Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/bSAUaP_EI53UblixQVrD_IFkC98.roa
File: bSAUaP_EI53UblixQVrD_IFkC98.roa (raw, json)
Hash identifier: OP4EgHKQ+uJyXFZKK/HsfFCWMrm/tT0ncc603HLRT4I=
Subject key identifier: 6D:20:14:68:FF:C4:23:9D:D4:6E:58:B1:41:5A:C3:FC:81:64:0B:DF
Certificate issuer: /CN=11c79e8a27cde9911bd7da63873c5cc558dbd531
Certificate serial: 01856D016CF02D521C3CC08EAADDC05B76D1
Authority key identifier: 11:C7:9E:8A:27:CD:E9:91:1B:D7:DA:63:87:3C:5C:C5:58:DB:D5:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EceeiifN6ZEb19pjhzxcxVjb1TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/bSAUaP_EI53UblixQVrD_IFkC98.roa
Signing time: Sun 01 Jan 2023 11:04:47 +0000
ROA not before: Sun 01 Jan 2023 11:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212684
IP address blocks: 107.150.165.0/24 maxlen: 24
91.192.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:6c:f0:2d:52:1c:3c:c0:8e:aa:dd:c0:5b:76:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11c79e8a27cde9911bd7da63873c5cc558dbd531
Validity
Not Before: Jan 1 11:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d201468ffc4239dd46e58b1415ac3fc81640bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:a3:fe:b1:1d:f8:d9:80:d0:33:54:3a:08:69:
18:ad:8e:f8:e0:13:72:61:47:fd:c1:92:01:7a:6a:
67:2d:35:5e:13:0d:f4:70:c6:d7:43:96:cb:19:5e:
1f:c0:d4:c2:bc:bc:e9:24:b8:49:96:88:75:47:22:
e8:18:31:99:35:44:1e:6d:c9:3c:87:40:c5:c3:a9:
72:af:cc:31:3a:83:ee:0c:fe:df:1a:81:d6:e8:d2:
da:6a:54:21:c2:f4:6a:0b:8c:44:84:31:a6:45:02:
f5:ef:93:54:60:0d:04:b0:d2:c9:48:d5:17:e9:64:
3b:c7:b1:f5:8b:c1:81:c2:b8:b1:6b:a3:5f:e5:ed:
d1:68:ae:c3:20:24:d8:70:f3:de:04:05:b7:ba:c1:
f0:2d:a0:93:8a:b4:6a:8a:f4:65:73:ae:1d:26:ef:
77:2c:ca:49:db:fc:ef:a2:95:66:b1:46:a1:46:a3:
31:ca:17:d5:9c:d0:90:ba:7d:3f:08:05:1f:bc:80:
a3:cb:f0:3b:b1:db:91:76:4d:0c:4f:b8:b5:e2:a5:
41:22:0e:88:29:6c:9b:6a:e4:f0:c4:7e:eb:6a:be:
b6:40:f8:4e:a6:96:ed:32:a9:e2:e4:a9:b5:88:0a:
b1:d7:ac:ff:9a:a8:13:48:78:63:ad:63:c7:9e:cf:
3a:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:20:14:68:FF:C4:23:9D:D4:6E:58:B1:41:5A:C3:FC:81:64:0B:DF
X509v3 Authority Key Identifier:
keyid:11:C7:9E:8A:27:CD:E9:91:1B:D7:DA:63:87:3C:5C:C5:58:DB:D5:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EceeiifN6ZEb19pjhzxcxVjb1TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/bSAUaP_EI53UblixQVrD_IFkC98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/414e5a-52f8-4845-b1bb-b9930510d0a0/1/EceeiifN6ZEb19pjhzxcxVjb1TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.9.0/24
107.150.165.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:aa:be:c5:45:aa:2a:09:b8:5e:ac:3a:be:16:b2:29:5f:5d:
3d:f1:55:76:92:b6:41:5b:4a:81:c8:d9:22:ba:0a:10:c9:4f:
5a:b6:fa:dc:1a:7f:3d:2d:74:48:6c:bc:57:6e:98:2e:3f:fa:
c4:19:ac:b5:90:9f:0c:d6:fa:d8:77:24:3a:17:6a:d4:0b:ac:
7f:13:02:e3:0c:5a:21:70:46:d6:c8:e1:29:6f:6b:15:1d:af:
fe:d0:70:00:a0:84:df:b7:87:32:17:f4:98:06:ca:52:47:71:
2a:59:dd:68:55:a1:84:81:6d:f6:a7:c8:ee:4d:1d:be:04:08:
2f:a2:4d:b7:76:6d:56:25:41:1b:70:70:82:df:02:f0:ee:54:
bd:f4:1d:a5:28:ee:f4:e7:37:c1:47:d2:70:73:43:e9:3c:45:
c2:bd:de:68:5b:dd:66:dd:71:39:45:26:39:b3:6b:27:dc:38:
34:c7:27:93:c6:16:0e:83:7a:61:61:cf:d8:83:88:b0:22:7b:
98:78:d4:99:76:a1:88:ee:3a:89:5a:94:46:c8:4c:c9:09:90:
39:bc:b1:da:c2:35:15:6b:30:fd:33:f8:94:de:64:fe:3c:a1:
26:7c:a2:b5:ca:22:60:96:53:25:5a:69:0d:b5:29:a1:ec:83:
32:70:f3:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:55 2024 by rpki-client on console-fra.rpki-client.org