Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/d8ec03-fb84-444e-a6ef-985231635421/1/0l3e3J5R9odl99kA-m_bE5DX3do.roa
File: 0l3e3J5R9odl99kA-m_bE5DX3do.roa (raw, json)
Hash identifier: Mt8QHWwcuAkWfwduddQ7l6QwRUTVR1HwnNrE7H4l4+0=
Subject key identifier: D2:5D:DE:DC:9E:51:F6:87:65:F7:D9:00:FA:6F:DB:13:90:D7:DD:DA
Certificate issuer: /CN=673f8874d9731f67682a213e6fe5e0b0df34e6cb
Certificate serial: 01857295E19BF163701B182EA781937CF8AA
Authority key identifier: 67:3F:88:74:D9:73:1F:67:68:2A:21:3E:6F:E5:E0:B0:DF:34:E6:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zz-IdNlzH2doKiE-b-XgsN805ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/d8ec03-fb84-444e-a6ef-985231635421/1/0l3e3J5R9odl99kA-m_bE5DX3do.roa
Signing time: Mon 02 Jan 2023 13:05:03 +0000
ROA not before: Mon 02 Jan 2023 13:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34562
IP address blocks: 91.217.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:95:e1:9b:f1:63:70:1b:18:2e:a7:81:93:7c:f8:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=673f8874d9731f67682a213e6fe5e0b0df34e6cb
Validity
Not Before: Jan 2 13:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d25ddedc9e51f68765f7d900fa6fdb1390d7ddda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:70:b2:4e:38:89:53:ef:87:8c:87:a7:a5:4b:
63:62:97:08:86:8c:56:5c:31:07:f4:da:db:ea:d1:
19:c3:1b:58:26:8d:38:2e:b1:8f:c5:25:e5:5e:f7:
b4:c9:fd:a1:32:46:66:6f:af:93:50:b1:9b:15:dc:
9e:e9:01:0a:93:7f:6b:53:9d:b2:1e:94:8a:e3:71:
b5:58:3b:2a:4a:7a:d0:28:f1:36:5d:5e:df:88:2c:
0a:42:53:36:f9:89:71:f6:77:46:01:c5:39:70:4d:
b1:09:25:b9:5d:8c:0a:dd:44:4b:94:05:a0:27:dc:
22:e0:b6:5b:27:b8:2b:cc:da:39:c2:20:34:a3:c6:
ff:bf:a7:d4:6d:52:53:8d:f5:a7:c1:86:f5:ad:c5:
80:a2:f5:4f:15:cf:f5:93:85:21:e9:1e:b1:16:c3:
d9:6b:80:65:14:35:46:b2:dd:9d:30:3c:7c:28:7b:
3b:3b:cb:14:b9:9e:68:dc:59:f2:14:0d:76:e9:86:
e7:a3:a5:c9:ab:13:99:a4:14:2b:ea:da:00:15:df:
5d:9c:e0:b6:4d:fe:7f:0d:1e:b6:f1:e8:3d:4a:bb:
0e:0e:03:ce:d6:88:57:7b:5e:9f:e7:e7:d8:ad:23:
a4:05:6a:57:95:f7:41:d4:40:13:c2:e3:64:6e:5a:
ed:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:5D:DE:DC:9E:51:F6:87:65:F7:D9:00:FA:6F:DB:13:90:D7:DD:DA
X509v3 Authority Key Identifier:
keyid:67:3F:88:74:D9:73:1F:67:68:2A:21:3E:6F:E5:E0:B0:DF:34:E6:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zz-IdNlzH2doKiE-b-XgsN805ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/d8ec03-fb84-444e-a6ef-985231635421/1/0l3e3J5R9odl99kA-m_bE5DX3do.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/d8ec03-fb84-444e-a6ef-985231635421/1/Zz-IdNlzH2doKiE-b-XgsN805ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.235.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:fe:68:41:1d:4b:f4:ec:ec:a5:49:88:83:d0:29:48:20:e2:
bd:a5:72:1d:df:6e:08:94:93:db:51:f1:0c:8f:e2:d0:df:7b:
95:78:b8:1a:10:4c:b6:dc:b6:8b:f4:fe:40:a5:44:87:ca:d3:
70:ba:da:fd:49:f2:ee:ee:21:bb:3d:07:90:83:bc:a2:fb:74:
17:f0:5f:f3:8c:b7:81:31:d8:cc:b2:b2:a7:10:03:14:cb:b1:
04:26:9c:9b:09:86:60:9c:db:e4:a4:ea:34:33:39:61:5f:62:
8d:24:25:7f:0d:8d:68:9a:79:9c:91:b2:31:dd:51:43:b8:64:
ca:40:22:b1:66:8d:01:86:7a:26:00:55:1c:90:6d:6c:74:2f:
ab:80:af:39:7c:f5:a9:ce:a0:a7:05:95:5f:69:e8:6f:91:a4:
b8:85:bf:06:aa:91:ca:76:28:f2:23:61:ba:6f:a7:a1:83:0d:
e3:b1:51:ad:4a:6b:1e:6d:03:19:f8:dc:b4:66:46:c8:a5:b1:
e4:1f:5b:22:88:16:9b:aa:98:d9:12:4b:de:d2:73:fd:0c:26:
53:78:48:a2:db:a3:cb:6b:2f:dd:35:3d:89:6d:2a:bb:74:d0:
ad:5a:b1:14:d3:9a:18:f9:15:3f:55:4d:97:a7:36:62:df:3a:
1b:ba:2c:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:34 2024 by rpki-client on console-ams.rpki-client.org