Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/DfAkq6VAeAV9MuQi1e5GhgyJUzI.roa
File: DfAkq6VAeAV9MuQi1e5GhgyJUzI.roa (raw, json)
Hash identifier: GpFWKlu1bAqHIlnB8jH9mxPERKEWS+Q7I6xbSQZ12pg=
Subject key identifier: 0D:F0:24:AB:A5:40:78:05:7D:32:E4:22:D5:EE:46:86:0C:89:53:32
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 018D6662EF9C2F98E626ECE21495F056D024
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/DfAkq6VAeAV9MuQi1e5GhgyJUzI.roa
Signing time: Thu 01 Feb 2024 20:36:16 +0000
ROA not before: Thu 01 Feb 2024 20:36:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 11 Feb 2024 16:04:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:66:62:ef:9c:2f:98:e6:26:ec:e2:14:95:f0:56:d0:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Feb 1 20:36:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0df024aba54078057d32e422d5ee46860c895332
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:f9:f4:32:22:fd:c1:62:96:2a:9e:d4:6a:57:
45:66:f6:73:ee:4c:3d:ef:b7:35:f1:ed:e7:be:7e:
95:03:e1:ea:6b:9e:2b:54:09:42:88:43:ee:e0:76:
5a:4e:4d:30:4e:56:ec:71:d8:0c:23:b1:f1:19:f0:
b9:7b:5e:ed:02:58:c4:07:e8:69:a6:d6:70:7e:d7:
57:87:37:d8:a8:a0:92:e0:fa:7d:9d:85:b4:38:fd:
c1:4b:56:77:f7:8e:96:ee:3a:9b:5a:fc:6c:d9:ab:
9d:5e:a1:1c:0f:75:26:5d:bd:d0:66:b0:85:de:be:
12:54:1d:cf:3d:5d:10:8c:70:ac:92:ec:f3:0f:cd:
3b:b8:f3:2a:1e:da:ed:0a:79:02:98:19:24:80:01:
29:03:4a:13:a7:80:4a:a2:48:d7:45:7b:cd:94:89:
a6:70:1f:16:71:8f:2a:8d:a8:b9:ac:b4:6e:4f:7b:
c5:2e:5d:b4:98:92:a9:43:c6:87:b1:c0:29:74:e7:
be:fd:9b:32:9c:b3:d3:3c:7a:77:16:dd:a2:ca:44:
a2:83:66:7e:30:e9:1f:ba:16:22:70:8b:84:84:2e:
0c:73:a2:c9:e7:b2:28:fc:5f:93:82:88:2b:0f:d6:
89:11:ce:60:5b:f4:ad:c1:ac:a2:ec:60:7e:b2:86:
90:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:F0:24:AB:A5:40:78:05:7D:32:E4:22:D5:EE:46:86:0C:89:53:32
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/DfAkq6VAeAV9MuQi1e5GhgyJUzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
30:6a:b4:3a:4d:31:e9:4d:ee:bd:a2:f1:d4:04:22:c1:0c:e6:
77:c5:02:4b:70:95:bb:dd:e7:ab:07:08:1d:cb:72:52:41:69:
a8:1d:a8:60:e1:7d:70:d0:ce:21:3f:cf:3c:f9:bb:15:6d:5f:
47:dd:22:41:f0:fe:5f:a0:bc:ed:02:e0:6b:52:d4:b1:ab:cc:
45:fc:f1:21:71:31:c1:e6:bb:44:6f:e1:91:a8:96:2d:94:12:
f0:29:2b:8e:52:7a:ae:8c:2d:e7:8f:dd:bf:38:6f:94:7d:da:
a4:5c:c1:95:03:1d:88:ac:c4:3f:2a:bb:c9:86:ad:34:f4:fe:
66:ee:b1:cb:c7:f9:ab:0d:66:ad:05:fb:0a:94:c4:e4:de:6a:
00:9e:2c:f0:f6:62:72:4e:f4:7f:22:8e:7d:d0:d4:09:27:ce:
9e:30:5a:33:aa:ed:8b:10:5e:05:d9:92:f9:67:ee:fb:e5:62:
de:d6:4f:ac:3f:87:2a:e7:40:05:de:d4:21:00:e2:43:ae:69:
27:9e:25:c5:4d:39:d1:62:1b:da:f7:46:03:aa:23:0e:13:56:
64:86:25:2c:24:e5:6c:98:8a:06:cd:ca:cd:ba:df:12:bb:90:
3a:20:d1:a1:93:f0:f2:de:11:8f:e1:01:91:af:a0:9e:2e:9e:
4c:e9:9f:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org