Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/b8J-tpeMKcJBdqHLwRnPTTU9d9k.roa
File: b8J-tpeMKcJBdqHLwRnPTTU9d9k.roa (raw, json)
Hash identifier: CUoBXksXCafGas5IsO7rf/a2dr/zKD8gwdxvN6jZpkg=
Subject key identifier: 6F:C2:7E:B6:97:8C:29:C2:41:76:A1:CB:C1:19:CF:4D:35:3D:77:D9
Certificate issuer: /CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Certificate serial: 01856E1437A5F80D3A9B9EAE4FC74983E60B
Authority key identifier: 01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/b8J-tpeMKcJBdqHLwRnPTTU9d9k.roa
Signing time: Sun 01 Jan 2023 16:04:56 +0000
ROA not before: Sun 01 Jan 2023 16:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201446
IP address blocks: 91.126.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:34:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:14:37:a5:f8:0d:3a:9b:9e:ae:4f:c7:49:83:e6:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0170a169b6cd411022279e9ff997f134ff54ab1c
Validity
Not Before: Jan 1 16:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6fc27eb6978c29c24176a1cbc119cf4d353d77d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3d:90:16:44:dd:b8:41:0e:90:63:b0:4f:db:
1d:1a:fb:ff:32:8c:4a:4f:3a:72:a9:dc:00:eb:55:
e8:ce:41:01:e7:cb:89:90:af:87:0d:7e:b1:47:e8:
a4:1f:c9:5d:4e:fb:9f:af:60:91:4d:2e:8b:64:14:
ce:bc:b5:2a:71:d6:04:e8:1c:1d:6c:c3:70:f5:64:
60:fa:ff:3e:5a:67:a3:a6:8c:43:35:ee:07:06:b0:
f1:17:bc:48:9a:e0:9d:d9:81:42:46:64:cf:d7:09:
38:0d:5f:9a:c3:be:c1:fa:62:7d:a9:0a:2b:b3:b6:
96:96:32:cb:82:c5:2d:f6:d5:8a:dc:cd:d4:04:31:
bc:6f:43:db:5f:16:cc:78:ca:b3:49:40:6b:a6:70:
d4:c3:0c:f5:7e:b3:82:b6:c8:49:67:bf:d0:eb:4f:
f8:93:02:07:6d:a6:ca:bf:65:6f:0b:ff:0f:73:c7:
88:18:b9:90:d2:eb:86:58:82:b0:7d:04:06:9d:d7:
70:83:66:67:13:a7:1f:03:e5:ea:7c:d2:60:4e:44:
69:21:1a:8b:74:00:fc:0f:e6:20:78:d7:60:a5:b0:
05:5c:5f:33:55:4c:51:38:64:f0:f9:ab:50:52:2a:
62:23:51:7c:33:91:30:0f:af:01:bb:e0:98:bf:be:
ca:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:C2:7E:B6:97:8C:29:C2:41:76:A1:CB:C1:19:CF:4D:35:3D:77:D9
X509v3 Authority Key Identifier:
keyid:01:70:A1:69:B6:CD:41:10:22:27:9E:9F:F9:97:F1:34:FF:54:AB:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AXChabbNQRAiJ56f-ZfxNP9Uqxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/b8J-tpeMKcJBdqHLwRnPTTU9d9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1e777f-986b-4e34-8d81-7d4bb2380487/1/AXChabbNQRAiJ56f-ZfxNP9Uqxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.126.176.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:61:60:e7:00:ac:27:cf:9a:74:87:04:4d:e8:f3:01:04:6a:
66:f9:d7:3f:c1:b8:10:60:63:19:e1:ac:10:4a:20:f1:27:fa:
bf:26:ab:2b:4f:fc:dd:76:e4:6c:a9:87:a7:93:9d:82:a7:c9:
7a:90:29:62:de:6e:ef:02:47:6f:b8:cf:9e:bc:54:49:9d:d8:
b6:c3:be:88:bd:03:7d:e5:6d:67:21:9b:73:be:3e:c0:ac:df:
fd:36:a5:ec:80:8e:7e:37:a8:91:19:a7:ec:9a:08:69:e5:20:
db:c9:e8:47:40:97:5e:d0:66:84:f1:ed:c7:59:7d:15:24:6d:
8d:fd:aa:64:b0:11:04:57:24:d3:8a:dd:1d:19:d9:9b:f8:11:
f4:34:66:4a:1d:c6:4d:09:4a:14:72:49:25:e3:b3:63:d8:0e:
12:a1:84:d2:2e:dd:6b:08:e4:c3:9a:af:f2:61:b1:8d:45:e4:
a6:ec:dc:bd:50:f7:78:c3:91:d5:47:4a:b0:b2:b0:d3:31:f3:
07:b8:a2:da:ba:6e:be:0c:79:e9:0d:0a:e3:8d:b5:40:f2:9b:
06:6f:fc:0f:d3:65:f3:93:e7:9e:a2:47:8a:7c:ba:d5:c8:11:
b5:f5:35:6e:50:f2:c2:4d:75:fc:88:51:88:6e:79:93:38:2c:
0d:05:2e:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:43 2024 by rpki-client on console-ams.rpki-client.org