Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/z57hvcnsrYNlFYa9Y9qHErc-BT4.roa
File: z57hvcnsrYNlFYa9Y9qHErc-BT4.roa (raw, json)
Hash identifier: Gb7IbZpDLSN8GcPOX8SlhzwlZFU4tyLQfm2Ln0MmeXI=
Subject key identifier: CF:9E:E1:BD:C9:EC:AD:83:65:15:86:BD:63:DA:87:12:B7:3E:05:3E
Certificate issuer: /CN=473469a966f4df3cf28171d87c74780fc472f979
Certificate serial: 01872C190A0622EEF28EA36644E0C7B3D440
Authority key identifier: 47:34:69:A9:66:F4:DF:3C:F2:81:71:D8:7C:74:78:0F:C4:72:F9:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RzRpqWb03zzygXHYfHR4D8Ry-Xk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/z57hvcnsrYNlFYa9Y9qHErc-BT4.roa
Signing time: Wed 29 Mar 2023 06:40:51 +0000
ROA not before: Wed 29 Mar 2023 06:40:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43310
IP address blocks: 91.197.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:2c:19:0a:06:22:ee:f2:8e:a3:66:44:e0:c7:b3:d4:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=473469a966f4df3cf28171d87c74780fc472f979
Validity
Not Before: Mar 29 06:40:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cf9ee1bdc9ecad83651586bd63da8712b73e053e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:f4:7d:1f:4a:14:9e:97:e1:38:2a:b2:dd:97:
3e:59:92:4d:5b:c5:ec:2e:25:8a:64:38:e9:8b:0b:
da:5e:56:53:0a:14:c8:ac:3b:bb:5a:55:13:ba:8f:
44:f0:57:3a:81:6c:10:d5:45:1f:76:0b:a2:a1:a1:
7b:18:01:91:23:f4:1b:0c:86:d3:29:a6:2e:f4:70:
8f:d1:5d:a8:88:b3:17:e1:54:fc:aa:5d:dd:df:87:
26:7e:86:a2:c4:c1:31:4f:6f:bf:53:50:e3:5a:1f:
75:a5:77:ad:21:ad:19:65:bb:fb:d0:29:db:a1:1e:
6e:fc:f8:f0:77:f2:80:cb:e3:6e:ff:7b:cc:26:28:
f2:f4:e0:f9:08:18:ce:a5:ed:5b:22:7c:71:36:c4:
0d:38:a6:2e:a3:82:0d:0e:25:ed:e7:83:5c:78:a7:
5e:e5:74:6f:31:a1:43:af:3d:95:2e:b4:41:b4:cf:
e5:c6:63:b5:1f:74:08:c6:ce:8f:6e:5e:0e:36:05:
3f:27:f6:00:a4:80:69:e9:e0:70:e8:a1:5d:cf:ad:
b0:63:99:20:61:f8:f1:5d:7a:15:ab:3a:a9:b1:c0:
37:ce:68:15:cc:1b:12:b7:7f:8f:57:91:d8:4a:6e:
01:3b:09:60:39:e8:5e:94:3c:9c:ad:da:6c:aa:14:
54:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:9E:E1:BD:C9:EC:AD:83:65:15:86:BD:63:DA:87:12:B7:3E:05:3E
X509v3 Authority Key Identifier:
keyid:47:34:69:A9:66:F4:DF:3C:F2:81:71:D8:7C:74:78:0F:C4:72:F9:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RzRpqWb03zzygXHYfHR4D8Ry-Xk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/z57hvcnsrYNlFYa9Y9qHErc-BT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1efbe6-a014-417c-9685-583920f5f05b/1/RzRpqWb03zzygXHYfHR4D8Ry-Xk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.7.0/24
Signature Algorithm: sha256WithRSAEncryption
20:6c:f8:8a:cc:12:17:43:ba:6b:b9:27:e3:7c:95:c6:ac:c9:
15:87:ee:5e:3e:9f:91:95:c1:da:c2:2b:a7:63:b7:18:cc:8b:
8f:88:13:fa:d4:a2:75:20:8d:9e:40:73:de:34:72:9c:98:6b:
a9:59:a6:85:16:d2:f6:f5:d4:5a:49:5b:a2:b4:c5:ce:39:4a:
03:49:23:bf:07:4c:36:fc:05:ca:60:7c:6e:d5:c0:39:17:14:
50:3f:20:22:ea:c1:cf:1c:a5:09:dd:85:a6:ec:0c:f2:c6:b2:
0d:91:87:bf:48:24:75:91:1f:f8:30:d7:65:59:66:9f:33:ee:
cb:02:22:52:00:eb:c6:aa:5d:a6:bc:4c:e0:bb:85:db:0e:3e:
f1:29:54:47:18:0e:99:43:43:06:c1:be:ed:41:66:b8:b9:9e:
66:e5:ca:ae:80:aa:2b:1d:1f:27:d8:2b:ff:ea:d1:cf:8f:56:
97:02:6c:80:44:07:a6:b4:90:d6:92:a6:6e:16:80:26:b5:a6:
73:79:98:9e:50:dc:ed:c4:ae:c5:a6:ae:a2:1a:03:e9:cf:1f:
71:ca:17:2c:0e:80:5c:dd:4f:cc:33:1d:51:06:cf:8c:4a:8b:
0d:74:90:74:7e:61:4c:b3:c7:96:0b:d6:bb:ea:88:91:4d:40:
8c:7b:ac:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:02 2024 by rpki-client on console-ams.rpki-client.org