Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/qHSeAHWIjybL_i182X5kWaBR9l8.roa
File: qHSeAHWIjybL_i182X5kWaBR9l8.roa (raw, json)
Hash identifier: FnJ3eM9GfaLeWG8dds3+Ts6FCv1hs31lCBtbxeeetOY=
Subject key identifier: A8:74:9E:00:75:88:8F:26:CB:FE:2D:7C:D9:7E:64:59:A0:51:F6:5F
Certificate issuer: /CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Certificate serial: 018A17C0C979B88440FA26117F1A1F876E51
Authority key identifier: FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/qHSeAHWIjybL_i182X5kWaBR9l8.roa
Signing time: Mon 21 Aug 2023 11:00:25 +0000
ROA not before: Mon 21 Aug 2023 11:00:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 91.223.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:17:c0:c9:79:b8:84:40:fa:26:11:7f:1a:1f:87:6e:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fce2fd8df1a266ce13457fbe0f938b9abe3aa761
Validity
Not Before: Aug 21 11:00:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a8749e0075888f26cbfe2d7cd97e6459a051f65f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:70:99:fb:b2:a2:e4:f6:07:89:72:f5:b2:a8:
5d:11:a5:d8:3f:a8:8d:66:48:8f:56:40:4b:cd:eb:
0e:83:fb:48:f0:97:3c:70:5b:57:5e:91:31:c8:a4:
1d:7b:bf:35:da:86:02:ac:1d:f5:f8:9c:87:69:71:
c8:4a:f9:e5:0e:53:22:de:ff:e5:9c:a5:9e:ed:4e:
61:72:34:8c:54:64:0c:3f:03:61:48:5e:6b:a1:53:
e3:1c:06:ae:7d:4a:b9:59:c8:5a:98:ca:6f:d4:74:
d7:95:2b:34:9d:5c:f8:31:3b:2e:47:9c:4e:08:6b:
e3:34:5a:a5:bf:a0:42:5e:7e:0f:01:cb:54:d2:d6:
a8:8b:c8:a7:1a:af:04:e5:45:e5:87:e4:8e:de:c9:
fc:be:a5:a7:7f:c7:67:80:92:a0:0f:f8:42:8c:b4:
fd:22:29:57:e4:7f:70:f6:3d:2e:c8:df:e4:31:dd:
c6:78:60:ef:63:6f:f3:27:d3:2e:e5:52:2c:f7:b5:
cc:2c:6a:be:59:0c:00:54:78:28:76:db:bf:a9:c4:
51:5a:a2:9b:cd:b9:ee:fb:49:9e:45:49:b5:d3:e4:
b5:2d:de:54:44:94:b0:01:70:f7:f4:35:e8:c1:c7:
3c:cb:03:3e:d2:20:7b:cb:9e:ba:3f:15:57:f9:4c:
6d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:74:9E:00:75:88:8F:26:CB:FE:2D:7C:D9:7E:64:59:A0:51:F6:5F
X509v3 Authority Key Identifier:
keyid:FC:E2:FD:8D:F1:A2:66:CE:13:45:7F:BE:0F:93:8B:9A:BE:3A:A7:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_OL9jfGiZs4TRX--D5OLmr46p2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/qHSeAHWIjybL_i182X5kWaBR9l8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/91641b-fc66-4e6d-b9dc-7ef54afc4372/1/_OL9jfGiZs4TRX--D5OLmr46p2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.94.0/24
Signature Algorithm: sha256WithRSAEncryption
73:82:ef:b7:51:6a:1b:f9:f2:33:0d:76:b7:33:8e:1d:fb:c1:
8b:96:64:6f:dc:18:8f:95:68:17:a8:fd:e9:d0:5e:42:07:54:
a8:4f:1f:90:4a:c4:92:22:ab:80:dd:6a:a7:22:51:46:ea:09:
ab:83:11:32:27:17:8d:61:20:dc:0b:5b:69:38:64:11:cc:35:
40:5f:d8:c2:37:00:5e:e0:df:24:d2:f8:1f:5b:de:10:fe:47:
bd:19:09:6b:55:13:60:6c:31:e1:dc:0c:11:4a:dc:38:98:cc:
20:d4:ca:ba:eb:4e:f8:a8:d2:e8:20:a2:25:3c:1b:e8:e3:c0:
eb:00:65:de:58:da:87:7c:ef:e1:0f:49:07:9c:41:94:a2:c9:
6a:6e:3a:48:06:60:24:db:ac:f8:2c:36:bb:00:24:b1:3d:17:
32:b0:e5:7d:2e:8b:d8:77:7c:4a:c4:21:04:c4:9a:c8:fc:7c:
49:1a:fd:0d:3e:f1:d2:a3:59:ae:60:c1:74:01:e1:7c:ff:7a:
de:89:8c:fb:7c:99:cf:23:68:7c:a4:b1:ec:4c:00:f1:64:d9:
e3:3e:f4:ef:0f:06:42:cd:13:c3:5b:4e:22:e1:ca:f5:98:b4:
7b:46:75:cf:7d:be:77:90:32:35:31:61:60:a6:63:57:4a:90:
71:90:2f:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:03 2024 by rpki-client on console-fra.rpki-client.org