Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/CeQfGrFUdLyF_puLST1xoLrfb10.roa
File: CeQfGrFUdLyF_puLST1xoLrfb10.roa (raw, json)
Hash identifier: S/KXnI8bjiNcNmo2AHT+SQwO64qhJuNvu97U7c2yyCk=
Subject key identifier: 09:E4:1F:1A:B1:54:74:BC:85:FE:9B:8B:49:3D:71:A0:BA:DF:6F:5D
Certificate issuer: /CN=c2919334ad2ad53616c34fece96ce29230f86349
Certificate serial: 018E664CAE0E71158C506F5E24F83963FC31
Authority key identifier: C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/CeQfGrFUdLyF_puLST1xoLrfb10.roa
Signing time: Fri 22 Mar 2024 13:14:45 +0000
ROA not before: Fri 22 Mar 2024 13:14:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 91.201.87.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 17:31:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:66:4c:ae:0e:71:15:8c:50:6f:5e:24:f8:39:63:fc:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2919334ad2ad53616c34fece96ce29230f86349
Validity
Not Before: Mar 22 13:14:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=09e41f1ab15474bc85fe9b8b493d71a0badf6f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:79:8d:1d:74:1a:7f:db:97:6a:60:35:44:5e:
67:9f:68:b2:c7:34:9d:3e:18:c5:77:1a:c5:f4:f8:
95:31:33:88:e1:5f:8d:6e:16:09:0e:6b:43:b4:ba:
f1:e3:23:7a:2d:2d:d9:31:f5:98:7f:32:21:8c:b9:
d0:27:08:38:33:1f:3e:e1:26:f3:41:24:a2:8b:00:
a6:81:80:a5:89:22:20:0a:e8:21:12:df:f0:ab:8c:
38:e1:ab:2f:ee:c7:cd:90:58:43:c5:66:95:e2:30:
45:08:a8:71:f9:9b:8e:37:f7:bf:a0:2a:34:d4:a2:
26:6c:f4:90:9f:eb:13:19:ca:f5:8f:3c:a3:21:da:
61:b1:c4:8f:ab:8e:89:28:6c:6c:5e:ae:21:a1:05:
ea:e5:52:f5:80:2a:41:a1:0c:4b:be:0f:15:33:14:
7f:45:81:48:16:0e:93:30:4a:c2:01:a8:6f:82:28:
b2:9a:18:75:37:c0:43:2c:3f:0d:02:81:cd:ac:b0:
80:66:c8:58:30:91:9e:01:74:e7:66:78:5f:46:7c:
c2:a9:a3:32:f8:71:2e:cd:ec:89:7f:c7:d8:a0:06:
b3:69:9d:ae:be:e4:1e:0d:60:b3:bf:9d:f0:d7:c0:
5a:67:d8:76:cb:34:06:15:ad:42:49:af:54:92:51:
d4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E4:1F:1A:B1:54:74:BC:85:FE:9B:8B:49:3D:71:A0:BA:DF:6F:5D
X509v3 Authority Key Identifier:
keyid:C2:91:93:34:AD:2A:D5:36:16:C3:4F:EC:E9:6C:E2:92:30:F8:63:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wpGTNK0q1TYWw0_s6WzikjD4Y0k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/CeQfGrFUdLyF_puLST1xoLrfb10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/894bdc-28a6-4c36-ba42-1653188d8126/1/wpGTNK0q1TYWw0_s6WzikjD4Y0k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.87.0/24
Signature Algorithm: sha256WithRSAEncryption
05:f9:26:e5:4a:da:86:92:c4:b5:3a:35:af:e6:8e:40:3e:a6:
4b:cb:30:98:a9:ff:32:a8:c8:2d:ca:e6:50:98:ea:4b:97:14:
d9:f1:49:52:cc:c9:7c:8c:7e:a7:c5:17:d0:6a:82:95:34:38:
25:76:e8:be:07:50:bf:c2:3b:41:96:4e:9d:95:5f:4b:5c:74:
ac:25:7e:8a:ae:5e:50:f1:4f:3c:8a:ae:0d:a8:ce:2d:62:61:
a8:6d:d5:0e:29:f1:a1:98:dd:a2:7b:78:19:38:62:18:b1:17:
92:4d:60:0a:a2:17:f9:bb:4b:cf:a7:df:ad:17:1e:69:3f:88:
d4:df:2c:ea:0e:4e:f4:74:16:27:d5:bc:f3:62:ca:18:f0:06:
8c:4a:a6:5f:38:23:79:b8:2f:01:36:69:6f:e0:1f:96:de:9c:
aa:b6:88:71:7c:02:77:a4:a9:16:c7:ca:f1:8a:de:41:d1:17:
f1:21:3a:f3:40:d8:87:d9:b9:de:11:19:a1:1e:e3:2d:0c:9d:
b2:84:46:31:9f:e1:6e:37:9e:30:45:38:f3:8c:28:e2:ee:d3:
55:21:db:cc:1c:3e:cc:36:a1:85:b2:1c:3c:eb:c4:80:84:cb:
37:b6:35:6e:ea:31:73:79:6f:9d:32:85:b1:67:a0:8a:7b:fc:
62:d8:af:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:38 2024 by rpki-client on console-fra.rpki-client.org