Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/O4MhV-EYONQBeVwv6cVI7Gir-ec.roa
File: O4MhV-EYONQBeVwv6cVI7Gir-ec.roa (raw, json)
Hash identifier: Lc9cCKEArSee0Cti8dNHfKsd8PQMhaPMDIku9HuZ0Ac=
Subject key identifier: 3B:83:21:57:E1:18:38:D4:01:79:5C:2F:E9:C5:48:EC:68:AB:F9:E7
Certificate issuer: /CN=812a6cdc5cb9ce9cfd950b3440d3083b788b95e6
Certificate serial: 018570C2E89BC3D33EEC1D12310669F825AD
Authority key identifier: 81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSps3Fy5zpz9lQs0QNMIO3iLleY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/O4MhV-EYONQBeVwv6cVI7Gir-ec.roa
Signing time: Mon 02 Jan 2023 04:34:59 +0000
ROA not before: Mon 02 Jan 2023 04:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 91.242.245.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:e8:9b:c3:d3:3e:ec:1d:12:31:06:69:f8:25:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812a6cdc5cb9ce9cfd950b3440d3083b788b95e6
Validity
Not Before: Jan 2 04:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b832157e11838d401795c2fe9c548ec68abf9e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:30:0f:25:92:0b:e5:0e:af:3e:31:6f:b3:27:
55:49:36:8f:9d:a7:ce:32:87:2c:06:06:29:1c:9c:
83:99:d0:fe:2f:f9:4d:d2:94:62:63:43:94:0d:ae:
3e:59:d3:c7:2a:4e:5e:6f:0e:65:79:0a:ba:6f:d4:
71:86:d1:fd:4a:bd:3f:f0:be:c8:b9:34:48:d9:92:
17:25:33:86:2b:49:f7:92:ad:b9:37:c6:16:4a:af:
b9:9d:fb:41:31:35:44:92:78:0b:32:bb:d1:56:26:
2c:7b:73:3e:f4:1b:cd:05:84:27:4a:23:b5:c2:17:
ef:97:c5:5c:35:6d:67:e7:61:0e:c7:ee:a5:54:0b:
b4:6d:90:06:2d:6c:8b:2a:30:67:75:07:fb:1e:cc:
8d:18:c8:a0:b8:c1:4d:80:1c:bc:23:69:82:8e:e8:
3f:58:39:ef:80:7c:f3:2c:9a:45:14:90:41:72:0f:
03:c7:f0:a7:ef:84:cf:fb:12:07:c2:68:2a:c1:8d:
86:a0:34:75:08:97:7d:11:92:9b:75:1e:51:d5:4d:
cf:d1:8e:af:a2:26:07:2b:4c:a1:4b:5c:4f:30:22:
c8:8e:b3:07:a1:54:09:d0:4b:f5:40:fc:f7:9b:20:
1a:9c:76:83:8e:d9:68:30:28:18:57:76:67:cc:2f:
5c:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:83:21:57:E1:18:38:D4:01:79:5C:2F:E9:C5:48:EC:68:AB:F9:E7
X509v3 Authority Key Identifier:
keyid:81:2A:6C:DC:5C:B9:CE:9C:FD:95:0B:34:40:D3:08:3B:78:8B:95:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSps3Fy5zpz9lQs0QNMIO3iLleY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/O4MhV-EYONQBeVwv6cVI7Gir-ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/f2daf4-2e9f-4921-82d8-fc42ae5ec1b5/1/gSps3Fy5zpz9lQs0QNMIO3iLleY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.245.0/24
Signature Algorithm: sha256WithRSAEncryption
88:1a:58:04:42:35:d6:a5:2f:a0:a9:18:4c:3d:0f:65:68:c7:
29:d7:e3:1e:86:9c:26:87:b4:93:81:b7:4c:ed:82:ee:80:98:
47:c8:aa:2f:a6:cf:77:1e:c4:5e:55:2a:94:23:9c:75:a8:6a:
0d:fa:34:1f:84:80:05:76:39:40:4f:57:ce:a5:ff:38:de:97:
96:82:3b:f9:a0:fa:e5:c8:a5:84:a3:5e:78:0e:75:b7:64:98:
57:77:06:36:76:d5:94:a6:17:e5:50:32:f4:2d:75:f2:04:7b:
e8:a2:73:ce:98:79:13:cb:0d:61:32:27:0f:47:03:df:a8:b8:
16:6a:f4:4d:46:b8:cc:90:6e:0d:db:aa:02:ea:b2:f7:a4:6d:
fd:49:94:f1:d1:22:57:46:d5:c5:d0:44:7f:15:75:53:56:59:
0a:8d:49:b3:df:bf:e3:e0:04:27:ae:37:85:e0:ed:be:56:d5:
a1:9f:25:14:37:0a:7f:df:80:eb:b6:ba:94:06:a8:75:97:f8:
8c:bd:b7:f6:34:95:d5:ae:14:72:90:2f:10:3f:c7:36:b0:e9:
49:0a:5e:6c:82:6b:90:fc:00:b6:00:bc:2b:d5:48:29:2c:9a:
1f:5a:2c:c6:dc:64:4d:06:73:bd:73:d7:7e:24:61:39:e0:01:
5e:e0:62:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:29 2023 by rpki-client on console-ams.rpki-client.org