Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/XneGXI-IpynGXvK0czCOuaA2PnY.roa
File: XneGXI-IpynGXvK0czCOuaA2PnY.roa (raw, json)
Hash identifier: lWlx0gr69M4M9kzTBZCgkMUYqw7GJF0oWZUZfITEtpw=
Subject key identifier: 5E:77:86:5C:8F:88:A7:29:C6:5E:F2:B4:73:30:8E:B9:A0:36:3E:76
Certificate issuer: /CN=16979d37da016abd13279270ba55d6b3c2960578
Certificate serial: 018570B9882BC9FF44AA39044E4443776A1C
Authority key identifier: 16:97:9D:37:DA:01:6A:BD:13:27:92:70:BA:55:D6:B3:C2:96:05:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FpedN9oBar0TJ5JwulXWs8KWBXg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/XneGXI-IpynGXvK0czCOuaA2PnY.roa
Signing time: Mon 02 Jan 2023 04:24:45 +0000
ROA not before: Mon 02 Jan 2023 04:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15576
IP address blocks: 91.198.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b9:88:2b:c9:ff:44:aa:39:04:4e:44:43:77:6a:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16979d37da016abd13279270ba55d6b3c2960578
Validity
Not Before: Jan 2 04:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e77865c8f88a729c65ef2b473308eb9a0363e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:1f:85:bb:77:c3:61:ba:f9:c0:ae:7c:d7:3b:
0b:c0:39:6c:0c:90:97:98:df:da:eb:2f:8a:fa:d5:
01:14:fa:c5:6d:9a:d5:de:b7:93:4f:ea:4c:66:ff:
46:b9:e1:c0:36:36:b3:10:d2:bd:bd:f6:5d:23:ec:
75:31:e1:c8:b4:2b:99:ef:6e:89:d6:99:b4:37:75:
92:65:af:6b:d3:ef:c2:18:48:07:07:b4:4d:2b:4a:
5f:23:c7:d2:60:51:9c:c8:69:6c:3a:21:cc:43:70:
93:54:a7:00:f6:87:1a:8e:39:ad:25:a1:a4:3e:2d:
3b:e2:63:3b:5e:df:62:a8:48:88:59:35:6e:6c:89:
7b:56:a8:e8:a1:a1:90:91:9f:06:ff:d0:3b:ea:93:
1a:7c:95:b9:d2:dc:d1:5e:a0:22:65:0b:da:45:5d:
c0:e4:bd:91:44:49:07:9e:eb:30:b7:a6:83:41:aa:
d9:7c:a7:a5:55:c2:32:8c:32:b8:e7:b6:18:c8:58:
3b:bb:e2:41:5a:8d:c9:b8:b5:6c:35:71:0e:99:e4:
f5:09:fd:e9:18:4a:a6:27:e3:cf:e9:2d:db:4a:27:
b0:52:9b:bb:bb:b7:ce:df:2a:b8:c9:ad:40:7e:f2:
98:52:0b:f2:e6:48:c7:b3:13:33:62:39:f2:f7:c7:
65:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:77:86:5C:8F:88:A7:29:C6:5E:F2:B4:73:30:8E:B9:A0:36:3E:76
X509v3 Authority Key Identifier:
keyid:16:97:9D:37:DA:01:6A:BD:13:27:92:70:BA:55:D6:B3:C2:96:05:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FpedN9oBar0TJ5JwulXWs8KWBXg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/XneGXI-IpynGXvK0czCOuaA2PnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/9825a0-1fdc-4162-8372-b9dbdc8b439c/1/FpedN9oBar0TJ5JwulXWs8KWBXg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.229.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:4b:97:d3:d7:49:47:86:ce:87:9e:ea:9d:c6:c4:a3:f5:e1:
fd:36:07:27:2f:76:fd:c7:95:4b:e6:48:fb:b5:5e:34:7d:2c:
c8:b6:cb:03:fe:43:72:c1:84:72:40:30:a0:10:7a:ed:7b:e4:
82:05:d7:ab:9a:44:6f:d5:a9:3f:63:25:dd:54:e7:0b:79:97:
a4:eb:19:ba:5d:4c:5f:76:ed:11:14:a1:70:12:8e:0c:13:1f:
23:66:c4:a3:fb:af:a2:a2:fa:ec:f8:12:4b:55:25:a0:c9:aa:
f1:1f:4d:b7:b3:76:1d:8e:1e:c0:4c:51:fd:a8:83:3a:d8:e3:
2c:72:ce:17:69:82:11:0d:ac:f3:1a:79:5d:b3:55:4c:8e:32:
2a:f6:70:d7:30:82:c8:01:ca:5a:af:08:b1:27:d0:9c:6d:36:
46:0c:bc:39:af:e2:fc:5b:fe:3a:b4:81:c3:da:27:20:73:92:
c6:8b:e5:7f:7d:fd:e5:7b:0f:d1:1b:29:4c:d0:e2:dc:14:d4:
2b:39:99:26:07:17:ee:00:98:90:bb:32:9f:1b:ac:88:f2:f3:
dd:e6:20:8b:22:ce:f9:55:9f:24:35:90:2d:7f:ac:85:8b:5d:
84:73:17:64:54:d3:eb:f8:11:86:5d:5a:66:f9:be:0e:34:8f:
33:2e:24:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 17:36:22 2024 by rpki-client on console-fra.rpki-client.org