Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/fFDPj37ztOlWZY8v8ZWKEJqc-hQ.roa
File: fFDPj37ztOlWZY8v8ZWKEJqc-hQ.roa (raw, json)
Hash identifier: t62jl0Clh/ongxopjWLh44/Nxyh0K2XWw4IAfL2IvmY=
Subject key identifier: 7C:50:CF:8F:7E:F3:B4:E9:56:65:8F:2F:F1:95:8A:10:9A:9C:FA:14
Certificate issuer: /CN=4a80bbd08403871068fdf1fcb5e1012147f61619
Certificate serial: 01856FA6EF07D330FF7292957FE23CBE399E
Authority key identifier: 4A:80:BB:D0:84:03:87:10:68:FD:F1:FC:B5:E1:01:21:47:F6:16:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SoC70IQDhxBo_fH8teEBIUf2Fhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/fFDPj37ztOlWZY8v8ZWKEJqc-hQ.roa
Signing time: Sun 01 Jan 2023 23:24:49 +0000
ROA not before: Sun 01 Jan 2023 23:24:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21217
IP address blocks: 91.200.144.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a6:ef:07:d3:30:ff:72:92:95:7f:e2:3c:be:39:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a80bbd08403871068fdf1fcb5e1012147f61619
Validity
Not Before: Jan 1 23:24:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7c50cf8f7ef3b4e956658f2ff1958a109a9cfa14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:3c:d5:61:a6:03:96:1d:56:a9:0c:b3:42:95:
40:25:24:8d:f2:81:ae:8e:b1:62:fd:df:b8:66:73:
35:21:6e:ac:c0:ea:e3:ec:f6:ec:c8:0c:f3:43:d3:
d8:bb:60:b5:ba:c5:e6:e5:9f:0d:c2:53:a4:f7:55:
a9:67:70:f0:39:2c:ae:93:bf:83:cc:86:e8:3e:2a:
1a:22:0b:0e:42:62:20:a8:17:50:bd:3d:54:51:3c:
99:c3:2a:ad:a8:17:65:2a:32:d9:9f:63:ee:5d:b3:
c7:d0:81:b9:3d:05:f3:ce:62:ad:5c:b3:80:fa:70:
18:72:6f:17:89:e2:dd:8f:1c:ca:ef:28:4c:66:9d:
67:c2:31:5c:3d:71:87:0c:b4:3c:40:09:c4:d1:7e:
cb:a0:33:8c:89:fb:4a:3c:2e:25:b2:9f:8e:8d:10:
85:4f:cf:e7:03:52:f8:ae:43:15:5b:a3:a0:4a:54:
04:85:df:bb:c0:0e:59:49:35:e8:94:55:74:f3:71:
82:6b:58:16:cc:69:07:11:c3:80:22:d5:e8:f4:84:
20:dc:6e:08:7b:e0:3b:be:2f:4f:69:35:cc:ea:37:
7e:74:ae:8c:96:f9:61:0b:84:7e:9d:1e:a3:cd:f7:
08:65:46:32:9d:b4:53:5f:28:7a:00:16:79:f7:c7:
45:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:50:CF:8F:7E:F3:B4:E9:56:65:8F:2F:F1:95:8A:10:9A:9C:FA:14
X509v3 Authority Key Identifier:
keyid:4A:80:BB:D0:84:03:87:10:68:FD:F1:FC:B5:E1:01:21:47:F6:16:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SoC70IQDhxBo_fH8teEBIUf2Fhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/fFDPj37ztOlWZY8v8ZWKEJqc-hQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/d4dfd6-d240-4b0e-9a01-e1d69fa908ca/1/SoC70IQDhxBo_fH8teEBIUf2Fhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.144.0/24
Signature Algorithm: sha256WithRSAEncryption
92:ad:f4:d3:0a:37:4d:ef:f9:03:c8:99:a8:04:1b:80:1c:9b:
2e:23:8e:be:b9:c8:f7:42:59:a0:6f:94:dd:6b:56:2d:e3:bf:
58:e9:10:e5:d1:66:c0:46:d8:17:be:5c:68:9c:df:82:73:60:
dd:07:ef:32:1c:6b:fc:cb:33:72:fb:e5:9d:45:c8:7b:1b:e1:
61:a3:c2:69:68:d6:05:fa:84:23:c9:af:34:f6:51:4e:c6:f7:
dd:9c:76:59:0d:8a:87:2b:b5:b8:43:10:1d:99:03:23:57:5a:
a8:7a:1f:04:c4:2d:a2:16:f3:18:23:d2:e7:88:f4:ee:ec:e5:
d0:75:f9:0c:48:ea:21:00:a2:b0:f0:1a:b6:83:e0:af:71:54:
47:c6:04:98:f0:93:ef:a5:0a:8e:29:ce:64:ad:42:62:27:5b:
ee:79:82:a9:23:25:6f:bc:b6:2b:bc:a6:bb:48:e3:22:47:13:
2f:18:a1:e2:59:dd:94:10:8e:66:3b:2b:59:78:16:9e:ad:84:
47:b7:5f:b1:19:65:36:be:1d:f4:e3:1d:64:cc:f9:ad:47:33:
d7:90:7a:20:5f:95:71:7a:97:b3:82:56:b0:35:86:f3:c7:e4:
16:af:62:47:e7:19:2e:2c:a6:e7:98:4b:f6:80:cd:27:53:14:
7b:8f:40:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 02:54:15 2024 by rpki-client on console-ams.rpki-client.org