Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/896914-41b1-4b67-9db4-095dce0e019e/1/dWf5NtRsTxSImbts3xAafYK22Rs.roa
File: dWf5NtRsTxSImbts3xAafYK22Rs.roa (raw, json)
Hash identifier: KxQF+6CRzF3ObSuU8vnHOlEakxWgKss5k/+7Nkw2/hc=
Subject key identifier: 75:67:F9:36:D4:6C:4F:14:88:99:BB:6C:DF:10:1A:7D:82:B6:D9:1B
Certificate issuer: /CN=a9d6b171233f20b37e61a3a1ff59ea553bcf21d3
Certificate serial: 018AB6D66196CCB3A2894287FF51913AA76A
Authority key identifier: A9:D6:B1:71:23:3F:20:B3:7E:61:A3:A1:FF:59:EA:55:3B:CF:21:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qdaxcSM_ILN-YaOh_1nqVTvPIdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/896914-41b1-4b67-9db4-095dce0e019e/1/dWf5NtRsTxSImbts3xAafYK22Rs.roa
Signing time: Thu 21 Sep 2023 08:23:37 +0000
ROA not before: Thu 21 Sep 2023 08:23:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216286
IP address blocks: 91.199.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b6:d6:61:96:cc:b3:a2:89:42:87:ff:51:91:3a:a7:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9d6b171233f20b37e61a3a1ff59ea553bcf21d3
Validity
Not Before: Sep 21 08:23:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7567f936d46c4f148899bb6cdf101a7d82b6d91b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:cf:30:5d:b7:9e:32:82:07:51:23:fd:75:f8:
35:f0:36:e4:b0:ce:cb:c8:0d:21:95:1e:38:c2:e5:
47:d7:06:5f:0a:ca:2a:5e:e3:ee:53:e6:f1:ea:79:
7f:1b:31:b4:ac:a6:12:86:a9:14:1f:37:d3:21:4f:
a1:41:fb:ac:1f:dc:38:aa:4b:b9:8c:49:75:d4:c9:
5a:29:b0:5f:7d:0f:be:ab:23:f2:55:1d:c7:69:3e:
de:7a:a3:92:0a:18:5d:c3:28:74:4c:f9:d1:52:dc:
df:b4:78:a5:e4:eb:48:69:92:7f:68:38:67:f9:6a:
e7:08:9e:a1:dc:b2:48:cd:d1:2b:62:ed:22:20:d9:
97:c3:dd:78:3d:9e:b8:c3:98:cf:53:26:8f:a1:c5:
73:ac:a8:70:1f:26:77:07:47:4d:7d:1a:a8:56:b5:
4e:08:76:56:5f:69:95:b6:f2:40:28:0b:7f:a9:1b:
4f:8b:e8:63:2a:2c:02:f0:9c:4e:2f:ee:ec:16:c8:
ef:f8:a1:68:11:ef:92:1a:4d:d8:2f:ac:77:ba:ea:
04:bf:88:3e:64:dd:35:40:78:81:32:9f:8d:30:d0:
79:d4:bf:d4:d6:1f:8d:84:59:e4:b8:d8:90:ac:af:
1a:3c:47:6c:ef:e0:1b:b6:6c:0b:b6:9b:50:27:20:
e1:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:67:F9:36:D4:6C:4F:14:88:99:BB:6C:DF:10:1A:7D:82:B6:D9:1B
X509v3 Authority Key Identifier:
keyid:A9:D6:B1:71:23:3F:20:B3:7E:61:A3:A1:FF:59:EA:55:3B:CF:21:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qdaxcSM_ILN-YaOh_1nqVTvPIdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/896914-41b1-4b67-9db4-095dce0e019e/1/dWf5NtRsTxSImbts3xAafYK22Rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/896914-41b1-4b67-9db4-095dce0e019e/1/qdaxcSM_ILN-YaOh_1nqVTvPIdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.2.0/24
Signature Algorithm: sha256WithRSAEncryption
43:e7:16:07:3d:48:5a:5a:59:ce:9c:e1:f1:13:3b:76:73:55:
3d:3c:e5:6f:94:07:09:05:2c:e6:91:ad:0f:76:3a:65:ff:50:
97:4b:42:7f:11:04:eb:93:1a:01:cc:56:78:60:4d:43:3b:42:
25:75:90:e3:fc:a5:d0:d2:88:13:81:a6:a3:29:11:2c:7c:fd:
03:e5:0d:c7:cb:2d:dc:f0:54:af:d1:1f:b6:77:81:de:38:a3:
1e:5f:a8:f8:b8:52:10:b0:18:d3:fa:20:9e:fe:90:da:e0:f7:
2d:ef:ac:0b:27:6f:86:fb:22:fb:4a:37:f1:c5:de:df:bf:a6:
9b:c2:f1:c6:17:31:4e:74:a2:91:85:81:dc:2e:09:b8:f5:b1:
c0:ed:63:e8:b9:de:ac:23:4f:dd:ee:5b:42:7e:e4:a7:a7:6a:
5c:4c:8b:5a:f8:84:6b:46:23:11:d6:70:c8:9a:6b:e6:79:39:
d7:2f:55:94:d9:c6:65:79:ca:b1:bf:b5:bf:2e:d8:8b:aa:f5:
ad:b6:df:64:78:05:c9:02:93:b9:c8:3f:66:e8:14:0e:cc:95:
6f:34:ea:00:cd:3c:b9:8d:54:2a:3e:fb:2b:5a:e5:e6:26:a8:
f4:b2:9a:54:cd:83:4f:cd:8d:07:65:38:75:52:62:0f:94:06:
8a:fe:09:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:32 2024 by rpki-client on console-ams.rpki-client.org