Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/xWS2j1UzLtOxu3O-rYkzdEFiSxA.roa
File: xWS2j1UzLtOxu3O-rYkzdEFiSxA.roa (raw, json)
Hash identifier: CyPn+ihkTceB2Nkl1OP6E57dZajkejwrLKZNoTwL5+g=
Subject key identifier: C5:64:B6:8F:55:33:2E:D3:B1:BB:73:BE:AD:89:33:74:41:62:4B:10
Certificate issuer: /CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Certificate serial: 018CC3B6EFFD6C3AB596CFD6263CCC532CD5
Authority key identifier: 0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/xWS2j1UzLtOxu3O-rYkzdEFiSxA.roa
Signing time: Mon 01 Jan 2024 06:29:55 +0000
ROA not before: Mon 01 Jan 2024 06:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57117
IP address blocks: 91.201.197.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 07 Feb 2024 13:13:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:ef:fd:6c:3a:b5:96:cf:d6:26:3c:cc:53:2c:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0f9a2d2374aa6ac714b5f8a6eddb80dc69679cc6
Validity
Not Before: Jan 1 06:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c564b68f55332ed3b1bb73bead89337441624b10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:04:86:36:c0:07:74:3c:4d:a7:08:2c:4a:4d:
58:2a:c7:e6:09:c3:fc:64:cb:bc:42:f8:65:b1:d6:
74:5f:8f:70:46:0a:12:44:3c:7b:f9:9d:35:68:05:
c2:88:3b:e0:e7:7a:7d:af:73:40:9d:54:2c:8c:25:
76:bf:f8:3e:d0:cf:34:2a:0a:fd:7a:43:e4:3b:7f:
78:a1:53:ee:7f:97:6f:ba:e1:0b:78:30:b9:3e:d2:
01:5b:6c:73:96:81:c8:a7:a0:d5:d5:ef:ba:35:54:
7f:b3:cf:e5:50:e3:87:e1:de:02:6a:3e:d7:6b:08:
7c:3c:b7:23:63:46:b7:b6:77:d9:8d:24:04:ac:2f:
6a:5e:4b:33:dc:81:9f:49:45:20:20:47:95:e9:3d:
c8:e1:54:07:ff:34:4a:64:28:7a:bd:03:00:e8:f7:
14:c4:de:00:b4:bd:73:72:70:87:1f:41:81:d0:dd:
b8:2c:b5:4c:ea:56:51:68:ad:82:38:d3:5e:63:1a:
8d:c9:a8:68:da:c8:62:09:8e:1e:f5:24:29:5a:df:
a8:97:ea:22:1d:23:74:13:7b:d3:f1:cf:8e:2a:66:
bd:9b:ae:d9:3a:0d:05:43:8c:16:27:7d:b4:1d:df:
fb:5d:df:fb:fd:f0:bd:94:ce:37:7c:63:e9:76:da:
d6:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:64:B6:8F:55:33:2E:D3:B1:BB:73:BE:AD:89:33:74:41:62:4B:10
X509v3 Authority Key Identifier:
keyid:0F:9A:2D:23:74:AA:6A:C7:14:B5:F8:A6:ED:DB:80:DC:69:67:9C:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D5otI3SqascUtfim7duA3GlnnMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/xWS2j1UzLtOxu3O-rYkzdEFiSxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/00248c-3791-4629-a6c6-6d971992c349/1/D5otI3SqascUtfim7duA3GlnnMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.197.0/24
Signature Algorithm: sha256WithRSAEncryption
62:c5:a4:84:9f:73:66:4c:c8:3a:5a:4f:3d:a9:e4:3f:87:37:
34:17:1e:04:e4:ef:49:5f:fb:f2:38:6b:5d:e6:ed:a4:f6:24:
24:c3:ad:35:1c:a9:2a:c5:e7:c6:1d:80:af:f6:8a:34:09:07:
a0:55:a6:1d:16:81:55:a7:e3:d6:6b:a3:10:db:ca:12:6a:03:
96:ef:cb:cd:72:c4:10:2a:56:7c:0d:ff:b2:1a:f8:c8:65:ab:
78:51:09:49:e7:a4:50:4d:a7:1b:53:0d:00:52:75:ad:68:72:
5a:9c:60:ba:54:67:ed:c1:05:72:da:d0:32:26:49:7b:f8:b6:
29:47:14:9b:ac:b2:ec:b3:41:af:a1:48:22:48:d6:1e:ea:68:
c2:61:da:c4:bf:37:15:df:7d:66:2a:93:3a:30:b4:bf:fa:18:
21:71:9c:ac:73:00:74:3d:5e:b8:07:9c:52:11:90:2a:7f:a3:
cb:07:9d:0d:c1:07:8e:45:b0:84:be:92:88:7e:82:64:46:be:
d1:b2:93:9e:9c:40:1d:af:c4:53:36:58:df:9b:d0:fd:9d:3f:
96:e4:4f:69:e8:92:06:21:8f:58:52:b5:46:65:19:bd:79:cb:
52:dd:3d:9c:04:83:8a:de:21:02:12:f4:cb:9b:d0:e2:d4:83:
df:84:fe:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:34 2024 by rpki-client on console-fra.rpki-client.org