Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/4c2637-3bbb-4a53-a216-237be773007a/1/dFUmWnn6fti_cNw8MCDN-FNGUuE.roa
File: dFUmWnn6fti_cNw8MCDN-FNGUuE.roa (raw, json)
Hash identifier: yTlU6Pp+3ShxxV78QvclfqD/YEzjLCRSAWbO5DofrLM=
Subject key identifier: 74:55:26:5A:79:FA:7E:D8:BF:70:DC:3C:30:20:CD:F8:53:46:52:E1
Certificate issuer: /CN=56afcd8fb40aae1d243c2a8ce2541a69987eed13
Certificate serial: 018571B0DF08E16B3D97E59E570E9959C534
Authority key identifier: 56:AF:CD:8F:B4:0A:AE:1D:24:3C:2A:8C:E2:54:1A:69:98:7E:ED:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vq_Nj7QKrh0kPCqM4lQaaZh-7RM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/4c2637-3bbb-4a53-a216-237be773007a/1/dFUmWnn6fti_cNw8MCDN-FNGUuE.roa
Signing time: Mon 02 Jan 2023 08:54:54 +0000
ROA not before: Mon 02 Jan 2023 08:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60674
IP address blocks: 91.216.40.0/24 maxlen: 24
2a11:e480::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:df:08:e1:6b:3d:97:e5:9e:57:0e:99:59:c5:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56afcd8fb40aae1d243c2a8ce2541a69987eed13
Validity
Not Before: Jan 2 08:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7455265a79fa7ed8bf70dc3c3020cdf8534652e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:93:bd:99:2a:bb:bf:b6:50:a2:de:d9:1a:a4:
b0:ce:1f:95:fb:82:43:bd:27:17:38:2e:4d:9b:cf:
ef:d4:33:a2:fa:b7:08:ea:d5:46:f4:b6:f4:eb:06:
66:53:7b:2d:c2:45:f0:76:9e:6c:1d:87:d0:2f:30:
7a:02:68:f3:08:93:52:16:68:9d:9f:2f:b5:a3:18:
2e:2d:35:d2:d4:44:33:a1:66:35:92:12:37:a4:89:
b2:10:30:78:95:89:c1:7f:71:7c:a7:1e:21:48:d5:
4d:d9:b4:14:2e:c2:50:72:0b:d0:dd:6d:52:3a:ef:
17:37:e3:77:5c:ec:41:de:ec:71:6c:e5:dd:a0:8c:
7d:5a:1c:41:9b:d0:1e:39:25:9a:28:7a:3c:61:5d:
c8:de:f1:2f:3f:b2:70:81:36:9e:c8:7a:c6:b3:72:
4c:0c:05:ad:4a:ac:2f:2d:68:e9:dd:55:9c:96:42:
e1:b7:b3:da:22:f8:79:22:b9:61:06:5e:ad:d8:6c:
ad:af:31:1c:17:54:65:68:ce:95:93:9f:f6:20:51:
c1:12:da:fc:af:fb:e6:22:94:e8:5f:61:5a:7e:36:
7a:b5:30:b5:98:3f:ad:dc:a2:81:d3:af:9c:75:5a:
80:36:e9:7f:33:35:0f:0b:e9:71:61:9c:4b:16:d0:
2d:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:55:26:5A:79:FA:7E:D8:BF:70:DC:3C:30:20:CD:F8:53:46:52:E1
X509v3 Authority Key Identifier:
keyid:56:AF:CD:8F:B4:0A:AE:1D:24:3C:2A:8C:E2:54:1A:69:98:7E:ED:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vq_Nj7QKrh0kPCqM4lQaaZh-7RM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4c2637-3bbb-4a53-a216-237be773007a/1/dFUmWnn6fti_cNw8MCDN-FNGUuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/4c2637-3bbb-4a53-a216-237be773007a/1/Vq_Nj7QKrh0kPCqM4lQaaZh-7RM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.40.0/24
IPv6:
2a11:e480::/32
Signature Algorithm: sha256WithRSAEncryption
69:86:02:7e:df:b8:ab:5f:b6:c0:df:a1:72:ca:78:62:fc:f7:
90:b7:d1:4a:4d:c5:30:91:cf:71:85:e8:b9:84:0f:4b:f9:36:
92:aa:aa:ab:fd:51:cd:52:1d:26:72:08:a8:09:39:c9:fc:f3:
02:ac:a5:ac:64:b7:5d:92:2f:ae:f8:e6:06:cd:b8:41:59:d2:
88:c8:b2:da:65:10:d9:6c:39:c2:47:2d:b6:fa:d5:96:b3:02:
eb:90:82:c6:ab:78:e8:ed:bd:b0:60:aa:49:17:0d:b7:eb:f2:
3a:2b:13:9d:40:16:ad:d9:eb:2e:46:92:10:bf:97:75:ae:37:
11:ab:07:c3:34:0a:57:b2:17:2e:e1:18:a8:27:75:19:38:da:
8a:19:0d:3f:b0:b6:9d:0e:36:dd:ec:ac:da:c2:05:ea:2d:72:
76:b0:ad:e9:84:4b:ff:19:e1:fe:b4:0d:5a:7a:0a:1d:2c:03:
10:01:a4:d1:69:cd:42:a3:fb:dc:64:85:24:02:c0:f1:6e:2c:
b0:99:c8:6b:ac:fb:30:9c:e9:f9:7b:76:e9:46:5a:65:70:59:
fd:62:74:68:2f:27:e6:aa:97:49:ae:ed:9f:ac:51:ef:9b:50:
1b:51:6e:a2:17:59:92:83:a5:c3:fd:7e:f1:95:94:60:0d:23:
95:a9:b5:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:03 2024 by rpki-client on console-ams.rpki-client.org