Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/U5CbrMoS_erDOEwg3DS19RBh2aU.roa
File: U5CbrMoS_erDOEwg3DS19RBh2aU.roa (raw, json)
Hash identifier: okpKsB1joIAFLQJ0lVCo07yD/vtSj/HDCsN9R9BkAD8=
Subject key identifier: 53:90:9B:AC:CA:12:FD:EA:C3:38:4C:20:DC:34:B5:F5:10:61:D9:A5
Certificate issuer: /CN=0250181955d5411f506eba42badb9e5aa5dd8443
Certificate serial: 01856C7822AA55A999E5E8EA7347B4042CA5
Authority key identifier: 02:50:18:19:55:D5:41:1F:50:6E:BA:42:BA:DB:9E:5A:A5:DD:84:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AlAYGVXVQR9QbrpCutueWqXdhEM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/U5CbrMoS_erDOEwg3DS19RBh2aU.roa
Signing time: Sun 01 Jan 2023 08:34:50 +0000
ROA not before: Sun 01 Jan 2023 08:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 91.208.212.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:22:aa:55:a9:99:e5:e8:ea:73:47:b4:04:2c:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0250181955d5411f506eba42badb9e5aa5dd8443
Validity
Not Before: Jan 1 08:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53909bacca12fdeac3384c20dc34b5f51061d9a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:aa:c1:32:46:ba:cd:74:f8:51:8b:2a:4e:16:
48:88:07:1c:37:e9:bd:09:de:be:84:4f:9d:a8:e8:
70:f6:cb:2d:89:69:c4:47:53:8d:6e:b2:74:0b:fa:
28:20:cf:b1:b7:6c:0b:53:9e:c0:78:f8:a4:8f:bf:
e0:d3:46:9b:17:58:3c:d7:86:2c:7c:b6:8a:64:ac:
2b:44:8f:d5:57:27:3b:31:72:7e:57:b5:aa:c9:df:
c2:30:4a:bd:cb:cc:be:1e:70:e6:0d:a4:14:c5:da:
16:6b:d9:20:0f:24:0e:55:e7:de:8f:47:6f:f5:d7:
b3:d8:8d:53:10:01:eb:4c:c2:41:14:4a:a9:83:2a:
9a:bf:07:88:e8:66:11:86:3e:b6:8d:5a:bf:7b:e9:
0e:0b:e6:b1:79:4f:f8:88:04:83:b2:29:11:f2:16:
97:28:62:64:89:5d:b3:71:ef:43:ce:0c:4f:2b:26:
36:3f:a8:d1:1d:ec:4e:f8:2f:6b:ea:1d:77:1f:07:
5f:da:1c:08:c6:af:75:34:d8:c1:ee:02:eb:44:d4:
11:f4:af:61:82:01:07:1e:c8:d6:98:40:ef:44:dd:
ec:4e:d3:fd:03:4c:b5:44:b2:98:d7:26:84:90:60:
3c:28:01:e4:3c:01:98:f8:90:ae:f8:8e:68:4d:c5:
ec:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:90:9B:AC:CA:12:FD:EA:C3:38:4C:20:DC:34:B5:F5:10:61:D9:A5
X509v3 Authority Key Identifier:
keyid:02:50:18:19:55:D5:41:1F:50:6E:BA:42:BA:DB:9E:5A:A5:DD:84:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AlAYGVXVQR9QbrpCutueWqXdhEM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/U5CbrMoS_erDOEwg3DS19RBh2aU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/b10771-066a-44b0-91f0-57f209f9506a/1/AlAYGVXVQR9QbrpCutueWqXdhEM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.212.0/24
Signature Algorithm: sha256WithRSAEncryption
06:27:82:1e:e8:4e:c3:2b:de:1d:7e:ed:da:c0:6f:8b:eb:b5:
66:d0:fe:3f:93:04:91:f6:d9:80:81:06:a6:e5:ec:51:11:4a:
1d:04:7b:83:50:3c:70:f8:1a:0d:e8:e2:8e:2a:ab:04:dd:d4:
45:d6:c8:b1:0a:dc:7a:8b:92:56:6e:6d:3f:a9:9a:00:45:41:
9d:a5:5d:1e:06:70:5c:36:00:9b:25:00:3e:63:a8:24:6e:2c:
3a:ed:24:76:57:88:f9:0c:6f:50:e1:05:4c:01:9a:c6:bb:7f:
c5:1b:31:6d:c1:a4:54:7f:34:70:7f:4f:c2:4e:00:55:d1:50:
42:eb:2a:cb:3e:d1:98:01:cf:f8:21:40:f1:60:ae:d1:ab:fd:
de:91:bc:cc:33:be:b5:bd:e0:ee:c3:97:36:01:b1:f9:50:9f:
9a:e0:46:97:b4:de:b6:73:46:74:76:01:29:bc:24:3a:40:9f:
40:11:07:12:1a:c4:b6:a3:06:15:03:dc:58:8a:5a:bb:47:2e:
c3:e2:54:f5:90:17:65:9f:68:31:87:bc:cd:51:3c:ad:b7:c8:
60:1d:f3:e1:19:a9:90:cb:85:48:67:0f:cb:2a:53:f2:92:50:
70:c5:e8:c9:67:9b:c5:e3:b9:f7:92:62:ba:3a:be:7f:68:60:
c3:a8:e5:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:09 2024 by rpki-client on console-fra.rpki-client.org