Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/0d3032-bda4-4c6b-81c9-92416007158e/1/Ya6dYytJL_81vlNwdXGwNU4ohr0.roa
File: Ya6dYytJL_81vlNwdXGwNU4ohr0.roa (raw, json)
Hash identifier: Rg0kNiO1ImIg3v+97DKjdnaHE1WavRB8MTtcatG1j00=
Subject key identifier: 61:AE:9D:63:2B:49:2F:FF:35:BE:53:70:75:71:B0:35:4E:28:86:BD
Certificate issuer: /CN=c5b1182d31796fa63ec3c1d9b97cb6aaac34fdd9
Certificate serial: 01856F42B97EC5A8B50DD19363EC51DC58F3
Authority key identifier: C5:B1:18:2D:31:79:6F:A6:3E:C3:C1:D9:B9:7C:B6:AA:AC:34:FD:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xbEYLTF5b6Y-w8HZuXy2qqw0_dk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/0d3032-bda4-4c6b-81c9-92416007158e/1/Ya6dYytJL_81vlNwdXGwNU4ohr0.roa
Signing time: Sun 01 Jan 2023 21:35:21 +0000
ROA not before: Sun 01 Jan 2023 21:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44085
IP address blocks: 91.199.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:42:b9:7e:c5:a8:b5:0d:d1:93:63:ec:51:dc:58:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5b1182d31796fa63ec3c1d9b97cb6aaac34fdd9
Validity
Not Before: Jan 1 21:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61ae9d632b492fff35be53707571b0354e2886bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e9:9d:c8:58:0e:2c:4d:7f:df:a0:97:46:af:
2f:72:34:66:0a:1c:42:c6:c4:5c:74:eb:96:d1:4d:
de:bd:d0:20:a4:d8:d7:73:8c:49:cf:83:59:f0:8f:
32:67:d5:be:a7:68:3c:06:39:c9:7e:62:74:45:34:
07:95:20:33:17:3b:7e:1d:2a:6b:11:94:47:39:99:
bb:73:9c:bd:55:bb:c5:73:0d:30:5b:38:31:7f:37:
95:f4:cd:b6:ed:22:41:c8:ac:b2:41:3d:28:d9:be:
ae:bf:cf:2e:31:b5:65:12:05:7c:83:71:03:17:5e:
53:8c:b6:29:3b:0f:69:44:8b:f6:04:75:24:69:f5:
11:fd:cd:e9:a3:12:6f:f4:d4:b8:d2:ce:44:ae:f5:
60:5f:56:56:d0:d8:f8:6c:6a:37:89:2c:c5:bf:3f:
70:13:b6:2d:e4:97:91:8b:f5:f3:25:b5:39:6c:4a:
a2:e2:33:26:db:61:52:a5:2a:4e:61:d1:2b:de:82:
2f:e9:48:5e:be:a8:eb:53:b4:af:98:24:96:95:f1:
8c:3e:4f:25:d3:ff:69:6f:f9:8c:3e:ed:f7:bf:5d:
9d:d8:2e:76:98:87:a0:e7:1b:1d:86:84:29:dd:dd:
d3:75:76:15:df:a2:b4:5f:07:1c:b8:ca:9b:71:4a:
1c:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:AE:9D:63:2B:49:2F:FF:35:BE:53:70:75:71:B0:35:4E:28:86:BD
X509v3 Authority Key Identifier:
keyid:C5:B1:18:2D:31:79:6F:A6:3E:C3:C1:D9:B9:7C:B6:AA:AC:34:FD:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xbEYLTF5b6Y-w8HZuXy2qqw0_dk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0d3032-bda4-4c6b-81c9-92416007158e/1/Ya6dYytJL_81vlNwdXGwNU4ohr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/0d3032-bda4-4c6b-81c9-92416007158e/1/xbEYLTF5b6Y-w8HZuXy2qqw0_dk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.23.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:5f:a4:6c:48:69:17:21:9d:5d:49:23:2e:6c:5f:4d:21:cd:
0d:45:d8:94:be:f0:2a:e8:a6:6b:bc:35:d6:cd:dd:24:ed:6c:
b8:88:de:f0:6d:94:ec:83:78:e7:88:0d:6c:1f:c6:43:01:fe:
5b:a0:d3:66:2b:a2:a3:b9:34:70:b5:67:1f:02:94:a1:10:03:
a7:35:b6:65:53:10:50:b5:93:7b:ce:4b:70:6f:f5:13:41:9d:
18:d1:a7:0b:8b:8a:e1:6d:75:f4:b2:a0:a4:67:e6:be:3b:33:
17:b5:67:ec:d5:57:8c:67:ad:b3:d7:06:2c:b6:51:96:be:3c:
7c:1b:35:33:2b:a3:9f:47:dd:44:11:d9:b6:45:4c:e9:98:c5:
39:04:12:ac:59:90:e5:f3:53:62:5f:2f:7e:cf:c8:48:cb:25:
d2:c9:1f:6a:86:37:e4:4d:24:f7:9d:42:fd:99:9c:a9:eb:c8:
e9:53:cc:d3:63:33:c6:3b:ca:0a:10:bb:c8:27:25:c3:98:f9:
1a:17:a7:be:1e:31:cc:29:e7:ca:a8:84:cf:1c:2d:68:69:d5:
06:06:9a:fd:a0:53:90:80:08:17:2c:79:41:ff:05:aa:68:55:
be:54:09:cc:94:33:76:1e:a5:81:c7:51:f6:e0:93:fd:2e:51:
8f:5d:41:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:56 2024 by rpki-client on console-ams.rpki-client.org