Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/glTnqPXvujb7DhicjvuMWthL5sk.roa
File: glTnqPXvujb7DhicjvuMWthL5sk.roa (raw, json)
Hash identifier: 02Aes6ivacbhhhOnp1/+Sl5fg9s0Eh06hmMrtTt+RvU=
Subject key identifier: 82:54:E7:A8:F5:EF:BA:36:FB:0E:18:9C:8E:FB:8C:5A:D8:4B:E6:C9
Certificate issuer: /CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Certificate serial: 018C45F1976CEE1DF4EDB051475FBB46F4FC
Authority key identifier: F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/glTnqPXvujb7DhicjvuMWthL5sk.roa
Signing time: Thu 07 Dec 2023 20:21:49 +0000
ROA not before: Thu 07 Dec 2023 20:21:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199432
IP address blocks: 91.250.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:45:f1:97:6c:ee:1d:f4:ed:b0:51:47:5f:bb:46:f4:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f80e017cf1711519b0ff9f65858c491b2fa5d40b
Validity
Not Before: Dec 7 20:21:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8254e7a8f5efba36fb0e189c8efb8c5ad84be6c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9f:00:04:6f:8c:88:ea:7f:71:11:aa:a5:a7:
4b:0e:6e:c2:8a:3e:fa:5e:80:eb:c3:53:bd:64:20:
19:f3:33:2b:00:3e:83:2e:0c:fe:59:df:b1:2c:61:
b0:18:c5:4f:bb:4a:cb:19:97:32:fd:83:81:5e:03:
f2:d4:57:2f:2d:a8:0a:ac:33:23:28:59:26:9a:03:
f9:77:7f:58:78:0c:92:9c:93:17:58:7e:b7:1d:17:
1c:ba:40:1f:ae:ce:29:d0:5c:00:48:04:b6:11:51:
d2:93:39:5d:26:1a:4f:6b:e3:eb:74:b1:db:ef:f4:
6f:fa:19:23:b2:44:3d:8a:03:ee:4b:ed:aa:5f:f3:
29:74:75:71:56:6e:49:d0:c0:9d:45:3b:d5:9c:fe:
8f:2c:42:b5:63:1a:ee:01:e9:77:ee:23:a3:34:70:
18:62:7c:b6:77:53:c3:61:b9:cf:2c:4e:ae:06:8e:
e9:4b:04:59:66:75:20:59:53:40:db:ed:0e:db:05:
2d:70:90:5d:66:34:2c:32:33:e1:7f:d7:8f:4a:37:
bb:95:2f:4c:b6:b2:92:96:9f:41:d3:b7:1e:fc:73:
d2:69:75:e5:9b:1b:a0:5e:03:53:62:89:31:3d:d8:
b0:66:c6:8c:c4:a4:76:26:d8:1c:f9:48:4f:70:37:
68:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:54:E7:A8:F5:EF:BA:36:FB:0E:18:9C:8E:FB:8C:5A:D8:4B:E6:C9
X509v3 Authority Key Identifier:
keyid:F8:0E:01:7C:F1:71:15:19:B0:FF:9F:65:85:8C:49:1B:2F:A5:D4:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-A4BfPFxFRmw_59lhYxJGy-l1As.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/glTnqPXvujb7DhicjvuMWthL5sk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/2dc136-400d-40e7-ad86-8ce60a5c8b1f/1/1-A4BfPFxFRmw_59lhYxJGy-l1As.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.250.253.0/24
Signature Algorithm: sha256WithRSAEncryption
64:7f:a1:d0:bf:49:05:7d:21:9a:b0:79:88:b3:77:75:b1:b6:
3d:ce:56:5d:48:64:c1:67:3a:a3:af:4f:90:a9:a4:63:dc:5f:
f6:35:23:61:52:4c:14:38:9a:0b:33:02:f4:d6:f2:b9:78:0e:
92:e7:8a:97:44:9f:1a:dd:d9:ca:b2:83:0b:e7:88:68:c5:ea:
f3:a3:88:91:16:fb:ad:66:16:8e:7d:52:e7:0f:f9:77:38:16:
f1:b9:45:34:7d:42:c6:b4:31:e7:1c:e6:55:0d:90:58:49:0a:
3a:d0:82:68:e7:f5:3a:8c:c1:4a:d5:0b:62:8b:ba:93:21:2f:
82:63:b5:97:cf:87:03:5f:0b:97:7a:f0:5d:cb:e3:d1:f1:72:
64:13:bc:a3:32:df:4e:05:1f:74:49:22:d4:13:6c:17:cd:f1:
f6:70:a9:b4:23:24:37:8d:13:ad:ed:5e:83:ed:c4:3e:7a:0c:
38:d1:48:de:ce:35:38:3b:3e:0b:b5:c6:57:f9:18:2d:f2:87:
3d:2b:3a:68:fa:20:60:28:b3:77:16:4e:1d:72:12:43:b3:f9:
7d:07:d1:66:60:ca:85:8f:c4:11:e4:b8:d0:f0:f1:9a:7d:cb:
6d:cc:40:92:ea:a2:81:e2:21:bb:d3:10:b6:35:35:6a:d5:8b:
89:c5:bd:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:44 2024 by rpki-client on console-fra.rpki-client.org