Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/tAxFal7c5cB5n9giY_A_mf4T41g.roa
File: tAxFal7c5cB5n9giY_A_mf4T41g.roa (raw, json)
Hash identifier: BcfIe/ouaRt+6CefjoPCgsGM97cNpyl4N7feIswB0Ic=
Subject key identifier: B4:0C:45:6A:5E:DC:E5:C0:79:9F:D8:22:63:F0:3F:99:FE:13:E3:58
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 018CC57E00C2134802AA3C24A53E6FD0864D
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/tAxFal7c5cB5n9giY_A_mf4T41g.roa
Signing time: Mon 01 Jan 2024 14:46:58 +0000
ROA not before: Mon 01 Jan 2024 14:46:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16276
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:7e:00:c2:13:48:02:aa:3c:24:a5:3e:6f:d0:86:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Jan 1 14:46:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b40c456a5edce5c0799fd82263f03f99fe13e358
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d8:38:80:09:9c:a7:7c:75:ab:74:81:7b:ff:
59:3e:dc:ee:cf:cc:0c:66:b7:e4:54:7b:b5:bd:a9:
30:91:ef:3f:eb:c0:21:53:53:40:ba:5f:d1:09:9c:
9c:8f:00:2e:b9:f7:65:0e:cc:21:a9:7a:c7:12:a5:
e7:68:ed:f2:ba:a8:c4:53:07:fa:d4:45:d1:c0:cc:
ae:8e:fe:86:03:97:4a:7c:27:82:29:fe:b3:3b:6f:
90:52:9c:b6:2f:7c:13:ba:80:2d:65:f5:e7:80:96:
c3:c9:04:e5:b4:09:5a:17:0c:da:d3:92:79:77:41:
4f:56:52:68:de:b6:fa:07:d4:4f:66:7f:f3:62:36:
3a:5c:8c:91:31:9e:1d:cd:9b:a9:f3:42:25:9c:7b:
e7:15:d5:32:e7:8f:e6:d9:a1:72:b8:2f:d9:71:bb:
c3:87:6c:e6:85:72:92:21:d7:9a:ba:36:4b:63:b7:
ac:95:f6:30:4d:4c:34:fb:f5:4d:14:dc:d6:52:48:
fb:bc:a0:35:62:e0:8e:73:fd:8f:c5:09:53:b9:10:
98:c7:89:e7:f3:17:1b:84:03:38:c9:17:cc:b8:00:
87:4f:8a:6e:37:42:03:d4:c5:c1:e6:e3:c7:2d:59:
7d:d8:05:bb:29:6b:46:97:1f:f7:62:19:0f:e6:31:
19:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:0C:45:6A:5E:DC:E5:C0:79:9F:D8:22:63:F0:3F:99:FE:13:E3:58
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/tAxFal7c5cB5n9giY_A_mf4T41g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
84:55:70:9a:02:5a:b7:3f:2a:74:ab:cf:fc:e8:44:1f:eb:58:
9c:c4:e3:ed:98:64:fc:09:7b:4e:6e:ce:23:b9:0c:23:af:5d:
73:5e:bf:3d:6e:71:9a:5b:d6:c2:50:66:58:80:94:9a:3b:58:
52:82:33:50:b4:83:a7:7e:d7:a5:d4:bc:b3:8b:2d:36:d6:48:
91:f2:14:d0:60:6a:8e:5e:db:32:12:fe:2a:32:2c:68:ea:2c:
3f:c3:21:8b:63:6d:e7:4f:c1:c2:b0:81:a6:77:d1:60:a7:76:
2e:7e:63:9b:e5:ac:40:96:d0:61:5c:4a:71:05:ca:28:a0:82:
df:b8:82:17:ac:63:ee:85:c8:f7:dc:80:24:46:27:5f:d7:48:
a7:1b:59:7d:7c:ed:f5:6e:26:17:72:7d:07:e1:b5:4c:01:57:
90:53:f1:c0:14:1d:19:d6:d7:ff:52:87:bb:f0:c0:9b:33:81:
46:df:a1:f6:dd:d1:05:65:f7:69:d1:f9:b8:f5:9f:1e:3c:66:
b5:f8:7a:c9:06:e6:a8:d8:e9:61:fa:27:9a:aa:a8:2e:0a:92:
5f:04:89:9e:4e:cc:bb:52:2e:22:72:47:8c:bb:d1:3b:ce:65:
e8:a4:ae:28:96:e5:16:7f:74:a2:90:42:3c:75:bc:5b:e2:a7:
2a:38:4e:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:25 2024 by rpki-client on console-fra.rpki-client.org