Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/xViQhQ1OOfgoJ8n1hL_ZEG_Rap0.roa
File: xViQhQ1OOfgoJ8n1hL_ZEG_Rap0.roa (raw, json)
Hash identifier: yg/tgE+f1uP9UPluRs7i3H1PWfUBad1c0cqRVkdv+G4=
Subject key identifier: C5:58:90:85:0D:4E:39:F8:28:27:C9:F5:84:BF:D9:10:6F:D1:6A:9D
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0189117E4E3B9660C28BC6B52D77D2767720
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/xViQhQ1OOfgoJ8n1hL_ZEG_Rap0.roa
Signing time: Sat 01 Jul 2023 12:47:17 +0000
ROA not before: Sat 01 Jul 2023 12:47:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3257
IP address blocks: 91.92.35.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:11:7e:4e:3b:96:60:c2:8b:c6:b5:2d:77:d2:76:77:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: Jul 1 12:47:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c55890850d4e39f82827c9f584bfd9106fd16a9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:9b:90:7e:4f:23:9c:ac:45:72:e0:e4:1e:1e:
32:d7:1c:03:46:c1:b4:9e:2a:af:ab:71:2e:c8:c8:
da:c8:ca:8b:ed:54:16:13:38:41:66:f5:fc:34:d9:
ff:1e:0f:5c:19:d9:67:de:b1:d7:b6:44:68:95:5e:
26:7c:8d:17:37:c8:42:56:ff:f0:81:7e:5a:9b:74:
54:6b:3d:e3:eb:6d:ea:71:8b:51:9e:5d:71:c6:36:
00:fa:60:07:08:05:90:ca:a0:b8:73:83:a1:32:02:
7b:c0:81:9d:b5:48:65:7f:04:b8:c0:49:0f:0a:1f:
48:5e:ab:9e:9c:6c:d4:fd:88:b1:4b:b4:d2:1e:a0:
a3:50:7a:da:4f:a3:64:08:a4:b4:bd:86:46:fc:b5:
e5:eb:d0:39:e4:5b:7a:d3:04:29:50:49:ec:dc:49:
93:8f:24:a2:18:d8:bd:31:97:f9:78:33:a5:45:bd:
17:fd:14:6c:b6:39:95:83:8b:62:af:10:49:01:db:
26:f5:8f:a7:f5:3e:bf:d3:eb:fa:06:9b:6f:7b:f1:
92:d3:67:16:b2:f8:fd:25:28:aa:e0:71:b9:46:71:
68:2b:1e:02:2c:02:11:c7:86:e2:ba:7b:1e:31:bb:
f0:5d:60:0b:0e:69:59:10:21:69:90:84:9a:85:ef:
ec:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:58:90:85:0D:4E:39:F8:28:27:C9:F5:84:BF:D9:10:6F:D1:6A:9D
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/xViQhQ1OOfgoJ8n1hL_ZEG_Rap0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.92.35.0/24
Signature Algorithm: sha256WithRSAEncryption
84:4d:c6:05:53:31:49:ac:89:80:fa:f1:ab:94:1d:24:8d:90:
81:3a:ba:14:4e:c4:33:03:34:19:28:26:8a:9b:ce:aa:9d:e7:
4f:10:90:c9:1e:e6:02:55:f0:10:00:84:80:7e:5e:f4:7b:ff:
31:ef:7a:68:23:57:10:2e:82:e3:20:fe:c3:69:56:81:64:d6:
6a:54:98:8c:d7:1f:3f:a1:bf:41:1e:e2:7b:70:be:2f:5b:ee:
ff:fa:56:7a:8c:61:15:8d:d1:11:86:91:41:21:39:6c:b8:bd:
fb:91:97:31:ae:59:a7:85:4a:6e:63:5f:71:da:90:eb:8a:2c:
d2:79:bb:3c:a6:a4:80:9f:20:c8:8b:a7:c5:6b:f4:a2:52:80:
a7:9b:db:c1:35:88:40:2c:9a:2a:50:d1:d5:d8:b7:60:d6:e2:
c7:cd:6f:bb:0a:2a:82:55:f2:31:fa:87:8f:ba:99:4d:13:a9:
02:0a:56:70:b3:44:54:da:17:bf:8b:f2:97:d5:df:cb:bc:02:
6e:41:bd:65:73:39:38:05:fd:2e:c8:0c:b5:63:8c:e8:85:a0:
3b:41:43:bd:c0:60:a8:d9:68:6e:32:ec:cf:19:38:4f:d4:19:
80:6c:c6:3b:d3:a4:b9:7d:a2:46:af:c2:64:8d:da:72:0d:d6:
89:d8:02:72
-----BEGIN CERTIFICATE-----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Generated at Mon Dec 4 16:51:33 2023 by rpki-client on console-fra.rpki-client.org