Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/sANenLFDxUY9Nqcx8ipeTvmkkKU.roa
File: sANenLFDxUY9Nqcx8ipeTvmkkKU.roa (raw, json)
Hash identifier: 6FAJvbvJclvNro/Y5MLit9BWaFkhf/Ijp+RXcLZpuJ0=
Subject key identifier: B0:03:5E:9C:B1:43:C5:46:3D:36:A7:31:F2:2A:5E:4E:F9:A4:90:A5
Certificate issuer: /CN=00cc4d5088db71e218777d976d0aadc498c46cfd
Certificate serial: 01856FD516668FB87010FFC88D13833613BF
Authority key identifier: 00:CC:4D:50:88:DB:71:E2:18:77:7D:97:6D:0A:AD:C4:98:C4:6C:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AMxNUIjbceIYd32XbQqtxJjEbP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/sANenLFDxUY9Nqcx8ipeTvmkkKU.roa
Signing time: Mon 02 Jan 2023 00:15:13 +0000
ROA not before: Mon 02 Jan 2023 00:15:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197610
IP address blocks: 91.223.149.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:16:66:8f:b8:70:10:ff:c8:8d:13:83:36:13:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=00cc4d5088db71e218777d976d0aadc498c46cfd
Validity
Not Before: Jan 2 00:15:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0035e9cb143c5463d36a731f22a5e4ef9a490a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:55:6b:ec:42:b0:47:ce:e1:e4:48:a5:ec:1f:
29:48:e8:d6:ba:ff:a7:ba:29:d7:1a:20:c4:a9:75:
6f:95:69:3f:05:64:5f:59:ce:49:4e:4e:18:3e:12:
c3:07:13:08:10:51:c1:89:47:84:25:f6:7c:7e:f3:
06:7b:d5:3c:08:cb:96:6c:68:6a:f9:03:31:74:5d:
a6:ae:14:38:cb:42:65:62:8e:8c:26:24:93:e3:b8:
0b:51:ec:fa:79:6b:31:60:6d:65:b9:1c:a8:71:41:
47:2d:7b:0e:f6:43:6b:5e:c1:ff:97:4e:f0:28:e4:
6a:69:c1:e4:f5:a5:c5:cf:bb:09:3f:9f:e3:96:6a:
ce:64:5c:aa:df:c6:dc:06:d6:31:a0:0e:ff:c2:ef:
da:e0:a2:d4:7e:b5:2c:0a:6f:02:c4:12:e7:5e:be:
c6:e1:f3:55:8b:a9:16:1a:c8:f5:c5:4c:ce:2c:ec:
ac:27:87:71:e7:b8:79:e6:57:f2:fe:db:f6:b3:fa:
2a:e7:77:42:5b:69:61:f6:4a:79:f5:57:8e:9d:b1:
6e:24:69:d6:60:12:a2:f8:13:f0:f8:69:a1:30:00:
0e:70:1d:60:27:ea:be:9f:0e:8b:9f:47:a6:d1:11:
8a:69:29:04:37:d4:c8:06:56:f5:15:ef:d4:81:82:
b2:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:03:5E:9C:B1:43:C5:46:3D:36:A7:31:F2:2A:5E:4E:F9:A4:90:A5
X509v3 Authority Key Identifier:
keyid:00:CC:4D:50:88:DB:71:E2:18:77:7D:97:6D:0A:AD:C4:98:C4:6C:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AMxNUIjbceIYd32XbQqtxJjEbP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/sANenLFDxUY9Nqcx8ipeTvmkkKU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9c73ff-6642-4b33-b564-a2381c36c054/1/AMxNUIjbceIYd32XbQqtxJjEbP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.149.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:08:4a:1c:40:35:85:c4:18:2a:d5:1c:7d:f0:df:7b:aa:2d:
56:a0:c2:e3:11:0b:3a:e6:74:f6:3f:1d:ab:4b:09:03:76:dd:
2e:6e:61:11:75:ea:6d:b6:56:b5:e3:95:b0:58:44:91:71:7e:
54:d8:31:de:ae:ac:0c:76:d2:14:93:53:8e:15:b7:26:df:77:
ac:a8:05:b0:ee:f1:1d:d5:c1:bc:dd:70:9b:ff:30:f4:3c:d5:
9e:9b:eb:b5:76:6e:09:64:c9:c1:fc:2e:d1:64:b9:d8:05:a9:
ee:a1:02:a4:6d:ea:57:e0:d0:82:0d:a0:b0:e8:18:09:29:15:
38:3e:bb:b0:a5:05:b1:dd:a6:fd:02:b2:41:3b:3d:b6:8c:bf:
8b:99:45:0b:6e:7a:7a:83:bb:3f:fd:0e:eb:f4:7d:75:e4:76:
b8:3b:84:b6:57:d9:db:0f:ea:47:91:90:71:4a:1f:7e:78:3d:
2f:f6:5f:bd:c1:e6:df:cc:2f:c3:dc:57:f1:e2:2f:d0:cb:36:
fd:72:41:30:2a:89:84:3e:23:ce:d6:7d:28:09:58:06:5a:82:
3d:50:49:1b:08:15:0d:29:9c:e2:4d:1c:5f:19:fd:62:35:aa:
47:79:12:be:f9:00:c4:d3:97:8d:95:81:52:bb:cf:08:18:87:
b5:76:37:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 13:11:47 2024 by rpki-client on console-ams.rpki-client.org