Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/AOXG57LX0CQPFmFQCB-mQBzMWUg.roa
File: AOXG57LX0CQPFmFQCB-mQBzMWUg.roa (raw, json)
Hash identifier: GnX7YsuAZSbpw3MxuheFT0KPuEr47PiJLscn+jWMoow=
Subject key identifier: 00:E5:C6:E7:B2:D7:D0:24:0F:16:61:50:08:1F:A6:40:1C:CC:59:48
Certificate issuer: /CN=1a14445259732aa6736c248234465947fc2374d0
Certificate serial: 019270D099CA0EC9150904AAC6A59C3D91CF
Authority key identifier: 1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/AOXG57LX0CQPFmFQCB-mQBzMWUg.roa
Signing time: Wed 09 Oct 2024 10:26:11 +0000
ROA not before: Wed 09 Oct 2024 10:26:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16589
IP address blocks: 91.214.160.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 10 Oct 2024 06:20:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:70:d0:99:ca:0e:c9:15:09:04:aa:c6:a5:9c:3d:91:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a14445259732aa6736c248234465947fc2374d0
Validity
Not Before: Oct 9 10:26:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=00e5c6e7b2d7d0240f166150081fa6401ccc5948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1b:20:1a:ca:4e:bc:99:ec:78:fb:26:c4:6d:
69:0e:0b:90:2e:34:9a:99:ae:4c:96:44:65:d9:0d:
5a:0f:c0:58:91:cf:4b:b4:b3:c4:1a:34:54:df:29:
49:d9:c2:20:be:4c:6e:46:bd:fe:8b:79:85:9c:8b:
ad:37:18:b0:7a:0d:5b:e5:44:cf:31:35:46:f6:50:
7d:a9:7b:4e:7f:38:87:54:9c:a8:b4:14:8a:66:ca:
35:d9:f8:be:9d:87:33:ed:76:fa:b9:f4:26:42:94:
67:eb:4a:b9:b7:f8:b2:94:9b:f6:b9:48:6a:ba:c7:
fd:1a:41:ce:08:f1:f5:03:71:00:bc:8b:67:18:5f:
69:84:65:05:ba:a8:25:6d:7a:c2:b3:4a:e3:35:55:
11:20:ad:53:1b:8c:ce:9d:71:67:6d:45:76:fa:82:
1d:48:95:4a:2b:3c:be:75:7e:27:d0:c4:07:54:fd:
c8:53:a5:98:f5:1e:15:b2:86:e5:44:ff:dc:72:4f:
b5:43:c3:69:83:aa:cd:35:71:6e:39:47:ac:66:c6:
26:1f:42:0e:be:ec:03:df:bc:06:1b:71:3a:c5:9e:
a5:b6:4d:75:20:da:93:e2:f2:87:68:8a:f8:69:19:
6c:bc:22:14:48:e0:c8:5d:f4:50:e8:e3:0b:96:8e:
17:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E5:C6:E7:B2:D7:D0:24:0F:16:61:50:08:1F:A6:40:1C:CC:59:48
X509v3 Authority Key Identifier:
keyid:1A:14:44:52:59:73:2A:A6:73:6C:24:82:34:46:59:47:FC:23:74:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhREUllzKqZzbCSCNEZZR_wjdNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/AOXG57LX0CQPFmFQCB-mQBzMWUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d10841-7d44-46da-b29c-381f23f183d7/1/GhREUllzKqZzbCSCNEZZR_wjdNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.160.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:bc:3a:02:0e:3f:ef:ad:99:88:0a:84:6a:93:51:d7:c8:f7:
cf:f5:95:9d:6b:c9:92:c6:11:2f:03:91:2e:a6:9d:5c:0b:a0:
ad:14:19:28:69:a0:ec:66:03:5b:e2:f5:18:56:45:23:c4:2f:
60:fd:4c:31:f4:88:67:2c:78:43:81:fe:39:ec:2b:36:7b:09:
f2:a0:f7:7d:69:e3:9c:da:2b:7b:19:0b:34:7b:ca:fa:67:db:
28:1f:c5:91:ab:b5:4b:de:49:e0:c4:4a:16:25:bb:a4:02:ec:
b5:80:0a:5b:a7:6a:6f:77:8f:63:a7:0d:6f:81:0a:a8:ec:e8:
8e:86:89:e5:16:55:15:6f:c0:ef:b4:8c:2a:e5:60:99:25:b5:
fa:2d:ab:07:cb:08:8c:10:30:ea:4a:7b:ad:6b:4b:36:71:a2:
47:a6:61:12:a7:90:6f:69:da:4d:7c:f0:95:5d:e3:4f:2c:03:
68:72:a9:a8:f4:eb:a3:5e:83:af:42:f7:28:ff:10:55:95:b2:
62:d7:5e:09:14:7e:f7:97:28:0b:e9:ad:43:c3:49:ed:7d:9e:
9c:68:5b:31:46:a2:b5:b2:40:76:41:a6:08:b3:b3:28:11:87:
e3:f8:ab:dc:5d:75:6d:3c:71:27:7a:df:5d:6c:ce:ba:f3:e2:
17:8e:cf:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 10 08:31:18 2024 by rpki-client on console-ams.rpki-client.org