Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/_ksaJA6r4dYHgW9uAFBdhNqkgos.roa
File: _ksaJA6r4dYHgW9uAFBdhNqkgos.roa (raw, json)
Hash identifier: 7p2QZJtr5OpIkrliHYJ5bQ9COJigpGs8zUmHfN7Gtto=
Subject key identifier: FE:4B:1A:24:0E:AB:E1:D6:07:81:6F:6E:00:50:5D:84:DA:A4:82:8B
Certificate issuer: /CN=b948510ae41ab856779ac186f0470991f5a2a50f
Certificate serial: 01856C53AD8DD6DEC517221AA0458B09D948
Authority key identifier: B9:48:51:0A:E4:1A:B8:56:77:9A:C1:86:F0:47:09:91:F5:A2:A5:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUhRCuQauFZ3msGG8EcJkfWipQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/_ksaJA6r4dYHgW9uAFBdhNqkgos.roa
Signing time: Sun 01 Jan 2023 07:55:01 +0000
ROA not before: Sun 01 Jan 2023 07:55:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47792
IP address blocks: 91.206.206.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:ad:8d:d6:de:c5:17:22:1a:a0:45:8b:09:d9:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b948510ae41ab856779ac186f0470991f5a2a50f
Validity
Not Before: Jan 1 07:55:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe4b1a240eabe1d607816f6e00505d84daa4828b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:64:18:a5:f4:2a:b5:83:42:7d:83:23:f0:cb:
af:27:33:61:20:f3:c9:8e:76:2a:68:87:64:68:00:
d5:94:2a:65:e7:2c:dc:e9:1b:ed:23:d7:a0:91:db:
79:c4:f7:b7:f7:07:e3:49:f5:18:77:86:fc:6e:da:
61:ca:75:9a:a6:63:ee:6c:fa:91:31:e4:21:03:39:
93:1f:49:ee:b7:25:c5:c3:6c:20:33:ea:2f:40:e1:
6b:ab:92:a9:73:1b:c9:22:7c:19:bb:74:a3:26:ac:
18:dd:9a:da:fb:5a:61:7e:40:43:52:79:82:e5:db:
fa:db:d8:07:7a:f9:e6:fd:1b:8d:a1:e3:1e:b9:ae:
1a:16:bd:aa:1c:5d:02:04:fb:a0:14:d4:8b:39:45:
83:ff:43:58:9f:c4:5b:96:bc:6c:30:db:a0:d4:6e:
8f:c4:a1:c4:bd:6b:ea:04:c0:10:47:27:8e:17:f3:
46:22:ac:4d:21:98:ba:15:c3:42:c9:64:9d:ed:a9:
d7:3d:a7:fb:1d:ee:a3:79:2f:c5:bd:f3:14:8e:1b:
ef:83:65:66:7b:cf:df:ff:98:1f:8a:d0:f5:d3:2f:
18:55:13:c8:3e:f7:fc:95:c9:5e:79:a8:8e:28:e0:
f4:ea:fe:48:31:c8:74:72:c7:2f:c8:8c:c1:17:65:
b9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:4B:1A:24:0E:AB:E1:D6:07:81:6F:6E:00:50:5D:84:DA:A4:82:8B
X509v3 Authority Key Identifier:
keyid:B9:48:51:0A:E4:1A:B8:56:77:9A:C1:86:F0:47:09:91:F5:A2:A5:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUhRCuQauFZ3msGG8EcJkfWipQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/_ksaJA6r4dYHgW9uAFBdhNqkgos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5aa303-59f7-4f99-907d-83a25a94c77f/1/uUhRCuQauFZ3msGG8EcJkfWipQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.206.0/23
Signature Algorithm: sha256WithRSAEncryption
77:6e:46:9a:9a:b7:a5:cf:1e:a7:67:ca:e1:2a:4f:bc:42:56:
a8:d7:1e:fb:bd:6d:9d:6f:50:e0:57:99:83:3a:76:d8:22:3c:
31:ec:1d:bf:4d:c6:82:01:e0:0d:bd:b0:16:50:e2:2c:43:57:
c6:e4:ce:b3:bd:33:0d:cf:2c:e1:39:04:28:31:83:81:c2:b4:
42:a3:1e:a1:c6:3e:e3:0c:4f:0f:11:47:40:dd:7c:16:25:8b:
41:61:b4:81:78:87:82:36:5a:69:7b:83:b3:b7:bd:d3:56:bc:
33:97:f2:3a:2e:49:d4:45:e0:dc:07:a6:25:9d:c0:36:27:a7:
51:e9:c0:a2:ca:09:84:f6:43:d6:0c:95:07:67:09:61:a0:0c:
96:26:11:d3:6c:11:9b:07:f5:ed:c4:d2:d9:42:e5:11:48:0f:
76:99:1e:d1:83:dd:57:be:f3:79:47:7f:86:31:72:ab:c5:c6:
68:8b:3b:03:12:ed:71:87:16:85:e0:03:2d:28:af:7d:77:89:
18:b9:5f:1c:25:89:5a:18:64:7b:8a:0f:f5:fa:19:65:22:b1:
fa:e2:45:c8:0c:ff:bc:57:b0:eb:39:41:85:c4:e9:f1:21:6e:
33:a8:4e:c1:7b:8a:ef:9c:de:5e:70:5d:cf:5b:33:1d:4b:41:
89:fa:e3:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:17 2024 by rpki-client on console-ams.rpki-client.org