Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/5b29ff-bf90-4883-97da-3c8627d9788d/1/oALin0nRv4MZYjPd-MRq0nGkmRk.roa
File: oALin0nRv4MZYjPd-MRq0nGkmRk.roa (raw, json)
Hash identifier: voKfAXtq7R3ZvaynzfyLabiDLbERRFi9sKAlAnOm/eo=
Subject key identifier: A0:02:E2:9F:49:D1:BF:83:19:62:33:DD:F8:C4:6A:D2:71:A4:99:19
Certificate issuer: /CN=b801c33094a09922c0a10486d21df5589675bc94
Certificate serial: 01856F795492DBDF865D9BB51B8A68A6BEB0
Authority key identifier: B8:01:C3:30:94:A0:99:22:C0:A1:04:86:D2:1D:F5:58:96:75:BC:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uAHDMJSgmSLAoQSG0h31WJZ1vJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/5b29ff-bf90-4883-97da-3c8627d9788d/1/oALin0nRv4MZYjPd-MRq0nGkmRk.roa
Signing time: Sun 01 Jan 2023 22:35:00 +0000
ROA not before: Sun 01 Jan 2023 22:35:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42573
IP address blocks: 91.199.89.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:54:92:db:df:86:5d:9b:b5:1b:8a:68:a6:be:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b801c33094a09922c0a10486d21df5589675bc94
Validity
Not Before: Jan 1 22:35:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a002e29f49d1bf83196233ddf8c46ad271a49919
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6d:8b:ff:9e:be:f2:6f:cf:9f:5d:66:9e:2c:
5e:f3:c9:4a:6f:fc:91:ee:40:0d:83:e0:bd:44:92:
5d:21:22:b2:57:88:ef:61:1c:a0:c9:2d:b4:a3:ec:
1d:e1:22:40:63:7b:f5:2d:81:11:f4:a1:eb:2d:dc:
72:55:f2:fd:84:dd:56:b2:9b:01:de:6f:33:99:05:
96:8a:80:33:fb:5a:55:f5:c8:12:e3:80:a2:57:a2:
3e:8a:ca:da:d5:61:fb:ba:9c:87:a4:6d:74:57:41:
43:07:46:14:c1:88:23:25:d8:51:be:85:02:72:57:
58:8d:3a:c4:15:85:92:a2:a8:29:c7:35:e4:4b:24:
2e:98:86:02:66:d8:48:98:91:6a:77:81:38:86:6e:
05:70:f0:5b:fd:fe:68:21:e4:90:8b:01:80:47:22:
c2:a2:e6:49:1a:ff:5a:19:e7:7e:83:2e:f2:f7:6c:
97:2b:17:79:97:d6:4e:61:19:8d:79:1c:b1:a3:0a:
bf:1c:aa:bd:57:14:e2:b7:f4:a0:3e:01:79:d1:c5:
f4:0f:07:02:93:4a:fa:8b:8f:bd:04:1d:7f:90:3c:
bc:0a:f2:be:0c:49:36:8a:67:26:ee:1e:41:a0:07:
b8:88:cc:ed:3a:1d:85:f9:cc:33:5b:bc:ab:1d:84:
64:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:02:E2:9F:49:D1:BF:83:19:62:33:DD:F8:C4:6A:D2:71:A4:99:19
X509v3 Authority Key Identifier:
keyid:B8:01:C3:30:94:A0:99:22:C0:A1:04:86:D2:1D:F5:58:96:75:BC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uAHDMJSgmSLAoQSG0h31WJZ1vJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/5b29ff-bf90-4883-97da-3c8627d9788d/1/oALin0nRv4MZYjPd-MRq0nGkmRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/5b29ff-bf90-4883-97da-3c8627d9788d/1/uAHDMJSgmSLAoQSG0h31WJZ1vJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.89.0/24
Signature Algorithm: sha256WithRSAEncryption
29:c6:c2:58:b0:1c:82:08:4d:7b:bb:33:c0:c2:f6:fb:ac:9d:
6f:65:84:9c:ba:37:43:90:c7:2f:0d:c3:15:a3:0e:29:70:7b:
61:69:00:1c:92:38:bf:cc:6e:35:23:48:b2:f4:ce:d8:cb:d7:
80:05:49:54:99:b3:f4:a0:ea:af:e6:86:d9:40:43:7a:da:72:
24:67:4f:30:8a:e1:5b:ad:ff:78:10:a1:ed:74:03:b8:02:d1:
9f:dc:33:2f:eb:5d:4c:3b:05:93:12:9d:91:71:2f:b8:d6:9d:
6f:d3:7f:e1:09:5e:ba:2c:81:9e:c8:f5:0d:33:58:99:82:15:
20:85:83:ee:5e:ce:1c:98:38:a7:cc:fb:2a:d1:2a:a0:cf:c9:
ad:8f:dd:55:b8:b5:6a:b0:df:cd:0f:ba:ce:28:d3:12:fc:fc:
f5:a2:0a:20:e4:5b:cf:12:79:60:b2:c2:1b:7d:94:d7:dc:df:
28:1c:ac:5f:2c:fc:aa:b5:90:1c:98:63:62:a1:59:a6:fa:4b:
72:f8:36:48:49:46:5b:30:50:4a:11:db:30:03:a8:a9:3c:15:
68:67:30:12:84:24:27:ff:48:29:87:ec:e3:b9:1e:d2:f3:bd:
5a:36:b4:38:e8:f9:8c:8c:00:86:bc:67:1e:73:f5:2b:54:fb:
d9:d9:1b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:03 2024 by rpki-client on console.sobornost.net