Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/f_xYUxRaPUmRg0lBLkWG2wSIBUs.roa
File: f_xYUxRaPUmRg0lBLkWG2wSIBUs.roa (raw, json)
Hash identifier: DXfNQCbiK1UgMHVKzm0ICo0idRYK+TsaPkAArPUxt08=
Subject key identifier: 7F:FC:58:53:14:5A:3D:49:91:83:49:41:2E:45:86:DB:04:88:05:4B
Certificate issuer: /CN=a9dfc89812340507a2a2e1e74d11824def813f39
Certificate serial: 01856E81F5A7432037D6F97E3FD7FDE29793
Authority key identifier: A9:DF:C8:98:12:34:05:07:A2:A2:E1:E7:4D:11:82:4D:EF:81:3F:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qd_ImBI0BQeiouHnTRGCTe-BPzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/f_xYUxRaPUmRg0lBLkWG2wSIBUs.roa
Signing time: Sun 01 Jan 2023 18:04:48 +0000
ROA not before: Sun 01 Jan 2023 18:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42160
IP address blocks: 91.234.203.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:81:f5:a7:43:20:37:d6:f9:7e:3f:d7:fd:e2:97:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9dfc89812340507a2a2e1e74d11824def813f39
Validity
Not Before: Jan 1 18:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ffc5853145a3d49918349412e4586db0488054b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:10:aa:b8:a8:93:ea:28:da:7b:dc:fc:8f:5e:
41:69:ed:7c:70:07:8a:31:ba:eb:32:0f:a5:60:ef:
c6:cc:b2:00:96:12:65:6d:94:e7:b3:74:9b:29:87:
48:34:1f:5f:a1:04:3f:78:ef:70:94:1f:d6:0d:fe:
72:4a:57:d5:fa:5d:ee:c4:62:1b:e5:24:16:fd:b8:
74:19:98:c2:f3:51:20:4f:e2:ec:b4:fc:af:35:17:
c5:0c:e6:39:ed:4f:c1:b9:a9:01:f1:2a:83:ca:7b:
38:79:36:33:e8:ca:bf:0c:31:7e:7a:42:d4:05:47:
e6:83:a8:e0:fb:31:1e:36:bd:de:1a:5e:c7:13:59:
a9:fb:6a:82:63:f8:91:a0:d8:22:a1:15:83:4a:20:
fc:db:24:20:92:2b:66:c5:6d:bb:60:65:91:bf:fb:
11:e6:20:62:c9:f8:94:77:7e:70:e4:07:9d:25:7b:
6f:c9:28:7b:23:6d:28:3f:f1:f6:d7:2f:07:50:0e:
e4:06:74:1c:a0:8b:51:f6:47:95:24:78:ba:d5:1c:
c5:01:28:49:a6:b1:8b:30:f3:d2:8e:53:b3:17:da:
62:98:12:f3:69:80:d7:79:e1:89:ba:c8:0a:52:40:
d3:4c:5a:48:40:3b:d4:68:f4:ed:3e:f5:ca:7b:95:
66:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:FC:58:53:14:5A:3D:49:91:83:49:41:2E:45:86:DB:04:88:05:4B
X509v3 Authority Key Identifier:
keyid:A9:DF:C8:98:12:34:05:07:A2:A2:E1:E7:4D:11:82:4D:EF:81:3F:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qd_ImBI0BQeiouHnTRGCTe-BPzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/f_xYUxRaPUmRg0lBLkWG2wSIBUs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/f7d58e-33da-4319-b54b-704403fff82e/1/qd_ImBI0BQeiouHnTRGCTe-BPzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.203.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:7d:d6:e3:0c:df:2f:03:33:85:bc:dc:a5:4c:61:63:63:4b:
d4:f1:74:f4:53:4a:1d:32:af:0a:dc:ba:d3:0d:6d:21:69:f1:
74:c9:9b:61:bb:97:11:63:8b:bd:f8:5a:a4:2b:f7:27:0a:df:
28:6d:a7:d8:5d:71:51:73:01:25:1e:25:b5:29:21:43:04:68:
90:2e:12:20:11:1b:36:88:51:06:9f:67:27:d4:2c:b1:19:5a:
26:fa:8b:bf:4b:a8:45:c5:c4:ea:03:5e:3b:77:06:bb:2d:06:
a8:c4:9f:aa:8f:ba:47:a9:e4:99:27:84:06:ac:87:c6:af:4d:
86:2d:e9:77:02:3a:2b:d2:58:a8:70:04:2a:9b:fe:b9:5d:34:
94:ce:a5:83:9a:bc:51:93:7d:0d:8b:dd:5c:e9:1a:51:e1:75:
b2:78:57:31:56:d7:f6:05:29:d2:04:e3:38:95:1b:f4:99:8c:
3f:7a:96:d8:54:5b:47:91:05:60:65:f5:a2:df:15:69:db:3c:
1d:7d:47:69:34:70:4f:8e:76:b9:29:1e:73:b7:07:ab:d6:dd:
c9:9d:63:83:ea:bc:b9:f0:cc:59:e2:39:62:36:99:23:68:52:
25:7b:b4:72:7c:e7:63:9f:dc:e5:60:55:5c:22:97:c9:31:03:
15:d9:99:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:08 2024 by rpki-client on console-ams.rpki-client.org