Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/pyWmNsfMe_pTCUv-6oRCiH22wtE.roa
File: pyWmNsfMe_pTCUv-6oRCiH22wtE.roa (raw, json)
Hash identifier: vDUQn9cLHQicEZKsLIAeuHLlz7NziucnDPbhe+5WD2E=
Subject key identifier: A7:25:A6:36:C7:CC:7B:FA:53:09:4B:FE:EA:84:42:88:7D:B6:C2:D1
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018692C9D302EEF1A6D0E2E88107FC1FD383
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/pyWmNsfMe_pTCUv-6oRCiH22wtE.roa
Signing time: Mon 27 Feb 2023 12:12:25 +0000
ROA not before: Mon 27 Feb 2023 12:12:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48024
IP address blocks: 178.173.224.0/19 maxlen: 24
91.132.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:92:c9:d3:02:ee:f1:a6:d0:e2:e8:81:07:fc:1f:d3:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Feb 27 12:12:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a725a636c7cc7bfa53094bfeea8442887db6c2d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:a7:58:29:ac:9e:49:c7:60:eb:0b:dd:c8:e7:
33:33:4b:61:6b:24:68:92:7e:b3:10:c9:53:a4:88:
3f:5c:58:86:bf:77:ac:66:58:8b:9f:1d:36:8a:ee:
f8:73:95:a1:7a:e1:c3:e2:25:fd:e7:a9:95:b6:a1:
91:77:a3:4e:0c:ca:12:74:87:da:0a:ee:74:0a:a9:
6f:57:6c:d8:38:f3:8e:9e:2d:54:dd:89:d3:79:74:
c3:eb:77:24:76:dc:66:15:95:79:ae:fd:2c:91:3f:
18:83:16:de:43:37:53:4e:81:9a:ff:ba:b8:69:10:
53:a5:d3:ec:20:ce:5a:19:4c:73:35:20:c6:aa:1a:
3e:84:81:ff:d2:0a:e9:bc:2a:08:5e:dc:99:99:57:
78:20:d8:7b:01:3a:d0:b9:7f:27:c4:bc:6a:fe:c0:
bf:0f:64:64:2f:8d:5d:c3:1b:1b:b5:15:6d:18:85:
2f:b1:f6:9b:92:9c:f0:9f:63:fd:28:09:41:62:73:
11:a3:1c:c5:26:2e:2d:33:48:35:7e:76:7d:17:4a:
09:14:80:35:04:da:bc:51:82:4f:9b:44:80:3e:22:
1d:68:2e:5c:9c:fc:e3:58:03:80:3a:24:53:ce:f8:
34:f3:83:84:8e:2c:55:76:d0:5c:e2:5e:60:a4:b1:
09:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:25:A6:36:C7:CC:7B:FA:53:09:4B:FE:EA:84:42:88:7D:B6:C2:D1
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/pyWmNsfMe_pTCUv-6oRCiH22wtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.57.0/24
178.173.224.0/19
Signature Algorithm: sha256WithRSAEncryption
6d:22:bc:27:7c:0f:bb:8d:ae:08:d3:32:fd:21:f7:e7:c4:07:
04:a5:03:5b:5d:fd:c5:2d:72:01:a1:e3:d0:37:e6:56:c8:f0:
97:20:b7:95:18:db:e9:93:97:11:32:c3:ba:86:a5:15:60:4a:
cb:85:04:84:b8:3b:fe:b0:ee:ac:68:38:04:28:b4:06:9c:c4:
93:c4:72:6b:e5:51:63:bf:ee:0a:d4:33:78:01:7e:84:14:8e:
c7:89:de:7f:09:72:16:c6:50:a5:e3:e0:4c:b4:67:5b:fc:6e:
72:0d:fc:91:5b:80:c3:a2:ac:e8:2d:8a:db:33:97:7c:b5:1d:
71:17:a4:f3:4e:ba:c4:e2:f0:4d:71:21:4f:8c:b7:70:1b:41:
59:c1:a9:3e:15:a8:45:e4:8c:7f:d0:43:ef:db:bc:e5:60:da:
90:1a:8d:70:f2:c9:ae:1d:14:5c:b7:11:4f:35:2e:84:21:d7:
e2:71:98:29:9c:d5:fb:f6:9f:c2:60:66:5f:95:a3:91:0d:14:
52:20:b8:66:3d:67:03:75:e3:a8:82:c4:64:f4:b5:c0:25:dd:
c2:bf:d0:95:3d:ff:ce:8c:ab:bd:34:97:af:33:93:89:85:40:
34:c5:5d:e7:0b:50:c9:72:2b:90:df:78:e0:03:cf:33:d4:99:
7d:66:a9:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:16 2024 by rpki-client on console-ams.rpki-client.org