Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/zehvRsEedtFVG3NS82IOKIqpFOQ.roa
File: zehvRsEedtFVG3NS82IOKIqpFOQ.roa (raw, json)
Hash identifier: VbLyxKAGubA6Z8+odiEL6D6rqKvRn5jgrchL37S7irg=
Subject key identifier: CD:E8:6F:46:C1:1E:76:D1:55:1B:73:52:F3:62:0E:28:8A:A9:14:E4
Certificate issuer: /CN=6de2aab077c9eef103f97984f309d891e5a19983
Certificate serial: 018A83AEDE5898D1FC1C72CD9CF0BA83DF7B
Authority key identifier: 6D:E2:AA:B0:77:C9:EE:F1:03:F9:79:84:F3:09:D8:91:E5:A1:99:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/beKqsHfJ7vED-XmE8wnYkeWhmYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/zehvRsEedtFVG3NS82IOKIqpFOQ.roa
Signing time: Mon 11 Sep 2023 09:59:50 +0000
ROA not before: Mon 11 Sep 2023 09:59:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200590
IP address blocks: 91.147.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Sep 2023 02:30:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:83:ae:de:58:98:d1:fc:1c:72:cd:9c:f0:ba:83:df:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6de2aab077c9eef103f97984f309d891e5a19983
Validity
Not Before: Sep 11 09:59:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cde86f46c11e76d1551b7352f3620e288aa914e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:b8:4b:cb:d3:cf:cd:90:4d:e3:73:e9:6d:33:
c3:a6:77:47:f2:c8:18:3a:c0:94:6e:7d:9c:cd:15:
0d:2e:dc:65:e5:3e:5e:cf:bf:a5:b8:70:48:06:17:
60:16:39:d1:e9:a3:52:1e:b1:2e:75:5f:1b:f5:b3:
8e:d5:63:bd:36:0f:d9:da:3a:2d:da:9e:be:b5:3e:
4e:aa:b1:5b:b9:5b:6e:dd:8b:6c:34:14:fe:12:68:
6a:a4:e0:41:52:e6:b8:33:e0:3a:ae:df:0c:a5:54:
4e:a6:4a:02:31:24:15:30:e8:5a:60:72:8f:1a:a1:
0f:31:eb:fa:1e:aa:5c:bb:9d:84:31:a9:c3:e4:8e:
86:97:25:a6:18:c5:01:5d:1b:fa:56:03:3b:53:0d:
c8:8a:8d:4f:21:ee:e5:03:59:b3:7f:d3:2a:b8:c3:
c9:0c:f7:82:cf:f3:1d:8c:69:da:1e:cd:e5:d1:ab:
ce:74:d7:f7:9c:02:d9:b0:cb:f7:c5:10:b7:9b:c9:
1c:f2:d9:fd:91:d6:e4:26:14:6b:5f:3d:9d:04:11:
f2:3c:3e:f1:58:64:bb:88:22:b4:0e:a4:8a:a9:b9:
b6:84:4d:8f:4d:06:44:46:12:08:1b:1d:ec:69:ca:
a4:52:cb:dd:92:65:bd:15:6e:34:7c:be:0c:56:33:
7e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E8:6F:46:C1:1E:76:D1:55:1B:73:52:F3:62:0E:28:8A:A9:14:E4
X509v3 Authority Key Identifier:
keyid:6D:E2:AA:B0:77:C9:EE:F1:03:F9:79:84:F3:09:D8:91:E5:A1:99:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/beKqsHfJ7vED-XmE8wnYkeWhmYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/zehvRsEedtFVG3NS82IOKIqpFOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/a40070-aa17-42fe-86dd-b9ae57394189/1/beKqsHfJ7vED-XmE8wnYkeWhmYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.147.99.0/24
Signature Algorithm: sha256WithRSAEncryption
49:f1:cc:b5:c4:e4:67:75:8d:de:00:81:b0:9b:67:c2:37:c8:
5c:53:60:3f:c6:70:51:f8:a1:f5:74:4e:8d:76:04:bb:f7:47:
0e:7d:10:fd:35:47:66:9d:55:88:ea:e5:50:84:60:23:58:24:
f9:29:4f:c4:dc:05:ca:e2:52:70:06:90:35:db:75:c0:32:a1:
a2:c9:0f:92:60:69:83:18:a4:70:10:ef:60:c5:e5:45:c3:63:
60:3e:c9:50:d6:87:80:e3:b4:fe:0b:be:31:20:69:dd:04:45:
44:a6:a2:8f:f7:e2:09:1c:86:05:87:54:23:db:6d:87:68:3f:
48:c7:6d:cb:2d:64:bb:13:51:b7:97:11:5a:cc:ca:22:59:8b:
86:49:16:ba:43:52:43:e6:0d:89:88:23:11:52:1a:69:86:e4:
b8:8d:53:81:56:bb:1f:c7:e3:d3:3e:9a:22:8d:9c:5e:92:0b:
ca:3f:f1:2e:eb:28:af:9e:6d:4e:29:98:85:57:6c:9e:38:46:
fa:51:4a:8b:fa:b8:56:67:01:66:fd:71:92:9d:c5:8a:c6:6d:
a1:39:50:ba:ab:62:67:af:56:ed:db:a2:91:7c:b2:08:4c:34:
62:e3:24:d7:54:27:d7:5e:8a:bd:b5:79:55:01:2c:69:a4:64:
a8:7c:96:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:10 2024 by rpki-client on console-fra.rpki-client.org