Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/X8h5-cQWN45P0LJtoj1YmPutDnE.roa
File: X8h5-cQWN45P0LJtoj1YmPutDnE.roa (raw, json)
Hash identifier: taMoMUHV/ZDXxvUN7NlZetHTMc9MUtIs4zb5GNBiR8A=
Subject key identifier: 5F:C8:79:F9:C4:16:37:8E:4F:D0:B2:6D:A2:3D:58:98:FB:AD:0E:71
Certificate issuer: /CN=cbf6f8aeabeb3167d1192d628480c7e2bfd97248
Certificate serial: 018570C2B63B184828979061256CD0469433
Authority key identifier: CB:F6:F8:AE:AB:EB:31:67:D1:19:2D:62:84:80:C7:E2:BF:D9:72:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y_b4rqvrMWfRGS1ihIDH4r_Zckg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/X8h5-cQWN45P0LJtoj1YmPutDnE.roa
Signing time: Mon 02 Jan 2023 04:34:46 +0000
ROA not before: Mon 02 Jan 2023 04:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200062
IP address blocks: 91.103.12.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:b6:3b:18:48:28:97:90:61:25:6c:d0:46:94:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cbf6f8aeabeb3167d1192d628480c7e2bfd97248
Validity
Not Before: Jan 2 04:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fc879f9c416378e4fd0b26da23d5898fbad0e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e4:27:00:6f:9a:7f:41:af:e2:bc:57:d9:28:
53:51:ad:6b:09:ea:fb:c4:02:23:5b:aa:3f:21:c1:
58:e5:1e:fd:49:e2:46:92:8c:72:5e:f3:6d:b5:da:
d7:59:63:00:0c:8d:09:93:20:fd:98:e6:4e:fb:a9:
1d:8c:c0:61:eb:84:4e:b8:a5:3d:9b:96:86:1f:59:
ec:33:b8:85:13:c8:ac:13:f0:1b:e1:54:01:df:b0:
24:a8:95:53:5b:2b:66:3d:cd:55:49:bc:f5:b7:ff:
83:6e:93:0e:32:14:48:18:cd:44:2f:f3:29:d8:e2:
11:18:90:36:eb:c7:54:03:4b:e8:0a:18:81:35:60:
fd:02:dc:d2:10:91:a4:cf:60:86:62:fa:2b:b6:f2:
7f:02:b6:33:5a:06:2c:ca:68:f4:c0:0f:18:07:38:
5b:63:34:af:b1:14:8d:a1:e2:34:41:50:8c:52:b4:
6c:cd:56:bf:67:ae:c6:ac:bd:05:07:e3:d6:ec:5f:
35:0f:a5:95:c2:51:79:2f:3b:bd:9a:5d:c1:e7:dd:
4c:39:37:dc:cc:d5:dc:d7:48:d1:0a:88:b4:dc:0e:
1a:53:fc:ab:d3:b1:44:a7:5c:b1:7b:cb:42:5c:03:
f3:62:ea:41:81:3e:4d:32:84:66:a0:09:b8:c3:30:
db:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C8:79:F9:C4:16:37:8E:4F:D0:B2:6D:A2:3D:58:98:FB:AD:0E:71
X509v3 Authority Key Identifier:
keyid:CB:F6:F8:AE:AB:EB:31:67:D1:19:2D:62:84:80:C7:E2:BF:D9:72:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y_b4rqvrMWfRGS1ihIDH4r_Zckg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/X8h5-cQWN45P0LJtoj1YmPutDnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/84e3f6-6931-4693-9579-1b3235babe27/1/y_b4rqvrMWfRGS1ihIDH4r_Zckg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.12.0/22
Signature Algorithm: sha256WithRSAEncryption
92:c9:fa:9d:ef:97:f9:42:b8:82:e1:4c:cd:ef:cd:88:1e:d3:
da:f0:f5:aa:4b:60:e9:ef:7e:4f:d4:e1:74:bd:ac:4d:2a:f4:
44:19:41:50:9e:75:5e:18:07:f6:68:dd:91:28:81:63:25:ad:
75:c7:7f:df:dc:a0:b9:7f:9d:05:83:79:f0:0f:7f:fb:a7:3c:
b2:c4:16:72:17:fe:75:75:5b:c5:7b:1e:96:e6:78:ff:15:a3:
dd:b0:d6:b5:b7:85:c8:6b:7b:64:1a:96:e3:27:95:2b:cd:81:
64:55:0b:df:11:bc:e7:ac:37:9a:d3:33:df:31:57:25:1a:a9:
52:34:8b:b8:80:2f:03:d2:d1:4c:93:26:83:e9:c8:07:19:e7:
9a:8a:7f:b4:c2:1d:6a:a7:be:57:16:37:21:db:a8:af:49:ef:
e5:65:fc:3b:86:e5:1d:61:ef:97:1e:6d:e9:7d:b1:f2:5f:48:
cf:cc:da:85:1a:46:07:be:d4:41:52:c3:10:33:97:ac:82:81:
97:5d:ab:c9:19:f6:95:97:1d:c4:1e:dd:10:b5:fd:5d:03:81:
da:10:86:8c:1c:b0:fe:a8:d0:2a:d2:d1:76:0f:7a:b8:76:0b:
78:23:4c:b5:08:47:e8:5a:d5:2f:6b:5d:65:79:67:3a:b5:b2:
68:0c:5e:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:58 2024 by rpki-client on console-ams.rpki-client.org