Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/lFP8_4chU7drZuQ_CXubty5Wgrs.roa
File: lFP8_4chU7drZuQ_CXubty5Wgrs.roa (raw, json)
Hash identifier: bKh7vriBsl1To+TMZLCB5GsmzqdoHni0c3BalK6OPVM=
Subject key identifier: 94:53:FC:FF:87:21:53:B7:6B:66:E4:3F:09:7B:9B:B7:2E:56:82:BB
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 01874D6591768084EDE57461C115DADF9725
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/lFP8_4chU7drZuQ_CXubty5Wgrs.roa
Signing time: Tue 04 Apr 2023 17:51:54 +0000
ROA not before: Tue 04 Apr 2023 17:51:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49434
IP address blocks: 91.231.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:4d:65:91:76:80:84:ed:e5:74:61:c1:15:da:df:97:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Apr 4 17:51:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9453fcff872153b76b66e43f097b9bb72e5682bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:cd:c8:28:72:6c:5d:2c:1e:a7:49:c7:ed:2f:
58:c6:0c:26:2d:ac:78:87:bf:29:b4:25:a2:b6:58:
98:f5:1b:e3:42:cb:36:e3:dd:d6:4c:b2:49:75:be:
f2:61:d1:20:c3:77:84:d5:58:35:ac:d4:67:5c:39:
f2:24:b5:63:3b:7e:67:29:e6:f9:ea:e4:6b:e1:c9:
8d:7b:7a:5d:e6:2c:9d:28:f2:c0:e5:6b:ea:e1:13:
4c:1f:fb:84:39:87:6c:a1:91:10:a2:8f:61:91:3b:
5e:45:6b:74:8c:bc:f1:3c:be:d3:ae:de:13:f2:bb:
56:8f:f1:ee:db:f5:c9:51:5e:6a:f9:fa:af:7d:ea:
0c:fd:7b:6f:82:74:23:81:d9:19:67:85:0d:53:2f:
be:b1:95:26:9a:8a:39:ef:2c:8c:3d:03:94:c2:41:
e9:5b:88:01:9a:db:22:35:67:eb:ea:f7:96:e2:91:
54:cb:7f:29:8e:ed:ff:eb:7d:33:2e:5a:13:08:d4:
4c:13:47:09:ac:e8:be:37:24:f0:5d:e1:7e:e0:73:
71:43:ec:6c:ce:7b:a7:d7:8b:1c:55:c6:a6:67:d9:
d7:06:9e:fa:f5:c1:8d:f8:39:e4:44:5f:4c:92:7c:
07:d4:37:56:5a:74:7b:42:f9:89:ea:63:6d:c6:47:
3d:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:53:FC:FF:87:21:53:B7:6B:66:E4:3F:09:7B:9B:B7:2E:56:82:BB
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/lFP8_4chU7drZuQ_CXubty5Wgrs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
Signature Algorithm: sha256WithRSAEncryption
62:d2:50:3f:1d:a6:7e:23:cb:be:71:31:a4:3e:7c:32:3d:39:
fa:a0:4a:aa:3b:03:c6:c3:16:d8:8a:9d:26:1c:fd:38:f5:11:
94:ca:50:05:7a:34:40:b7:c3:45:53:60:ac:44:b8:c5:f4:f1:
c4:74:29:53:bd:c6:14:36:4b:1e:41:e1:8d:8b:df:ec:54:d5:
29:02:b1:25:12:d1:5e:f0:32:3d:65:56:8b:4b:22:2b:58:2f:
d4:f2:0e:c7:e7:50:bb:93:30:e0:db:17:10:9b:73:c7:d1:09:
c8:23:4d:3c:3f:7b:36:82:ef:47:29:26:4f:9f:e5:d7:c2:07:
2d:17:3e:34:da:72:e9:34:e8:0a:ad:ef:ab:81:d2:1f:2d:7f:
8f:32:f7:00:c7:c9:8d:48:d2:61:6e:cf:82:11:7d:7f:f1:90:
6d:72:8a:56:7b:f5:97:9c:88:c4:dd:05:bc:2f:16:7d:07:d6:
11:bb:06:79:20:d4:0d:45:0e:7e:17:c8:f2:ba:5f:76:e8:3f:
5b:a1:ce:4e:bf:df:30:cf:40:b8:9e:8a:d9:93:ea:84:72:80:
e4:af:04:1a:42:05:7c:55:e3:0c:69:cc:65:bc:07:21:63:a1:
1e:ef:94:bf:80:1f:d8:8e:45:7b:d5:7b:33:22:2a:c4:c4:00:
01:2b:53:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org