Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/XzAmXGdRkyy73e-C-JY4VkPO7Dc.roa
File: XzAmXGdRkyy73e-C-JY4VkPO7Dc.roa (raw, json)
Hash identifier: NCvR1og/TSW9RvkWd5GFy0fikrolGDsK8KZ7a1W4dX4=
Subject key identifier: 5F:30:26:5C:67:51:93:2C:BB:DD:EF:82:F8:96:38:56:43:CE:EC:37
Certificate issuer: /CN=a1411f56875b4cb7a58cee6cb607ee251cbdf980
Certificate serial: 01870A39189163C0065C3AE128005BACC13F
Authority key identifier: A1:41:1F:56:87:5B:4C:B7:A5:8C:EE:6C:B6:07:EE:25:1C:BD:F9:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oUEfVodbTLeljO5stgfuJRy9-YA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/XzAmXGdRkyy73e-C-JY4VkPO7Dc.roa
Signing time: Wed 22 Mar 2023 16:48:46 +0000
ROA not before: Wed 22 Mar 2023 16:48:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25512
IP address blocks: 91.234.162.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0a:39:18:91:63:c0:06:5c:3a:e1:28:00:5b:ac:c1:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1411f56875b4cb7a58cee6cb607ee251cbdf980
Validity
Not Before: Mar 22 16:48:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5f30265c6751932cbbddef82f896385643ceec37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:f8:99:74:6a:1b:2e:bf:da:c7:bc:fb:68:48:
83:21:39:07:1e:c2:68:3b:98:76:72:5e:37:f7:99:
d2:4d:a2:66:85:54:a3:18:12:a8:ce:7d:c9:72:20:
bb:d2:bf:a8:7a:50:72:32:68:50:1f:4e:d6:51:42:
b7:c4:a6:c4:93:9e:a8:7a:1d:d1:d9:27:a9:d2:ce:
32:54:a1:f6:ce:77:5e:57:04:98:fc:e0:01:44:27:
94:d5:05:fc:6f:22:d0:0f:03:02:43:9c:87:46:75:
66:ae:35:13:7a:93:64:4f:b1:4f:79:02:97:85:16:
76:9b:86:63:dd:1f:b5:66:b6:33:54:6f:02:e3:d0:
0e:ae:f3:0e:e8:56:12:bb:3e:59:5e:04:c4:21:89:
19:e4:6f:60:9b:ae:5a:e1:69:13:e4:07:05:8e:d7:
b0:3f:67:d6:ac:8d:4d:1e:61:16:d7:18:78:40:bc:
0e:1e:e7:7e:c1:34:ad:b5:03:fb:4f:f8:b1:dc:d2:
d0:2a:ec:be:47:1c:9c:d0:57:da:a7:d9:30:ba:3d:
09:8a:3e:8e:c8:02:95:64:95:e1:a7:7a:de:ef:32:
c0:6b:f5:a5:a1:57:2c:8f:4c:4f:52:b0:ed:1d:23:
97:ae:bd:41:09:be:8f:6c:9d:e5:36:5e:ad:46:2a:
e2:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:30:26:5C:67:51:93:2C:BB:DD:EF:82:F8:96:38:56:43:CE:EC:37
X509v3 Authority Key Identifier:
keyid:A1:41:1F:56:87:5B:4C:B7:A5:8C:EE:6C:B6:07:EE:25:1C:BD:F9:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oUEfVodbTLeljO5stgfuJRy9-YA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/XzAmXGdRkyy73e-C-JY4VkPO7Dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/c98b87-1857-44bd-8b0c-78d833e4146a/1/oUEfVodbTLeljO5stgfuJRy9-YA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.162.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:8c:58:9f:3d:27:0c:7f:5f:a5:9b:42:da:17:90:57:f1:2b:
01:93:7c:65:83:4e:08:2c:35:83:3f:f9:19:10:ce:3c:fc:c4:
82:97:ca:0e:38:25:37:39:27:a1:a9:17:be:73:d6:fe:a8:d9:
74:2b:f4:ad:24:85:4d:c9:9c:a6:21:97:32:21:35:95:fa:06:
ba:c2:c6:aa:e3:90:95:c8:80:7a:aa:82:d7:ad:93:8c:6c:5c:
58:f5:93:66:ac:04:62:1a:e6:46:d1:ce:3d:9e:44:60:9d:71:
3c:b8:41:32:be:c9:a9:e7:8d:21:43:50:f1:04:a2:50:90:b7:
7b:d4:b0:6b:39:14:6b:02:82:43:ab:ac:75:17:4b:f1:13:cb:
68:72:e6:f1:ca:24:ab:53:8b:3c:fd:71:23:07:b6:94:a8:18:
f8:e2:b2:1e:2b:d2:d6:9f:91:3b:2d:c6:64:98:77:5c:8c:ae:
bf:4f:a9:98:01:07:1d:fa:b1:10:cd:02:44:7e:0b:47:f9:e1:
c7:9d:31:31:d3:6e:ba:4d:58:2e:c6:55:4c:14:ac:3a:e8:77:
2d:c3:1b:8d:25:65:dd:a3:44:d1:e3:96:64:96:ea:f5:2b:33:
c2:6e:e3:a0:91:19:74:d4:a6:51:74:83:2f:4c:5e:e1:a7:a4:
34:85:c1:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:10 2024 by rpki-client on console-fra.rpki-client.org