Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/63efc9-5e1c-4773-94a2-e60de555a8be/1/O4qs616MyAdG2Nq8zTpoenYIBzM.roa
File: O4qs616MyAdG2Nq8zTpoenYIBzM.roa (raw, json)
Hash identifier: eaPN8v6ZE1iCDHmHQ2p/jG2jKaKaqnfCyopeDclUFnU=
Subject key identifier: 3B:8A:AC:EB:5E:8C:C8:07:46:D8:DA:BC:CD:3A:68:7A:76:08:07:33
Certificate issuer: /CN=3fdf2cf8659206d8e6f82c24ec6f9d9e6d673e07
Certificate serial: 01865FD0AF1C9431F076D59E4C704FEC282C
Authority key identifier: 3F:DF:2C:F8:65:92:06:D8:E6:F8:2C:24:EC:6F:9D:9E:6D:67:3E:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P98s-GWSBtjm-Cwk7G-dnm1nPgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/63efc9-5e1c-4773-94a2-e60de555a8be/1/O4qs616MyAdG2Nq8zTpoenYIBzM.roa
Signing time: Fri 17 Feb 2023 14:39:17 +0000
ROA not before: Fri 17 Feb 2023 14:39:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39521
IP address blocks: 91.198.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:5f:d0:af:1c:94:31:f0:76:d5:9e:4c:70:4f:ec:28:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fdf2cf8659206d8e6f82c24ec6f9d9e6d673e07
Validity
Not Before: Feb 17 14:39:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b8aaceb5e8cc80746d8dabccd3a687a76080733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:3c:f7:f8:1b:65:cd:d1:d6:df:a2:ea:ac:cf:
ef:df:4c:1a:de:9f:84:6f:99:32:2b:c7:01:c7:6b:
9e:0c:f9:dd:d5:06:29:a8:f2:8e:05:b2:b2:42:b8:
9c:7b:3a:9f:ce:b2:44:95:bf:7f:4c:32:e5:c6:b8:
89:34:06:b9:7e:c4:6f:05:91:92:be:3c:26:6d:15:
69:01:38:4e:03:fe:09:d5:9e:8c:4a:25:db:f2:33:
56:10:85:7f:2e:31:ba:6a:66:ec:fc:fe:a1:90:2b:
62:67:40:60:b3:8c:ba:36:da:21:29:d1:f3:43:96:
99:f8:a7:7b:cf:9f:71:83:82:86:a2:c7:8a:96:86:
51:ba:e6:58:63:fb:59:e8:68:55:37:90:d6:8e:a5:
49:1e:5f:11:b2:f2:b6:d8:cb:ed:66:f3:cd:41:b6:
10:fb:fa:ea:9a:bb:10:c1:d4:fd:a8:d2:25:b6:17:
9a:55:e2:c7:52:20:ad:ee:f5:3d:8d:ec:cb:f4:b2:
f3:ae:93:88:50:d0:a8:c2:09:a2:6d:2b:f1:f5:50:
27:0f:09:42:dc:19:de:58:b5:25:35:86:ec:45:e6:
3b:fc:92:46:24:5a:9e:d5:e9:9e:df:4a:6b:e5:72:
db:30:f8:54:14:d4:f1:20:24:78:46:91:e7:69:59:
af:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:8A:AC:EB:5E:8C:C8:07:46:D8:DA:BC:CD:3A:68:7A:76:08:07:33
X509v3 Authority Key Identifier:
keyid:3F:DF:2C:F8:65:92:06:D8:E6:F8:2C:24:EC:6F:9D:9E:6D:67:3E:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P98s-GWSBtjm-Cwk7G-dnm1nPgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/63efc9-5e1c-4773-94a2-e60de555a8be/1/O4qs616MyAdG2Nq8zTpoenYIBzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/63efc9-5e1c-4773-94a2-e60de555a8be/1/P98s-GWSBtjm-Cwk7G-dnm1nPgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.200.0/24
Signature Algorithm: sha256WithRSAEncryption
71:1c:43:37:f6:f8:61:6c:d1:51:3b:53:5a:34:ba:6e:e2:1d:
a0:64:4e:36:06:5e:74:02:15:48:c9:75:73:70:be:33:a2:60:
23:b8:d6:07:67:72:75:3e:6f:cb:40:61:04:7a:47:6d:da:13:
bf:a9:99:ac:3a:1d:46:56:23:80:07:74:86:e1:8d:83:c9:49:
c7:25:86:b3:d0:1f:6d:1a:95:ee:dc:ec:cd:00:14:8e:81:27:
ef:7c:31:db:25:2c:4a:a9:1a:b4:ab:f8:ab:7c:a1:ad:7c:32:
88:e5:f5:24:76:59:b4:09:8d:83:8c:da:18:61:c7:45:27:56:
78:39:ee:03:17:37:ab:0d:48:2b:2c:89:27:2e:d9:14:53:1a:
b2:2b:1a:e5:c1:2f:e4:7b:17:38:47:34:df:ed:22:5a:b0:2e:
8c:dd:a1:00:67:3f:ba:d5:02:20:f7:cf:5d:a2:71:c9:f5:ae:
e1:7a:b8:64:68:ba:47:9e:6a:68:5b:42:f3:a6:7b:b3:36:91:
8c:b4:59:2e:58:c6:bc:f8:57:15:9f:a4:5b:88:cc:9b:47:9d:
a5:dd:a3:c8:86:e3:58:a4:73:37:b2:f7:e8:5d:77:8f:7c:d1:
db:6f:3e:d0:05:80:b6:50:31:49:8e:7f:07:9f:29:0b:31:de:
d5:80:16:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:56 2023 by rpki-client on console-fra.rpki-client.org