Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/aOwZo94uyVvxAVRk0o1fckFAmQc.roa
File: aOwZo94uyVvxAVRk0o1fckFAmQc.roa (raw, json)
Hash identifier: YkWHuygv/VV8qxLf3gQ2a9WuNorSzhz9KOpEGFLJ7AQ=
Subject key identifier: 68:EC:19:A3:DE:2E:C9:5B:F1:01:54:64:D2:8D:5F:72:41:40:99:07
Certificate issuer: /CN=ad39fa7cd1533da975cf399b9acffebfed26a9eb
Certificate serial: 0185708CC6F7795A4BAA59F55E95F07B6E4A
Authority key identifier: AD:39:FA:7C:D1:53:3D:A9:75:CF:39:9B:9A:CF:FE:BF:ED:26:A9:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTn6fNFTPal1zzmbms_-v-0mqes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/aOwZo94uyVvxAVRk0o1fckFAmQc.roa
Signing time: Mon 02 Jan 2023 03:35:52 +0000
ROA not before: Mon 02 Jan 2023 03:35:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59401
IP address blocks: 91.240.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c6:f7:79:5a:4b:aa:59:f5:5e:95:f0:7b:6e:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad39fa7cd1533da975cf399b9acffebfed26a9eb
Validity
Not Before: Jan 2 03:35:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=68ec19a3de2ec95bf1015464d28d5f7241409907
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d4:4e:20:d1:d8:35:ff:8b:b8:7f:cf:d4:8e:
f1:92:26:7c:62:05:b6:45:ef:81:a3:91:e1:74:89:
26:37:5b:78:e4:10:24:af:ff:71:28:03:e0:98:ed:
8c:25:f6:e0:44:8d:76:d1:f2:77:27:05:1b:5e:19:
b1:f4:5b:cd:3f:e0:02:58:6c:2c:8c:d8:12:5c:7c:
c5:53:65:2c:31:39:ff:4f:85:a1:c1:4f:91:da:40:
06:b8:1f:3c:0d:ff:4d:81:a4:c3:bd:fe:02:cf:d7:
04:cb:60:19:d9:78:53:36:b9:ae:e4:45:bf:59:68:
3e:96:b8:b1:33:a0:21:67:6e:13:d9:76:fc:8c:d4:
c9:eb:b2:df:44:f4:62:ed:d7:cb:fe:dd:df:cd:b1:
95:70:95:47:6b:68:ac:ec:2e:47:29:53:fc:1a:56:
58:b2:28:64:b9:ed:36:af:bd:76:d4:d0:6f:21:86:
e5:28:bf:bc:40:75:62:6d:a1:cb:3a:a3:62:c5:dd:
cd:3f:9b:90:11:db:56:20:97:7c:b4:d1:9b:5f:80:
93:6c:96:2e:21:4f:9a:21:a7:9a:99:c0:93:0b:9b:
4b:ee:e6:b3:97:f6:1e:a2:3e:9d:b6:68:00:3b:7f:
f4:c5:22:dc:94:b3:27:1d:eb:10:3c:cf:4c:f7:50:
c4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:EC:19:A3:DE:2E:C9:5B:F1:01:54:64:D2:8D:5F:72:41:40:99:07
X509v3 Authority Key Identifier:
keyid:AD:39:FA:7C:D1:53:3D:A9:75:CF:39:9B:9A:CF:FE:BF:ED:26:A9:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTn6fNFTPal1zzmbms_-v-0mqes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/aOwZo94uyVvxAVRk0o1fckFAmQc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/abb89f-09b9-44e8-8487-e31c0fdecd27/1/rTn6fNFTPal1zzmbms_-v-0mqes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.188.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:10:5e:a5:2a:4d:3d:36:7f:ba:fd:b1:03:50:80:eb:ff:54:
2e:42:b4:e1:e7:13:bb:df:dd:c5:77:7f:37:d9:55:5f:f2:68:
99:42:dd:cf:03:83:58:5d:c1:28:e1:4c:f3:da:4d:ae:78:27:
3e:7a:66:af:2c:72:88:f9:3d:63:4f:9c:80:aa:01:b2:94:7d:
53:ca:14:81:63:d0:9e:ac:a9:ff:28:15:82:b3:ca:24:f6:bc:
65:ce:39:68:71:aa:83:aa:c8:b7:2a:02:ca:f3:8b:d9:f6:e1:
2d:28:35:24:9b:bc:65:8d:66:73:e6:09:99:3a:6a:45:96:5d:
62:b9:3e:57:47:05:f1:cf:19:60:30:6c:85:4a:3b:63:41:dd:
ab:f7:ae:d4:ce:10:99:8d:79:39:1d:95:1c:db:b8:4d:45:59:
c8:17:2c:3b:f8:de:14:37:2a:c3:aa:cc:62:97:9e:88:28:12:
5a:47:59:52:91:c7:d1:a7:cf:9e:ca:37:7b:cf:5e:1f:78:d4:
fd:9e:6d:ff:1f:fb:97:5f:fb:51:88:8b:39:be:34:4a:12:3d:
ce:9d:38:03:dc:bd:bb:2b:3d:91:54:cb:75:2c:74:b5:51:f8:
52:04:cc:a5:04:64:e1:1f:16:b1:20:68:be:6c:e9:56:14:dd:
5a:3f:c3:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:55 2024 by rpki-client on console-fra.rpki-client.org