Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/UI5cBoQvPYBwdrDUJg1X8QfoXjA.roa
File: UI5cBoQvPYBwdrDUJg1X8QfoXjA.roa (raw, json)
Hash identifier: 5PrFfn1C8YM3hHPfJbPJm4dG27NueZN72iZRMRaxxrU=
Subject key identifier: 50:8E:5C:06:84:2F:3D:80:70:76:B0:D4:26:0D:57:F1:07:E8:5E:30
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0185718C19BC30C022E9171FB85AFFD787F4
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/UI5cBoQvPYBwdrDUJg1X8QfoXjA.roa
Signing time: Mon 02 Jan 2023 08:14:45 +0000
ROA not before: Mon 02 Jan 2023 08:14:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212298
IP address blocks: 91.235.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Aug 2023 01:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:8c:19:bc:30:c0:22:e9:17:1f:b8:5a:ff:d7:87:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 2 08:14:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=508e5c06842f3d807076b0d4260d57f107e85e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7e:b2:1d:a2:26:02:42:05:9d:fb:68:77:6e:
6e:c2:7e:39:b7:8f:de:e3:59:03:a8:a9:9e:11:88:
2d:28:43:20:a2:d8:4e:1f:42:62:16:e4:19:66:8e:
2e:d2:38:e9:47:a3:bf:de:99:77:a9:9a:db:0d:9d:
8b:6b:78:f2:c3:05:e2:cb:b0:c2:a6:f9:ec:ea:fb:
79:cd:8b:1f:83:9f:0e:10:34:79:e6:59:9a:4a:8c:
ff:b6:d8:04:27:43:67:c3:cd:34:1e:c9:d0:40:07:
ef:95:11:a2:eb:96:b1:7a:e8:a7:a9:0e:4d:f3:60:
d4:96:47:c0:9d:a0:59:cf:5d:41:d5:aa:ca:ed:9a:
e2:b1:35:b9:89:fd:d6:c4:e3:cd:bf:97:92:93:6b:
74:af:dc:2e:01:b0:64:8e:ff:e1:f9:65:31:32:06:
a3:38:09:50:db:e6:8d:56:82:39:b7:39:55:b2:3e:
ba:cb:42:32:a0:17:81:70:15:67:65:82:0e:9e:5c:
b0:97:a8:53:7b:89:65:78:35:98:c6:e0:7b:9a:2a:
07:47:12:63:41:6b:93:e3:87:3e:c8:5b:72:23:a7:
d7:e3:45:90:c1:cc:f3:e0:49:a4:d2:80:1a:5c:ca:
32:cb:0b:65:c6:3e:f4:59:89:7b:b0:33:f9:72:90:
fd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:8E:5C:06:84:2F:3D:80:70:76:B0:D4:26:0D:57:F1:07:E8:5E:30
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/UI5cBoQvPYBwdrDUJg1X8QfoXjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:5f:a3:7d:64:dd:af:18:f4:46:fe:5d:6e:80:b6:5b:85:f0:
da:90:8b:fe:f3:61:ab:cb:ef:d2:db:53:31:13:a5:64:43:fc:
2f:29:c9:00:91:9a:d0:4b:13:dc:92:f1:23:ae:3e:c0:a8:f4:
88:22:12:6c:94:69:10:cf:03:c2:e7:13:6b:bd:63:5b:05:94:
7e:17:8a:e3:4d:72:1b:f9:97:c0:82:7d:12:46:51:15:98:78:
cf:69:d3:78:18:a5:1d:db:66:74:27:2e:ed:73:87:49:0b:e3:
5b:68:bf:d0:36:77:0a:7a:5d:2a:fd:88:bc:be:69:d8:6a:32:
58:d4:4e:46:56:4c:71:48:7b:8c:fb:f2:46:9c:3b:48:c9:ad:
6d:e6:06:c8:56:49:a5:4b:db:60:5f:f6:1d:6c:b1:45:70:31:
87:b8:ca:58:01:71:90:4c:25:8a:28:f3:fe:e8:a2:ae:29:de:
a9:8b:44:9f:7f:5b:20:32:73:8a:5d:66:aa:a1:fa:99:e1:ea:
d6:6d:d7:38:d7:3c:2c:ab:cf:d4:1a:50:5f:d9:ba:62:c8:16:
b6:ed:e8:e9:d2:b0:9e:83:ef:79:04:93:b2:2c:76:78:96:1f:
a7:77:a2:ea:90:17:cf:26:7f:2b:96:b5:88:35:50:06:95:bd:
f3:8b:d4:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org