Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/25237e-ce6a-4302-b6a4-b5405834f0c5/1/KIk5Cq5sKChJ-E5uTajYlvlSWG4.roa
File: KIk5Cq5sKChJ-E5uTajYlvlSWG4.roa (raw, json)
Hash identifier: hWRTubqsM57W3nFlJ2/HTXBTrRUXS1Rf5urZyDPiRMI=
Subject key identifier: 28:89:39:0A:AE:6C:28:28:49:F8:4E:6E:4D:A8:D8:96:F9:52:58:6E
Certificate issuer: /CN=01c2863a6438b3402752a4740e90ce42eb589129
Certificate serial: 01857042A0AFC0BD0A99D37452117D38AEE3
Authority key identifier: 01:C2:86:3A:64:38:B3:40:27:52:A4:74:0E:90:CE:42:EB:58:91:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AcKGOmQ4s0AnUqR0DpDOQutYkSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/25237e-ce6a-4302-b6a4-b5405834f0c5/1/KIk5Cq5sKChJ-E5uTajYlvlSWG4.roa
Signing time: Mon 02 Jan 2023 02:14:52 +0000
ROA not before: Mon 02 Jan 2023 02:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210628
IP address blocks: 91.209.175.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:42:a0:af:c0:bd:0a:99:d3:74:52:11:7d:38:ae:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01c2863a6438b3402752a4740e90ce42eb589129
Validity
Not Before: Jan 2 02:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2889390aae6c282849f84e6e4da8d896f952586e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:db:c2:85:84:22:c2:6f:ee:c3:d9:8e:0b:bf:
00:f6:b5:7a:f2:d9:66:62:7a:ff:cb:81:8a:c8:eb:
39:17:8f:4f:74:75:dc:17:ac:6b:62:1a:a1:3e:23:
91:3c:ed:e2:dc:84:07:64:72:98:68:db:07:f0:1a:
d8:78:49:36:35:74:b8:2b:29:d0:dc:11:ec:76:53:
34:f5:52:20:02:a8:0f:69:8f:85:26:04:59:8a:2e:
89:8e:e0:69:7d:da:71:14:d3:af:1f:4b:3c:84:50:
f9:72:df:25:82:e7:ba:fb:d4:14:7c:e7:31:bc:04:
21:57:7f:0a:fb:8b:ca:5b:b7:86:b7:48:64:8c:00:
6f:cf:e2:77:15:56:6f:65:f1:5c:7f:53:ba:55:2a:
f1:60:56:ca:10:eb:12:67:32:0e:73:8f:f4:a3:a6:
95:c4:8e:0b:50:91:c1:bc:e6:cd:77:e2:46:32:aa:
c1:18:48:bc:5d:58:d2:46:d1:01:66:e5:5d:29:24:
6f:25:96:f4:54:5a:a9:1e:ba:66:bf:f1:78:ef:31:
83:e5:e1:c2:0a:2d:72:40:66:29:40:4c:ef:e5:73:
d9:a9:3c:7e:b0:e4:a3:57:95:0c:14:9c:9c:d0:85:
2c:e8:b7:f3:7d:d2:7f:3c:5e:6f:ac:90:70:07:47:
a9:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:89:39:0A:AE:6C:28:28:49:F8:4E:6E:4D:A8:D8:96:F9:52:58:6E
X509v3 Authority Key Identifier:
keyid:01:C2:86:3A:64:38:B3:40:27:52:A4:74:0E:90:CE:42:EB:58:91:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AcKGOmQ4s0AnUqR0DpDOQutYkSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/25237e-ce6a-4302-b6a4-b5405834f0c5/1/KIk5Cq5sKChJ-E5uTajYlvlSWG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/25237e-ce6a-4302-b6a4-b5405834f0c5/1/AcKGOmQ4s0AnUqR0DpDOQutYkSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.175.0/24
Signature Algorithm: sha256WithRSAEncryption
41:39:3e:7e:71:dc:1f:f6:35:06:da:95:18:52:17:02:60:cb:
cc:93:e4:5c:b2:ae:a5:25:87:7c:c7:b1:5c:8e:f9:fb:b2:94:
05:7c:b6:68:36:ed:26:f2:65:53:a0:56:d9:ae:81:49:9d:71:
a2:ff:3c:46:1f:af:93:8a:be:b4:04:c3:a9:f6:00:64:66:d1:
51:7c:8e:c3:b6:62:e0:ff:b6:4b:db:9c:e8:98:ef:f0:51:26:
77:40:ab:57:40:99:bb:6a:b0:07:90:7a:78:f1:ab:a5:b5:18:
27:0d:a9:3b:bf:5a:7c:50:1e:50:5d:c7:39:71:01:6f:82:e0:
61:76:7a:81:4b:70:20:d0:68:21:31:81:b0:46:d5:e6:b0:8b:
bf:96:62:65:42:72:d1:6c:10:07:35:7b:67:d6:53:4d:80:37:
95:57:95:d0:4b:5b:59:41:6c:b3:8f:8e:0e:9d:b6:f2:50:05:
a3:82:83:9b:e8:02:71:de:18:e6:8e:10:d4:d3:b2:4e:eb:e4:
29:ea:ae:6f:3f:a2:46:03:4f:34:94:1c:b0:27:1d:8a:aa:4f:
d5:14:47:db:91:b9:4d:b3:51:ec:3d:83:58:d6:10:5d:04:ce:
95:de:7a:1f:bc:46:8c:4b:10:48:8a:29:b8:bc:4e:42:c6:53:
ca:33:46:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 11:40:27 2024 by rpki-client on console-fra.rpki-client.org