Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/S0iXVFagktjoioDFC0rnOl-LOWQ.roa
File: S0iXVFagktjoioDFC0rnOl-LOWQ.roa (raw, json)
Hash identifier: k6579CaJI4HBL+rg9ukETwrXSVKWEtPzx1nQiAqwfSM=
Subject key identifier: 4B:48:97:54:56:A0:92:D8:E8:8A:80:C5:0B:4A:E7:3A:5F:8B:39:64
Certificate issuer: /CN=1ad6d2d40fb1d5b2cf95429bfb9319fc2b1cc24a
Certificate serial: 01856F7986ED509DC59A082367B94AE88271
Authority key identifier: 1A:D6:D2:D4:0F:B1:D5:B2:CF:95:42:9B:FB:93:19:FC:2B:1C:C2:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtbS1A-x1bLPlUKb-5MZ_Cscwko.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/S0iXVFagktjoioDFC0rnOl-LOWQ.roa
Signing time: Sun 01 Jan 2023 22:35:13 +0000
ROA not before: Sun 01 Jan 2023 22:35:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199139
IP address blocks: 91.236.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:79:86:ed:50:9d:c5:9a:08:23:67:b9:4a:e8:82:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad6d2d40fb1d5b2cf95429bfb9319fc2b1cc24a
Validity
Not Before: Jan 1 22:35:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b48975456a092d8e88a80c50b4ae73a5f8b3964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:bb:41:07:80:e7:7b:0c:fb:3d:1f:93:50:
e8:92:60:a2:0b:01:61:48:64:67:9b:a9:2d:58:20:
0a:d4:4b:a2:3d:e8:eb:d4:6f:15:e6:e6:10:14:46:
2d:fc:21:79:4a:31:a6:09:3c:bd:b9:d9:c5:d8:24:
76:ec:70:14:4c:90:b2:fb:9d:f7:a9:55:65:c5:36:
70:d6:60:46:8a:bd:fe:d8:1d:e8:d1:0c:77:b8:a8:
ef:bb:67:4d:ac:1e:a8:2a:ff:fb:8c:b4:86:3e:b2:
07:5f:97:0c:92:38:1b:30:d8:4c:16:40:1a:7f:3b:
25:f6:13:78:55:75:18:e0:13:90:7b:24:e7:aa:19:
16:c0:66:83:20:9b:7b:92:42:cc:61:c4:4a:0e:e5:
22:e0:0f:06:f2:ce:05:e5:f2:d5:e9:b0:19:5b:00:
23:26:3d:9f:b4:fc:f6:bd:38:c4:58:02:5f:cb:f6:
cc:7c:46:be:d4:40:07:98:e9:11:32:8a:b8:a8:d2:
77:e9:ba:54:85:eb:20:27:65:9d:1a:0d:7a:f3:38:
ef:f0:30:69:8f:8f:8c:2e:c5:91:0d:d9:de:a3:d3:
9c:6f:31:2c:98:11:ab:e7:de:b5:b9:dd:bb:a9:84:
d5:e9:20:2d:61:49:d3:62:1a:3b:da:54:8d:2f:11:
cb:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:48:97:54:56:A0:92:D8:E8:8A:80:C5:0B:4A:E7:3A:5F:8B:39:64
X509v3 Authority Key Identifier:
keyid:1A:D6:D2:D4:0F:B1:D5:B2:CF:95:42:9B:FB:93:19:FC:2B:1C:C2:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtbS1A-x1bLPlUKb-5MZ_Cscwko.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/S0iXVFagktjoioDFC0rnOl-LOWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/61fa3b-4724-4014-8817-bd71effb9b39/1/GtbS1A-x1bLPlUKb-5MZ_Cscwko.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.19.0/24
Signature Algorithm: sha256WithRSAEncryption
26:38:33:48:eb:15:a5:4d:ab:ce:00:22:e9:ce:16:a4:b4:ed:
94:05:73:ed:52:f9:b0:cb:31:c9:b9:95:fd:e2:bf:21:4d:0b:
97:dc:38:a6:87:0f:79:2c:df:bc:5f:05:03:ee:00:66:b7:7e:
8f:7a:8d:9f:0d:9f:2f:9d:cc:df:01:08:12:9c:1d:f8:4c:b8:
e4:26:fe:e2:07:28:4d:9d:02:63:e6:c8:56:f5:9a:35:2d:43:
41:b5:64:1b:8e:e6:be:c4:9e:fd:e1:fa:c2:09:ee:ec:b3:ec:
40:51:05:1a:05:a2:7e:57:a1:a4:fd:79:52:33:52:fe:b9:9a:
9b:a4:a5:28:60:46:45:b7:f3:4c:a8:3c:9a:48:38:12:7a:ed:
06:bd:c2:25:b3:8e:45:45:9b:70:03:a5:fc:89:78:48:35:8f:
f2:4e:95:4f:ed:41:1b:1f:09:ac:a2:49:88:cf:89:b3:ea:f9:
c8:2e:7e:9d:44:8d:6f:0b:86:5a:4b:3f:af:52:2e:e7:3b:b1:
96:70:60:c9:65:2c:30:f2:d8:80:e9:0f:98:4f:76:17:47:d6:
61:f5:6f:16:a9:08:ae:e1:79:c3:5f:5c:8a:2a:a0:e4:81:88:
66:14:a7:cd:93:8a:cf:73:96:fa:31:4b:d6:95:9a:b7:a8:9f:
e1:b2:67:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:21 2024 by rpki-client on console-fra.rpki-client.org