c:9b:8c:4b:20:46:1b:1d:1a:21:c5:2e:d2:46:
2e:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:20:99:48:F2:BF:5D:BC:61:C6:57:E7:EE:7F:F2:CF:E9:F5:E3:F4
X509v3 Authority Key Identifier:
keyid:D4:45:9D:D6:F7:CC:EC:FE:BE:B4:34:FC:08:DB:8E:22:D4:56:9C:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EWd1vfM7P6-tDT8CNuOItRWnCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/0iCZSPK_Xbxhxlfn7n_yz-n14_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/1EWd1vfM7P6-tDT8CNuOItRWnCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.67.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:b0:36:25:b6:6c:32:66:6d:1c:1c:73:de:1c:f0:27:bd:c5:
c3:aa:06:2d:2f:7d:a1:6f:5d:a2:5f:0b:f9:93:9a:1d:56:41:
6c:13:9c:d8:75:39:75:83:ee:e4:3d:04:54:fe:5a:52:b3:71:
5f:8a:37:ab:18:97:77:51:50:cf:60:83:52:d0:d5:5f:ba:b1:
c4:9a:e4:ba:11:6c:07:cf:17:78:a0:19:30:69:f1:dd:d5:b3:
40:c6:bb:e1:42:34:39:95:de:e6:6c:ff:88:ad:cf:c7:82:ad:
fd:8e:6d:ad:bf:a4:cf:41:ce:ed:02:94:7f:38:68:d0:5e:b4:
ac:26:77:08:2c:f7:06:2e:b9:93:97:97:28:9a:0f:f1:4c:32:
f2:03:ab:db:b4:34:48:3f:2a:d8:fc:42:d5:1d:76:24:8d:32:
f1:2e:57:28:fd:03:a5:67:14:bb:6f:c9:d8:29:5e:f2:cd:2f:
69:21:af:a7:d3:12:ad:24:e3:22:65:b5:f1:d3:ea:97:31:de:
e9:24:2f:60:14:c7:6c:6e:62:e4:82:e9:80:35:75:4c:93:c0:
84:a7:18:00:ff:42:b4:b4:c4:e8:06:04:92:13:01:2b:be:7e:
48:fe:f7:0c:ba:8d:78:24:62:b1:25:49:a6:f1:e6:45:8c:7c:
b2:5e:74:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 1 05:31:07 2023 by rpki-client on console-ams.rpki-client.org