Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/70e69c-dc4e-4c96-89df-f762526307e8/1/7TKlSM-UM8rdp2BTGqNruiLRi9M.roa
File: 7TKlSM-UM8rdp2BTGqNruiLRi9M.roa (raw, json)
Hash identifier: Nibvq2I4BPrM6BQe4WHBpUplO2YoCWvmXjkC6gP0Nxo=
Subject key identifier: ED:32:A5:48:CF:94:33:CA:DD:A7:60:53:1A:A3:6B:BA:22:D1:8B:D3
Certificate issuer: /CN=fd8ec3435380e8ae15fc81cddcc94cee67d6b390
Certificate serial: 018571B0D4C6475438EEE2290A5E9C135654
Authority key identifier: FD:8E:C3:43:53:80:E8:AE:15:FC:81:CD:DC:C9:4C:EE:67:D6:B3:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_Y7DQ1OA6K4V_IHN3MlM7mfWs5A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/70e69c-dc4e-4c96-89df-f762526307e8/1/7TKlSM-UM8rdp2BTGqNruiLRi9M.roa
Signing time: Mon 02 Jan 2023 08:54:52 +0000
ROA not before: Mon 02 Jan 2023 08:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56998
IP address blocks: 91.229.184.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:d4:c6:47:54:38:ee:e2:29:0a:5e:9c:13:56:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd8ec3435380e8ae15fc81cddcc94cee67d6b390
Validity
Not Before: Jan 2 08:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ed32a548cf9433cadda760531aa36bba22d18bd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e6:45:f0:4a:3b:91:ad:dd:c3:2e:64:cd:32:
1a:eb:e7:88:06:e9:e3:b3:0f:46:67:52:07:a0:9e:
a7:91:26:42:06:ae:f9:e3:33:bd:da:95:0c:57:22:
16:13:6d:46:17:cc:30:02:a2:e3:bc:78:6a:ad:a5:
65:c4:23:9f:6b:36:27:e5:e6:27:0e:4b:c6:68:4c:
fd:7a:ec:b5:6b:72:4f:a8:ea:dc:4a:e3:77:09:d7:
1d:5e:9e:17:11:f5:8b:92:9b:c5:dd:4a:74:9f:f6:
1c:6b:13:71:21:41:e4:8a:cf:ec:4b:85:b7:58:5e:
08:c0:df:c4:9a:6f:6b:a1:90:93:77:0a:a6:fd:fa:
c8:7b:67:b6:c1:61:bb:d2:bd:54:43:dd:ac:86:c5:
da:55:e5:d9:b8:7a:08:bd:4c:a0:a0:18:fe:82:15:
b1:24:c9:65:05:a0:90:4e:b8:46:8a:37:59:c0:b4:
c2:15:63:c5:d8:88:07:e7:ee:fa:fe:30:a1:2f:f7:
8a:70:e9:dc:cf:88:68:2c:69:66:56:18:24:25:0a:
3e:d6:54:d0:78:54:e0:fb:d2:36:54:c0:2f:5e:66:
c3:d5:12:46:8e:5e:e8:4d:69:c7:02:96:be:e7:ee:
2a:4e:2b:85:27:16:33:97:9a:c0:e2:8f:b2:77:2d:
50:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:32:A5:48:CF:94:33:CA:DD:A7:60:53:1A:A3:6B:BA:22:D1:8B:D3
X509v3 Authority Key Identifier:
keyid:FD:8E:C3:43:53:80:E8:AE:15:FC:81:CD:DC:C9:4C:EE:67:D6:B3:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_Y7DQ1OA6K4V_IHN3MlM7mfWs5A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/70e69c-dc4e-4c96-89df-f762526307e8/1/7TKlSM-UM8rdp2BTGqNruiLRi9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/70e69c-dc4e-4c96-89df-f762526307e8/1/_Y7DQ1OA6K4V_IHN3MlM7mfWs5A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.184.0/24
Signature Algorithm: sha256WithRSAEncryption
66:67:be:b4:39:f8:ce:af:fb:24:cb:53:3d:ef:ee:2b:6b:4c:
77:50:c3:1c:d8:50:58:62:88:74:60:0c:ca:c7:e5:52:f9:38:
e7:1a:7e:0b:f3:88:a5:68:a3:00:c4:d8:38:37:8b:91:0c:69:
a3:05:ad:56:a6:72:c1:88:d8:ec:a8:35:08:64:cb:b6:82:34:
05:07:a3:e6:58:fd:19:05:05:87:86:48:ee:da:3c:aa:8f:00:
02:d3:53:d9:72:69:7f:34:32:aa:a2:dd:b5:46:88:fc:f3:d4:
f6:18:0d:b9:b9:56:b4:bb:8a:23:fb:b7:63:d0:fd:b0:32:03:
6d:ea:1f:21:f7:d0:b7:d5:6c:65:2e:64:8c:ff:d4:37:c4:50:
7d:52:a9:35:9e:25:a8:a2:70:1f:68:c8:82:fa:40:a6:05:8c:
34:6c:6d:46:d0:96:40:0e:84:48:d0:a2:66:6f:ea:6c:9e:a5:
60:0e:57:95:3f:52:ef:fc:7e:9e:0a:aa:32:2c:e4:db:0b:ef:
ac:33:ba:b8:f7:a7:81:9c:41:d9:0c:eb:e6:a1:b2:9a:17:0e:
e3:d5:d2:c2:e9:db:76:10:de:a2:91:f6:00:18:96:73:f3:71:
d8:ae:41:5b:6b:98:3d:d9:82:d7:80:96:13:bd:6e:41:58:11:
9b:dc:b3:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:00 2024 by rpki-client on console-ams.rpki-client.org