Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/d18b5a-40ef-4779-a0e5-aa581d378a7c/1/5YKp-6l8KhptRtniZ38ocj88PXk.roa
File: 5YKp-6l8KhptRtniZ38ocj88PXk.roa (raw, json)
Hash identifier: V75kRnLIN8Y/RwvwaaU9P+IdhMFAk5ADzBxH6s5m7j0=
Subject key identifier: E5:82:A9:FB:A9:7C:2A:1A:6D:46:D9:E2:67:7F:28:72:3F:3C:3D:79
Certificate issuer: /CN=73b981cb6ee79d2df8c89d6a34c554bde3fcc75f
Certificate serial: 018B475B47C982C7C5703B0DA0057526C793
Authority key identifier: 73:B9:81:CB:6E:E7:9D:2D:F8:C8:9D:6A:34:C5:54:BD:E3:FC:C7:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c7mBy27nnS34yJ1qNMVUveP8x18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/d18b5a-40ef-4779-a0e5-aa581d378a7c/1/5YKp-6l8KhptRtniZ38ocj88PXk.roa
Signing time: Thu 19 Oct 2023 09:54:06 +0000
ROA not before: Thu 19 Oct 2023 09:54:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6730
IP address blocks: 91.194.48.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:30:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:47:5b:47:c9:82:c7:c5:70:3b:0d:a0:05:75:26:c7:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73b981cb6ee79d2df8c89d6a34c554bde3fcc75f
Validity
Not Before: Oct 19 09:54:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e582a9fba97c2a1a6d46d9e2677f28723f3c3d79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:7c:95:ce:d5:69:79:38:8b:b5:cd:b6:75:5f:
44:1b:b3:2d:00:55:e2:1a:b5:0e:1b:d1:6a:0b:08:
85:4f:bb:d4:1e:94:b9:78:70:2a:82:35:a1:57:73:
6c:7e:20:0f:02:44:01:c7:73:ae:a6:4c:9b:e2:e3:
43:a5:e1:ab:f0:a8:1e:71:19:40:76:af:51:d3:a1:
bd:b6:e7:07:98:72:a0:33:72:8f:f4:0c:03:52:b6:
88:4e:72:f9:ee:eb:99:ab:4c:53:b5:e5:40:3e:ec:
9c:01:11:97:66:a8:35:8f:03:4b:59:6b:7e:e0:37:
41:7e:de:41:ea:a8:c7:5d:76:69:3b:9b:df:64:30:
49:80:21:12:0f:c5:48:5e:2b:9d:68:f6:7c:87:46:
ad:59:f4:f1:8e:54:57:84:11:5e:00:b0:b5:04:a7:
7b:73:8f:b1:ab:db:1e:30:75:79:06:57:95:21:58:
17:f7:21:3a:87:1d:07:e2:4d:8b:87:72:c6:51:e0:
15:65:0f:6b:51:d3:c5:6e:5c:ae:47:13:98:95:2a:
ab:df:95:f7:b5:78:dc:a0:79:b0:13:b0:ad:4b:68:
b9:8f:56:f5:14:18:77:07:f4:fe:e1:81:c6:3d:6a:
c4:d6:de:b0:df:ad:a3:e9:98:28:24:1c:66:44:66:
33:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:82:A9:FB:A9:7C:2A:1A:6D:46:D9:E2:67:7F:28:72:3F:3C:3D:79
X509v3 Authority Key Identifier:
keyid:73:B9:81:CB:6E:E7:9D:2D:F8:C8:9D:6A:34:C5:54:BD:E3:FC:C7:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7mBy27nnS34yJ1qNMVUveP8x18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d18b5a-40ef-4779-a0e5-aa581d378a7c/1/5YKp-6l8KhptRtniZ38ocj88PXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/d18b5a-40ef-4779-a0e5-aa581d378a7c/1/c7mBy27nnS34yJ1qNMVUveP8x18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.48.0/23
Signature Algorithm: sha256WithRSAEncryption
9c:dc:83:fb:2b:e9:bd:56:f4:56:d8:0b:28:4e:95:88:4a:6f:
cc:42:55:66:b5:a2:68:5a:05:1e:f6:c7:71:0e:21:97:2e:ac:
b2:e3:ed:d7:ef:7e:83:c4:17:92:2e:bc:01:28:17:57:8e:48:
93:b7:c7:7c:59:60:48:6e:f1:08:95:72:08:f6:fe:36:d9:b0:
96:b3:c5:a6:3a:f7:8e:fe:4e:59:b4:1b:ae:a7:bb:38:5b:18:
98:84:f8:5e:99:b0:a9:34:8d:af:35:9f:83:4d:08:66:34:88:
2c:4a:84:df:d9:c6:20:c4:58:94:ff:67:bf:cc:45:b9:ce:0b:
1c:41:10:9f:40:41:d7:2a:ac:a0:77:8c:6c:af:89:35:91:5e:
96:e6:07:df:46:2b:de:31:1f:0b:f5:16:ce:18:6d:0f:d8:47:
95:50:dd:8f:3e:70:02:af:f2:7a:89:f2:fe:49:cb:21:38:01:
34:80:cd:81:4d:89:f7:9c:55:05:b1:28:6c:4e:22:94:ea:d3:
e8:a3:24:9a:4a:46:43:ba:22:b8:92:21:ce:4d:06:e0:17:43:
5e:b8:8e:c4:e4:b6:cc:f5:81:89:19:f1:bb:ab:f0:52:df:8c:
43:c5:b3:28:e3:0a:77:0d:4f:91:c0:45:99:39:26:ba:ad:ea:
fd:40:5c:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:21 2024 by rpki-client on console-fra.rpki-client.org