Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/E1DImcJ1NLc9VKEZCMeCtobc4f0.roa
File: E1DImcJ1NLc9VKEZCMeCtobc4f0.roa (raw, json)
Hash identifier: FnG3oFEP4AFvlAN34sLb57o0uBFbse9FRBzJ97R1pKY=
Subject key identifier: 13:50:C8:99:C2:75:34:B7:3D:54:A1:19:08:C7:82:B6:86:DC:E1:FD
Certificate issuer: /CN=82e69214d6fd55e75050ba811bf7c12439109fee
Certificate serial: 0185715E60B993E2E20ACDC99F4992B30882
Authority key identifier: 82:E6:92:14:D6:FD:55:E7:50:50:BA:81:1B:F7:C1:24:39:10:9F:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/guaSFNb9VedQULqBG_fBJDkQn-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/E1DImcJ1NLc9VKEZCMeCtobc4f0.roa
Signing time: Mon 02 Jan 2023 07:24:48 +0000
ROA not before: Mon 02 Jan 2023 07:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48754
IP address blocks: 91.212.23.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:5e:60:b9:93:e2:e2:0a:cd:c9:9f:49:92:b3:08:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82e69214d6fd55e75050ba811bf7c12439109fee
Validity
Not Before: Jan 2 07:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1350c899c27534b73d54a11908c782b686dce1fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:02:4d:be:d3:89:18:49:cf:28:46:a8:34:46:
8b:05:6b:43:41:d0:00:ad:a9:68:44:52:e3:2c:26:
36:db:04:40:de:01:1e:71:2c:7f:80:f7:94:7a:07:
68:76:c0:c1:40:df:6c:fc:96:01:a5:55:5e:01:79:
f0:19:24:f1:54:20:29:eb:26:84:6a:b7:33:01:ba:
d7:fa:88:33:0a:1e:a1:57:a7:0c:95:32:ef:9f:5c:
18:79:ee:e2:78:71:6e:c2:2d:d1:9e:54:8f:1e:e9:
df:02:6a:47:b6:7b:71:e1:9d:e9:ca:46:49:42:f6:
38:e2:b2:2c:77:3b:1a:cd:9a:45:d9:ba:b2:dd:6a:
d9:df:86:b2:d8:d4:72:ae:ab:63:6e:13:c9:8b:48:
8f:5d:f2:1f:dd:fa:6c:09:12:04:b8:2b:c7:41:a0:
38:a1:ce:9c:e8:05:85:be:21:ba:e8:cc:59:32:68:
09:33:ad:32:d7:dd:ef:9b:6b:90:35:74:d7:98:30:
77:c4:aa:04:12:13:05:a2:16:94:86:34:15:4f:fe:
84:29:96:fc:6f:80:50:d1:11:37:f3:97:14:90:f2:
56:c4:d5:61:c8:4a:f0:0d:4b:7d:4f:87:fb:68:65:
72:2d:f3:15:c3:f8:21:4e:2d:bb:f0:87:62:2a:62:
a0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:50:C8:99:C2:75:34:B7:3D:54:A1:19:08:C7:82:B6:86:DC:E1:FD
X509v3 Authority Key Identifier:
keyid:82:E6:92:14:D6:FD:55:E7:50:50:BA:81:1B:F7:C1:24:39:10:9F:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/guaSFNb9VedQULqBG_fBJDkQn-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/E1DImcJ1NLc9VKEZCMeCtobc4f0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/guaSFNb9VedQULqBG_fBJDkQn-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.23.0/24
Signature Algorithm: sha256WithRSAEncryption
70:20:91:85:30:6a:6b:ed:67:b4:9d:44:5b:a5:2b:b7:3c:bb:
8b:09:69:3b:e5:27:6b:3f:5c:e5:dd:5a:09:d6:5f:45:b8:20:
b0:52:7d:13:f6:ff:a0:31:ac:23:5e:d2:78:90:fb:ac:80:59:
da:c8:44:fb:61:ed:33:c0:f9:14:6f:54:03:bb:ba:a8:0a:9c:
7f:2b:08:f3:07:4c:65:5c:46:13:a3:2a:30:b2:ca:ee:a8:42:
59:29:1e:7e:49:bb:d0:9d:f9:9e:32:37:ca:be:b3:5a:d9:fe:
a5:bd:3e:da:ce:29:d1:eb:95:1a:02:75:e3:b3:7c:e4:71:aa:
17:02:b0:17:f1:a1:85:85:0d:4f:f4:bc:50:97:9c:17:21:54:
02:67:94:e4:b8:50:bd:5f:b3:58:9a:98:de:fa:10:90:23:62:
ea:4b:3f:af:c1:e7:22:09:f1:8c:83:90:76:9f:73:21:da:b5:
42:52:f0:30:85:63:02:d6:25:82:09:a3:8d:ed:67:e9:86:80:
17:a1:61:91:7e:fd:74:4d:d3:e1:79:49:44:6a:49:8c:c5:c7:
18:1b:f9:40:5e:30:eb:61:fa:41:f2:86:7e:aa:9f:14:53:95:
e1:15:d4:93:d4:b7:57:af:16:fc:ce:51:ee:4b:6d:17:6d:2c:
42:d0:30:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:07 2024 by rpki-client on console-ams.rpki-client.org