Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/60522f-3539-4c6d-94c1-3c76dd491006/1/kx9Vz_i5Xr5NKS0XRdQUaBF92Og.roa
File: kx9Vz_i5Xr5NKS0XRdQUaBF92Og.roa (raw, json)
Hash identifier: PiTZZNMXEFPyttDOfWxw062ONt8jtcumFrewE3AFl7A=
Subject key identifier: 93:1F:55:CF:F8:B9:5E:BE:4D:29:2D:17:45:D4:14:68:11:7D:D8:E8
Certificate issuer: /CN=42d4f6e42295f5403b845b52bba9679761d884d8
Certificate serial: 018583A4A67796A8CCC29D519AA9963C3C50
Authority key identifier: 42:D4:F6:E4:22:95:F5:40:3B:84:5B:52:BB:A9:67:97:61:D8:84:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QtT25CKV9UA7hFtSu6lnl2HYhNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/60522f-3539-4c6d-94c1-3c76dd491006/1/kx9Vz_i5Xr5NKS0XRdQUaBF92Og.roa
Signing time: Thu 05 Jan 2023 20:34:43 +0000
ROA not before: Thu 05 Jan 2023 20:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14618
IP address blocks: 91.198.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:83:a4:a6:77:96:a8:cc:c2:9d:51:9a:a9:96:3c:3c:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42d4f6e42295f5403b845b52bba9679761d884d8
Validity
Not Before: Jan 5 20:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=931f55cff8b95ebe4d292d1745d41468117dd8e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:98:e9:ba:fe:e6:1f:d1:98:d2:1b:70:bf:78:
2d:f5:45:ca:3e:66:39:c3:94:47:34:b1:0e:8a:5a:
d4:3d:f3:d6:bd:e9:04:7d:46:51:60:06:86:2f:92:
25:16:46:4e:cf:a9:bc:f8:c0:9e:6e:a0:6d:12:96:
3e:50:86:57:53:8c:6d:3e:7b:4b:52:1a:46:2f:73:
b8:d6:ab:1f:40:80:8e:30:fc:6e:59:60:b3:ba:b1:
e9:4f:33:d2:e7:ea:cb:69:30:fa:49:13:57:15:9f:
9d:e5:89:3a:28:8c:0a:57:4d:0e:d1:da:1c:08:fe:
aa:e3:3f:8e:ae:61:9c:fb:c9:f7:0b:73:43:84:79:
18:7d:bb:e4:a4:d7:9c:d4:db:8a:f7:f4:98:1e:fb:
43:2e:8c:97:f2:40:e8:3a:52:66:e1:cd:6d:2a:b7:
ec:26:63:18:3f:5b:7b:c0:1c:7b:de:19:1e:e5:1b:
90:be:34:2e:a3:0c:94:e1:ef:37:45:b5:6e:34:64:
b5:09:93:1b:79:12:88:37:df:49:5e:29:ee:29:bd:
c9:7b:9c:98:db:10:c3:22:ad:80:93:84:5e:da:98:
76:e8:75:95:80:c4:57:12:89:f7:6e:3c:18:8f:2a:
6e:e1:4c:de:9f:89:96:4a:1b:07:c5:cf:fc:ad:80:
9b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:1F:55:CF:F8:B9:5E:BE:4D:29:2D:17:45:D4:14:68:11:7D:D8:E8
X509v3 Authority Key Identifier:
keyid:42:D4:F6:E4:22:95:F5:40:3B:84:5B:52:BB:A9:67:97:61:D8:84:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QtT25CKV9UA7hFtSu6lnl2HYhNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/60522f-3539-4c6d-94c1-3c76dd491006/1/kx9Vz_i5Xr5NKS0XRdQUaBF92Og.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/60522f-3539-4c6d-94c1-3c76dd491006/1/QtT25CKV9UA7hFtSu6lnl2HYhNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.107.0/24
Signature Algorithm: sha256WithRSAEncryption
49:ec:fc:24:85:93:1a:c8:7b:56:86:bd:b9:67:b0:65:fb:60:
c4:dc:9b:14:ec:98:2d:5f:c5:26:3b:22:59:49:b1:fe:f2:a3:
02:0c:31:85:bc:58:82:75:80:4c:26:a4:13:65:c3:c2:5e:47:
58:8e:ac:74:b1:6e:45:82:8d:f8:81:c2:c7:20:74:ec:4f:ba:
8a:ca:0a:70:f6:d9:cf:f2:db:30:86:6a:5f:f9:dc:ba:21:7d:
46:12:43:1b:49:32:d0:b8:41:9a:02:e0:28:f4:2d:9c:d2:34:
e2:17:09:33:5b:db:76:42:91:74:0c:f9:89:b7:71:42:26:75:
36:7d:5f:c0:b3:fc:39:11:43:a5:aa:44:71:95:de:c6:a7:e9:
dc:fb:3c:75:5a:61:ae:cd:27:0a:5e:2a:62:3b:5e:ad:05:58:
2d:d2:d2:de:e2:12:d7:fb:09:03:9a:c9:ce:96:16:2d:a9:45:
ba:9c:1e:01:7f:0d:c9:91:b3:35:9f:4e:6d:68:12:6d:27:01:
83:9c:3b:62:a4:1c:39:44:b7:3f:2e:b5:30:d7:55:25:6c:7c:
aa:36:a2:15:0b:11:94:b7:08:f6:2f:c0:2c:a5:3a:a2:e6:a5:
31:f6:bf:9b:1e:40:fa:d8:7d:85:07:0c:35:db:aa:c4:3c:80:
3b:08:0a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:52 2024 by rpki-client on console-fra.rpki-client.org