Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/kwu5JWRFKJjVm00RtecSMJao9XA.roa
File: kwu5JWRFKJjVm00RtecSMJao9XA.roa (raw, json)
Hash identifier: CkS9UdVinPbO10CVjlYnD/JTXyyme5mc9Y7NiIFj7fA=
Subject key identifier: 93:0B:B9:25:64:45:28:98:D5:9B:4D:11:B5:E7:12:30:96:A8:F5:70
Certificate issuer: /CN=705ee67d4a12d53c44e701cbd896a48575eb2503
Certificate serial: 01856CC169265E729CE3B8E351774CD5CB35
Authority key identifier: 70:5E:E6:7D:4A:12:D5:3C:44:E7:01:CB:D8:96:A4:85:75:EB:25:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF7mfUoS1TxE5wHL2JakhXXrJQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/kwu5JWRFKJjVm00RtecSMJao9XA.roa
Signing time: Sun 01 Jan 2023 09:54:52 +0000
ROA not before: Sun 01 Jan 2023 09:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49993
IP address blocks: 91.240.254.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:69:26:5e:72:9c:e3:b8:e3:51:77:4c:d5:cb:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705ee67d4a12d53c44e701cbd896a48575eb2503
Validity
Not Before: Jan 1 09:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=930bb92564452898d59b4d11b5e7123096a8f570
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5e:7c:b0:9c:ad:2a:3e:06:d6:76:89:7c:21:
be:5b:e5:4e:e5:2d:0b:5e:bb:eb:48:46:57:fb:aa:
f8:1a:66:fe:a6:51:8b:84:e4:0b:58:bf:7c:00:0e:
90:9a:a0:54:77:80:30:e8:23:3c:0a:63:d0:2d:33:
f8:c2:53:ab:71:7a:44:68:a9:1b:c2:f8:56:1a:ce:
a7:6e:11:5b:d4:e6:7f:d0:b4:9d:c1:31:39:48:79:
d6:ee:1c:ce:c6:85:90:da:6c:22:3b:b9:af:11:ca:
b3:38:48:53:82:c1:74:6f:41:51:b0:1d:1b:9a:73:
19:8e:bc:69:a4:32:90:44:82:f6:6b:b2:59:51:c8:
a0:d7:61:5f:2c:76:da:0e:dd:50:93:c0:d3:55:6e:
48:d1:f5:f6:20:ea:08:84:56:50:34:a0:de:14:41:
69:a0:74:95:60:a2:2b:b3:e3:77:0f:dc:99:5c:b2:
f3:10:f3:d4:f2:ba:d6:6f:14:8b:4f:7b:68:fa:0e:
98:64:46:d2:b0:3d:aa:6c:01:db:08:f5:a0:ab:09:
b4:91:5c:59:38:a1:33:bd:9a:04:23:be:d9:83:be:
d2:5b:2e:11:ef:14:93:4b:00:f7:48:de:23:b6:c7:
6d:7c:a5:a9:6a:67:fd:20:84:49:d9:2a:20:b5:69:
4c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:0B:B9:25:64:45:28:98:D5:9B:4D:11:B5:E7:12:30:96:A8:F5:70
X509v3 Authority Key Identifier:
keyid:70:5E:E6:7D:4A:12:D5:3C:44:E7:01:CB:D8:96:A4:85:75:EB:25:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF7mfUoS1TxE5wHL2JakhXXrJQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/kwu5JWRFKJjVm00RtecSMJao9XA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/cF7mfUoS1TxE5wHL2JakhXXrJQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.254.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:00:0a:1b:57:75:24:91:ec:7b:33:51:cd:31:1f:90:c9:a0:
c7:62:d6:2a:0b:e1:96:bc:44:25:de:bf:10:d5:55:62:80:4c:
57:4b:39:93:44:c5:c7:eb:52:29:41:99:7e:11:58:67:f2:ff:
0d:ac:7e:1b:f3:2e:7d:b6:84:c2:e8:2b:94:dc:61:45:17:e9:
80:14:f0:c5:25:15:a3:a6:f7:8d:a7:0b:af:90:48:d5:58:ef:
c6:f2:65:8a:d3:5d:5a:51:df:c3:93:8e:65:6c:33:fa:75:2c:
76:f7:6a:75:d6:7f:d1:88:09:bd:b8:3c:45:ef:3a:89:d7:b5:
4f:00:98:6e:a6:a4:b0:05:ef:a3:38:e6:fe:6c:5f:4d:06:32:
20:6a:2a:df:c0:7c:a9:1a:a9:39:ed:a3:eb:d7:83:99:36:5c:
d4:ab:01:fc:80:bd:d9:5d:b7:1d:7b:5f:cb:3b:56:00:a5:b1:
9d:92:1c:51:f5:71:63:4d:10:eb:31:8b:37:2d:80:82:e5:f5:
11:3c:21:83:b3:7a:17:76:c2:1b:81:c5:48:2c:14:55:0c:c1:
f3:a7:e8:3c:5c:07:22:b4:6d:62:02:9b:02:7a:e8:fe:18:ac:
50:14:9e:11:c6:90:b3:50:c3:03:0a:bf:77:a7:ae:53:90:79:
41:35:6f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:20 2023 by rpki-client on console-ams.rpki-client.org