Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/LJfMU2CynYcSHlFN9vKiUR7rGds.roa
File: LJfMU2CynYcSHlFN9vKiUR7rGds.roa (raw, json)
Hash identifier: YfsiB96HupN8kWxq3yNhi6xbd2geP9uZJB/3TOJjDgo=
Subject key identifier: 2C:97:CC:53:60:B2:9D:87:12:1E:51:4D:F6:F2:A2:51:1E:EB:19:DB
Certificate issuer: /CN=30be52bae4d48dddc9cbec2076aba91c953ae12e
Certificate serial: 01856CEF130C0B5D4DB8D0C8216CB588642D
Authority key identifier: 30:BE:52:BA:E4:D4:8D:DD:C9:CB:EC:20:76:AB:A9:1C:95:3A:E1:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ML5SuuTUjd3Jy-wgdqupHJU64S4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/LJfMU2CynYcSHlFN9vKiUR7rGds.roa
Signing time: Sun 01 Jan 2023 10:44:45 +0000
ROA not before: Sun 01 Jan 2023 10:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43305
IP address blocks: 91.198.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:ef:13:0c:0b:5d:4d:b8:d0:c8:21:6c:b5:88:64:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30be52bae4d48dddc9cbec2076aba91c953ae12e
Validity
Not Before: Jan 1 10:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c97cc5360b29d87121e514df6f2a2511eeb19db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:5e:d9:43:8c:fc:ad:09:06:52:1d:32:a4:5c:
4d:b8:6e:3c:6b:12:c3:d9:c5:2e:85:bc:d4:e8:18:
49:6a:95:03:8e:86:84:4c:f9:f6:a2:58:61:76:a9:
a9:48:cf:9a:6b:ca:a1:ef:4e:32:3f:82:05:45:3a:
f2:e6:76:33:02:a7:b5:4c:39:47:47:51:01:57:07:
f1:00:58:c2:13:c4:71:1d:bd:ca:12:6c:7f:ec:40:
0d:f6:36:32:39:9e:28:e0:56:06:50:d1:32:8c:4a:
b0:c0:36:b1:56:47:f2:aa:6b:c3:3a:6c:7b:9c:fd:
d7:93:6c:bd:7c:98:fb:79:cb:20:88:e7:b4:14:90:
50:51:6d:97:38:7d:bc:78:40:d7:e2:08:5d:33:39:
af:26:7e:98:b3:ee:a6:a5:ee:10:eb:2d:fc:4e:1e:
f5:aa:d7:77:a8:d6:f7:c0:bd:9f:eb:10:8d:3e:77:
9c:39:8c:4d:b7:98:7a:b8:b7:5e:ef:a4:37:7a:b7:
09:af:66:a6:11:ef:d6:5d:9f:0d:e0:6e:07:b1:2a:
5c:b5:de:bf:77:e9:b2:b3:0f:b8:15:4d:ff:21:d7:
7f:a0:13:f7:d6:f9:23:af:6b:ae:0d:79:a3:fd:de:
99:84:25:fd:ca:36:d3:c9:37:16:ca:ef:18:48:96:
e3:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:97:CC:53:60:B2:9D:87:12:1E:51:4D:F6:F2:A2:51:1E:EB:19:DB
X509v3 Authority Key Identifier:
keyid:30:BE:52:BA:E4:D4:8D:DD:C9:CB:EC:20:76:AB:A9:1C:95:3A:E1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ML5SuuTUjd3Jy-wgdqupHJU64S4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/LJfMU2CynYcSHlFN9vKiUR7rGds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/5f575f-992c-48e9-9158-d80f5ea62d44/1/ML5SuuTUjd3Jy-wgdqupHJU64S4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.35.0/24
Signature Algorithm: sha256WithRSAEncryption
26:6c:dc:63:d6:32:78:26:26:55:29:09:77:f8:f3:87:2b:2b:
69:13:8b:11:df:fc:79:86:b0:f4:f7:30:3d:de:83:d8:4e:cb:
b3:20:8c:33:01:ef:82:b9:19:19:a1:21:dd:2b:66:f6:f5:93:
d2:1c:01:a7:2c:1b:61:32:d4:74:f7:56:e0:c2:aa:93:6e:55:
56:16:23:e0:6b:81:0d:aa:4d:e7:15:ad:5e:fa:d0:c8:cd:1a:
a2:8e:9d:1c:bd:33:72:f8:28:02:33:e9:38:0e:35:87:45:9b:
71:10:c3:f6:0e:f6:c5:51:8d:65:10:f8:4c:04:70:d1:12:06:
83:ef:55:ab:ba:03:03:4e:e9:72:1f:25:c2:16:5f:59:86:54:
a0:78:c2:65:4f:25:53:82:f1:a0:64:be:85:d2:61:d9:87:1b:
bb:b2:ed:ed:79:4d:4b:02:1c:33:46:83:b2:88:09:ab:2c:00:
06:67:8d:83:4c:7e:79:ed:91:c4:3a:50:6f:97:3e:d6:42:2f:
6f:93:ab:bf:99:ef:1e:26:42:c1:70:96:b4:b2:56:07:9c:8f:
c8:ea:1b:43:c7:e5:5d:6a:da:c6:30:94:26:b5:52:5d:45:13:
45:07:3b:cd:e7:8e:d3:69:da:9c:a4:03:d7:ab:49:8c:4d:57:
57:4e:28:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:41 2024 by rpki-client on console-fra.rpki-client.org