Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/T_rp5JwENIYgsJnlVxEI9X5a8yE.roa
File: T_rp5JwENIYgsJnlVxEI9X5a8yE.roa (raw, json)
Hash identifier: 2m+b6XIDPH2XcFkCDIO+otbtaRnhX2CJAFR48as5KDk=
Subject key identifier: 4F:FA:E9:E4:9C:04:34:86:20:B0:99:E5:57:11:08:F5:7E:5A:F3:21
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 01856EA68F113D11E874A14899AC4CBA8365
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/T_rp5JwENIYgsJnlVxEI9X5a8yE.roa
Signing time: Sun 01 Jan 2023 18:44:47 +0000
ROA not before: Sun 01 Jan 2023 18:44:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57117
IP address blocks: 91.201.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:8f:11:3d:11:e8:74:a1:48:99:ac:4c:ba:83:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Jan 1 18:44:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4ffae9e49c04348620b099e5571108f57e5af321
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:5c:ad:26:97:67:69:a7:a6:96:4a:dc:18:bd:
5a:f0:60:53:a8:a7:20:de:5c:b3:7d:f7:8a:9e:8d:
5f:0f:e3:3c:08:7c:ca:0d:34:68:ee:78:4d:e6:b9:
45:34:c2:18:a2:7d:68:78:cc:38:d2:71:dd:34:8b:
3f:35:7c:4b:bc:15:9d:10:ab:aa:db:af:ff:9f:e1:
92:a9:a5:1d:05:d3:aa:56:f7:bb:e4:b8:d5:2c:61:
86:14:0e:a8:c1:ae:85:bf:d8:27:b3:9a:92:a5:a3:
36:32:24:da:fa:44:28:73:5a:63:32:f4:f2:d9:60:
88:ff:e7:59:f1:02:ff:18:83:08:75:3e:ff:cc:8e:
84:c8:e1:53:71:00:ec:69:25:5f:ed:6a:11:ed:36:
71:e2:2c:73:a1:77:b4:67:d5:4c:55:5a:01:c6:8e:
ee:f4:e4:01:2f:6c:87:6d:d1:cb:3c:2d:77:81:74:
41:45:5d:3e:5c:ac:9c:f9:08:7e:4b:80:15:cc:59:
7a:42:fb:09:fe:d2:3d:21:1d:3e:11:57:98:35:96:
ab:a0:76:e1:90:99:f5:09:dd:ef:a9:08:99:ee:ec:
2f:46:bd:da:25:7c:59:c0:c6:6f:3b:cf:ce:8a:90:
c6:55:88:fc:af:c8:16:67:42:82:9a:ef:2d:56:fc:
da:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:FA:E9:E4:9C:04:34:86:20:B0:99:E5:57:11:08:F5:7E:5A:F3:21
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/T_rp5JwENIYgsJnlVxEI9X5a8yE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.197.0/24
Signature Algorithm: sha256WithRSAEncryption
61:73:6d:62:b0:d0:da:b9:ae:8e:e1:9c:4b:ea:91:b9:05:96:
22:ec:72:ac:7c:d5:b6:4f:b0:f2:93:69:3d:85:40:6a:18:dc:
01:2b:ef:07:c9:81:a7:b3:0e:ae:0c:b1:99:a7:50:b3:a5:78:
6f:b0:58:96:69:8b:a0:10:c0:0f:c9:d4:2d:40:aa:4b:b2:35:
4b:34:f6:48:9d:6f:f7:d2:fc:bc:fd:63:57:38:c3:75:7b:c2:
f2:02:fc:ac:3b:d2:04:2f:6d:c5:9c:94:6b:ac:1c:54:0d:16:
a3:bf:41:d6:71:2c:ab:a1:b5:8b:71:e9:a9:13:cd:36:96:ad:
1b:08:00:f1:d4:85:cd:ca:d6:51:ec:d9:b0:a6:89:bd:e9:1a:
4c:31:03:76:02:f3:db:cb:07:4f:8b:eb:42:98:c3:17:0e:ef:
91:1f:6b:6a:4a:e2:78:f4:1b:f3:6a:44:b5:5c:e4:20:68:78:
4d:3e:b6:c0:09:80:3e:b7:d1:97:91:c5:ae:6e:15:4a:bc:85:
40:ec:94:53:2d:e9:d2:91:10:c6:cc:61:8d:f9:82:fb:3a:22:
26:5a:18:2b:16:ad:c3:4e:0c:33:1a:2f:6c:33:00:75:07:40:
0e:df:c3:c5:23:49:98:09:c5:08:70:52:ce:84:0d:ff:a7:fb:
9a:1d:85:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:34 2024 by rpki-client on console-fra.rpki-client.org