Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/UOElGs80H5PvY6fZfGZfOm14QfM.roa
File: UOElGs80H5PvY6fZfGZfOm14QfM.roa (raw, json)
Hash identifier: txcSHIDAAsdWLpjMy5vgaQB64WJGj3MR4sDoHx5yzjc=
Subject key identifier: 50:E1:25:1A:CF:34:1F:93:EF:63:A7:D9:7C:66:5F:3A:6D:78:41:F3
Certificate issuer: /CN=d895bee5605630f7048b1ffb3f003b39d29e47a0
Certificate serial: 018DAE978430346D177C2AAD47AED7E17D9C
Authority key identifier: D8:95:BE:E5:60:56:30:F7:04:8B:1F:FB:3F:00:3B:39:D2:9E:47:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JW-5WBWMPcEix_7PwA7OdKeR6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/UOElGs80H5PvY6fZfGZfOm14QfM.roa
Signing time: Thu 15 Feb 2024 21:06:21 +0000
ROA not before: Thu 15 Feb 2024 21:06:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 53260
IP address blocks: 91.217.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 16 Feb 2024 11:54:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:ae:97:84:30:34:6d:17:7c:2a:ad:47:ae:d7:e1:7d:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d895bee5605630f7048b1ffb3f003b39d29e47a0
Validity
Not Before: Feb 15 21:06:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50e1251acf341f93ef63a7d97c665f3a6d7841f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:90:86:43:9c:dc:f3:45:c9:44:4d:f5:3a:79:
d3:e2:52:7a:06:8a:9d:1a:88:06:40:63:b2:db:52:
3e:64:b1:f5:24:dc:0a:9c:b8:ad:ae:9f:2e:40:3b:
60:12:4d:b9:ba:a7:fa:ad:88:d2:1d:e4:6b:09:18:
3e:6e:7e:d6:25:b1:b1:bd:cc:31:fe:23:9d:e0:d1:
d3:06:35:d3:7b:cf:c0:fa:7c:16:38:94:c9:45:be:
c2:3b:10:37:7b:71:aa:ab:77:c0:be:fe:0f:49:16:
4c:04:cd:24:cf:aa:6c:d4:f6:5a:1b:28:de:2a:19:
be:72:02:b6:2a:c8:4b:41:04:1a:f2:1d:f6:6f:e0:
ee:40:07:16:8c:02:8c:80:eb:00:8e:f2:2b:96:65:
2d:69:18:83:d5:4f:e3:f9:7b:71:3c:14:e5:2b:d7:
6e:96:98:54:5f:f4:4f:ce:ac:a5:ce:7f:d3:be:2c:
aa:8e:cc:dd:d5:26:7b:02:15:5c:18:fe:f6:8d:cf:
08:e8:db:03:8f:0b:ba:6a:9b:3b:79:0d:3d:b0:6f:
45:ee:38:69:02:c7:b9:a8:1d:89:16:ca:e9:3a:e1:
28:f1:f4:fc:65:60:02:39:11:82:7f:95:11:18:ec:
14:39:b2:ee:9e:fa:0e:45:66:41:2d:1d:d0:fd:2c:
60:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:E1:25:1A:CF:34:1F:93:EF:63:A7:D9:7C:66:5F:3A:6D:78:41:F3
X509v3 Authority Key Identifier:
keyid:D8:95:BE:E5:60:56:30:F7:04:8B:1F:FB:3F:00:3B:39:D2:9E:47:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JW-5WBWMPcEix_7PwA7OdKeR6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/UOElGs80H5PvY6fZfGZfOm14QfM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/2JW-5WBWMPcEix_7PwA7OdKeR6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.241.0/24
Signature Algorithm: sha256WithRSAEncryption
83:0c:d6:3f:11:44:07:78:47:e6:bb:d1:6e:e8:f0:69:4f:52:
64:de:b0:18:af:da:bf:1e:b2:24:b1:88:b1:91:f8:51:6a:d6:
59:31:22:3d:7c:08:a9:bc:a9:93:c9:18:96:39:06:a0:55:51:
0c:96:a2:5c:b1:f8:a0:d2:bc:71:37:df:48:da:65:e6:84:c4:
4a:ef:24:da:eb:2f:d3:64:14:a2:f8:1d:05:77:a4:8c:57:39:
8d:a6:54:6a:16:e6:d8:71:46:35:f1:d0:f3:7a:6d:1a:eb:a1:
46:c6:91:f6:1b:79:56:94:7d:ef:f0:3d:6f:8a:c0:5e:2c:c1:
25:5b:84:68:21:06:78:97:fd:5d:53:44:0a:6e:32:d3:d5:2b:
58:45:2c:9b:6d:c5:a0:27:76:6e:c8:df:69:21:bf:09:36:ee:
cd:b3:a3:2d:0d:c3:a8:b4:67:21:39:18:51:20:28:95:38:79:
3e:95:1b:87:2d:44:4c:4d:f7:92:18:81:62:d0:9b:7b:61:66:
a4:ef:73:ea:c2:a3:3a:1c:d1:1d:e7:e5:90:a5:c3:e4:66:71:
68:64:48:63:92:d5:da:90:67:e0:48:d1:e7:4d:e1:8a:7b:a7:
70:07:83:81:31:c3:2b:8f:df:32:dd:9c:07:a9:5e:bc:f2:07:
86:82:b4:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:45 2024 by rpki-client on console-fra.rpki-client.org