Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/5wEaDdKNbFRaBU6PoaKFt4OTb1Q.roa
File: 5wEaDdKNbFRaBU6PoaKFt4OTb1Q.roa (raw, json)
Hash identifier: mH3FSm3pbwAh6gLjqE/BFd752c/tJC7BckXcpuEOptg=
Subject key identifier: E7:01:1A:0D:D2:8D:6C:54:5A:05:4E:8F:A1:A2:85:B7:83:93:6F:54
Certificate issuer: /CN=7870561798e5c8a26707620df082ef3778d7163d
Certificate serial: 018572BA8DC9A0E99363B1DD0643D675B114
Authority key identifier: 78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/5wEaDdKNbFRaBU6PoaKFt4OTb1Q.roa
Signing time: Mon 02 Jan 2023 13:45:06 +0000
ROA not before: Mon 02 Jan 2023 13:45:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49964
IP address blocks: 91.220.102.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:8d:c9:a0:e9:93:63:b1:dd:06:43:d6:75:b1:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7870561798e5c8a26707620df082ef3778d7163d
Validity
Not Before: Jan 2 13:45:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7011a0dd28d6c545a054e8fa1a285b783936f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:12:9f:7b:62:3e:9b:c9:71:59:e1:fa:be:16:
bf:0e:38:2e:56:90:33:1e:94:88:a0:ab:0a:50:76:
01:a6:d5:0f:b2:77:03:a6:e2:ae:a9:06:3d:2f:11:
c1:24:58:57:d9:21:0f:dd:4b:3b:dd:c3:05:18:39:
60:56:55:e4:70:ec:f5:de:ac:54:f8:1d:83:0e:2a:
08:c2:6c:3a:fa:05:ee:0f:67:cf:24:5f:7f:3b:76:
d8:2e:9f:7a:9a:94:e7:02:4b:51:a7:bf:d3:b8:90:
29:c9:81:eb:ac:0e:e8:a1:04:c7:72:14:96:08:fb:
1b:a4:1f:a0:14:96:13:94:8d:8f:9b:54:29:04:21:
4d:70:c3:39:36:9d:cb:73:0e:b5:31:89:b6:2a:bc:
40:b0:3d:55:d5:fa:04:b1:a1:b9:c2:c5:01:96:b5:
b1:21:a0:b4:b0:b7:bf:4f:b9:4b:31:3d:7b:2b:01:
0a:08:76:15:88:cf:4c:bb:98:79:6d:49:d2:80:83:
59:14:ef:29:d4:bf:50:f1:59:b2:4b:03:fb:0f:3f:
02:1d:e5:c0:cb:53:08:bf:56:9b:fb:61:d3:8a:22:
7c:c4:98:c4:d9:24:4f:e7:25:c4:01:80:f2:92:19:
dd:d5:66:15:90:7a:2d:b1:69:16:0a:84:2d:38:e0:
b6:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:01:1A:0D:D2:8D:6C:54:5A:05:4E:8F:A1:A2:85:B7:83:93:6F:54
X509v3 Authority Key Identifier:
keyid:78:70:56:17:98:E5:C8:A2:67:07:62:0D:F0:82:EF:37:78:D7:16:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBWF5jlyKJnB2IN8ILvN3jXFj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/5wEaDdKNbFRaBU6PoaKFt4OTb1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/feee89-1805-4bbe-a7dd-dacfbf367b1a/1/eHBWF5jlyKJnB2IN8ILvN3jXFj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.102.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:ff:ad:18:70:a3:20:be:87:4d:63:28:78:db:45:b7:43:2e:
be:47:52:f6:d6:5c:ac:f8:57:3a:b1:ef:8f:05:bc:b2:2f:ce:
78:7c:7f:92:d9:28:aa:fc:85:d6:1e:0a:04:1d:45:90:94:ee:
2f:44:98:53:6b:3d:6c:b6:34:82:38:29:b7:6d:81:49:72:45:
2a:01:96:48:88:91:49:80:db:4b:20:84:97:59:87:69:a6:95:
df:d4:35:ff:bf:f8:50:a1:88:77:ca:f0:32:f1:ce:49:1d:d9:
09:2f:5d:b5:21:ea:9a:f0:fb:7d:a9:d2:ac:fd:3b:72:19:e1:
00:83:84:cb:df:b3:d6:1f:df:94:7d:e2:55:60:65:64:8b:1d:
94:89:d9:70:0e:eb:50:a7:78:54:ef:33:fd:79:b1:a9:1d:6d:
3d:e1:2d:62:87:e7:ae:6c:3f:4c:01:4b:56:d2:39:1c:35:08:
20:cc:2a:1e:7a:d2:10:68:5d:1e:0b:90:49:b8:57:6f:15:29:
0f:14:a6:4c:49:18:e0:49:37:0f:eb:61:dc:89:6c:10:5c:42:
e0:fe:32:1e:ff:2e:bd:12:ca:74:b8:97:4f:15:b3:ae:92:68:
ff:f4:5e:1b:b3:c1:f6:4b:23:f2:7e:82:bd:3c:af:40:fd:a7:
1d:e3:e4:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:01 2024 by rpki-client on console-ams.rpki-client.org