Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/6f3269-587d-4b87-8d3a-e6679e7b795a/1/pum5piuHWF7azESaKe1snOisJQo.roa
File: pum5piuHWF7azESaKe1snOisJQo.roa (raw, json)
Hash identifier: unN2jHNVjsHHy6QeKin7nNOKdvu5WkBjDXvQVoYR6sU=
Subject key identifier: A6:E9:B9:A6:2B:87:58:5E:DA:CC:44:9A:29:ED:6C:9C:E8:AC:25:0A
Certificate issuer: /CN=68637081ca7c2eba41010abeaad64a7c61f6a113
Certificate serial: 01895EC4A136AD9EE056DB8B73C718938556
Authority key identifier: 68:63:70:81:CA:7C:2E:BA:41:01:0A:BE:AA:D6:4A:7C:61:F6:A1:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aGNwgcp8LrpBAQq-qtZKfGH2oRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/6f3269-587d-4b87-8d3a-e6679e7b795a/1/pum5piuHWF7azESaKe1snOisJQo.roa
Signing time: Sun 16 Jul 2023 12:54:51 +0000
ROA not before: Sun 16 Jul 2023 12:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 91.202.248.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Aug 2023 08:37:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:5e:c4:a1:36:ad:9e:e0:56:db:8b:73:c7:18:93:85:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68637081ca7c2eba41010abeaad64a7c61f6a113
Validity
Not Before: Jul 16 12:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6e9b9a62b87585edacc449a29ed6c9ce8ac250a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ee:f4:9c:0e:04:d0:a4:27:b1:1f:e2:1f:d7:
c4:f8:4a:1d:03:73:e7:25:d9:21:66:2e:38:29:1e:
2d:68:3f:65:c7:19:b1:36:5b:f1:68:38:50:50:ef:
99:78:ce:3c:bd:10:03:7e:38:fd:df:91:e3:7e:57:
dc:dd:34:f0:27:6b:bd:62:0b:a9:94:9e:25:6f:b9:
8b:b1:2c:a2:aa:33:16:31:79:ff:46:0b:92:4b:20:
84:58:6e:ad:6a:a7:b8:e6:3a:cc:a2:dc:2c:eb:7f:
d1:ef:4f:34:d9:62:64:c0:cb:a9:4a:51:4e:af:59:
57:1a:c9:e6:a6:a4:e9:a8:40:c9:1b:11:6c:bf:05:
62:bb:03:98:e5:c9:70:52:00:cb:3a:28:4c:c1:32:
de:15:72:33:db:ae:99:3d:25:d0:38:aa:ae:5d:f2:
2f:d1:cd:70:6c:b0:b9:a7:e5:37:16:b5:70:ee:09:
e0:3e:93:6a:1b:25:4a:55:10:eb:98:81:f4:04:b8:
1c:ea:5e:16:51:69:39:c6:ab:73:e7:26:60:eb:e5:
9b:38:7f:9e:3d:5d:c1:48:6d:de:18:5d:ac:96:17:
ec:23:28:2e:b0:cc:bf:49:0d:7c:fd:8e:c1:92:bb:
ef:0d:15:b8:c1:60:62:f5:b2:73:e2:f3:ea:66:3f:
1d:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:E9:B9:A6:2B:87:58:5E:DA:CC:44:9A:29:ED:6C:9C:E8:AC:25:0A
X509v3 Authority Key Identifier:
keyid:68:63:70:81:CA:7C:2E:BA:41:01:0A:BE:AA:D6:4A:7C:61:F6:A1:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aGNwgcp8LrpBAQq-qtZKfGH2oRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6f3269-587d-4b87-8d3a-e6679e7b795a/1/pum5piuHWF7azESaKe1snOisJQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/6f3269-587d-4b87-8d3a-e6679e7b795a/1/aGNwgcp8LrpBAQq-qtZKfGH2oRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.248.0/22
Signature Algorithm: sha256WithRSAEncryption
35:4f:ec:64:30:c8:e7:ea:6b:75:e0:98:8f:36:9e:52:59:26:
04:38:39:ff:17:cd:e6:d2:8f:19:ac:c6:ee:b9:a5:7c:83:49:
62:da:8e:4e:7a:bd:2a:3c:47:24:a8:31:48:5e:89:a0:ea:67:
32:60:c6:73:5a:ab:35:fe:e3:f1:fb:0b:0a:a0:34:cb:f6:bd:
3d:30:68:05:6a:3c:aa:c9:85:08:96:48:dd:f9:23:4a:99:f3:
30:70:90:b5:b3:36:41:9c:64:b5:6d:ea:ae:d3:86:55:6b:0a:
8f:19:41:2c:a1:66:fc:77:23:8f:fa:53:83:5d:35:9f:b1:1d:
43:f9:d2:45:c8:ba:e2:db:a6:e4:44:ab:0c:8f:e5:72:b7:51:
cb:70:94:9b:06:2b:51:c4:d0:f0:9d:6b:1b:9b:cd:15:a4:d2:
08:b1:de:08:f7:0e:fe:19:6f:41:ab:eb:2b:c7:2a:5c:77:cc:
dc:c0:e7:48:e1:5c:34:c1:d7:12:a3:de:88:ac:49:26:18:96:
b1:c4:d5:1a:c7:85:c0:b8:61:bf:7c:73:69:5f:40:b2:4d:66:
9d:5a:de:f1:e6:12:6d:da:87:e2:1e:b9:00:4f:7f:79:d8:7e:
a0:0d:29:59:4d:01:80:81:02:7d:b5:a3:88:6a:5d:2e:6b:bc:
e2:ec:b3:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:55 2024 by rpki-client on console-ams.rpki-client.org