Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/31Q3jwcR_XiLwWUN_X0nEAmgxXg.roa
File: 31Q3jwcR_XiLwWUN_X0nEAmgxXg.roa (raw, json)
Hash identifier: 8qqzV9An4dipgUjUfqggH4yWt8GBwZ+ifZXadD1lA/c=
Subject key identifier: DF:54:37:8F:07:11:FD:78:8B:C1:65:0D:FD:7D:27:10:09:A0:C5:78
Certificate issuer: /CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Certificate serial: 018A4659CB4972196129AA2347BBF4C29F00
Authority key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/31Q3jwcR_XiLwWUN_X0nEAmgxXg.roa
Signing time: Wed 30 Aug 2023 12:10:04 +0000
ROA not before: Wed 30 Aug 2023 12:10:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.209.228.0/24 maxlen: 24
45.151.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 15:45:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:46:59:cb:49:72:19:61:29:aa:23:47:bb:f4:c2:9f:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Validity
Not Before: Aug 30 12:10:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df54378f0711fd788bc1650dfd7d271009a0c578
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:87:92:01:af:64:a0:fa:9a:97:92:66:e5:da:
28:e8:1b:ba:ee:e4:3e:4a:eb:60:f5:c0:37:0a:41:
89:d8:4a:61:dc:75:1e:67:a2:7f:68:e7:4c:a2:a5:
6b:18:1b:10:80:00:34:3e:2a:3f:df:7c:96:6a:d3:
ee:34:08:76:b2:7c:0c:f8:be:32:5a:f7:77:de:ce:
7b:7b:69:26:25:08:b6:d0:58:43:e6:7e:5e:70:c5:
a5:66:38:fa:70:71:53:17:70:93:a8:5d:be:c2:ae:
d2:15:83:cb:7d:18:39:fe:05:e0:f1:0d:52:4c:ff:
13:7a:77:a8:f9:e9:6a:c2:99:ae:d3:63:51:85:d3:
8e:9d:c5:d3:d1:5d:be:14:05:5c:af:c9:e2:9d:12:
a8:ec:c2:f3:4c:a9:95:83:b8:11:56:e9:9d:82:47:
ff:0e:5f:bb:8e:18:07:26:f6:ba:ee:93:01:ee:b3:
ed:39:f7:c3:a5:84:48:29:09:20:47:36:76:01:e8:
50:aa:b9:83:8c:f3:ed:7c:7b:de:56:23:b0:05:0a:
67:b1:ef:e2:40:9a:d6:e0:b9:86:34:39:ee:8c:7a:
65:f6:7a:7e:4e:af:34:90:95:4d:29:10:ab:7e:4e:
74:76:ef:40:1d:6c:13:55:7e:57:cd:c7:61:02:da:
46:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:54:37:8F:07:11:FD:78:8B:C1:65:0D:FD:7D:27:10:09:A0:C5:78
X509v3 Authority Key Identifier:
keyid:7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/31Q3jwcR_XiLwWUN_X0nEAmgxXg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.142.0/24
91.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:52:46:65:80:33:93:c0:d1:46:f3:a3:55:75:be:75:16:01:
f3:cc:a4:c3:90:69:12:3e:6a:4e:cf:3f:9c:24:52:aa:ac:2c:
42:e0:5b:9a:1d:50:7d:bb:3b:1d:7d:e7:83:d8:65:77:c7:d2:
29:ee:74:fd:35:a5:dc:00:eb:aa:35:e8:b7:56:a9:a4:be:5a:
db:6a:77:88:03:ce:fc:a8:d9:bf:d8:7c:07:19:d4:06:3a:2f:
9b:d2:86:7f:10:bd:17:1f:65:11:6a:8d:95:e5:ff:4f:78:46:
e9:63:b7:4a:0f:03:30:bd:07:3f:b3:89:83:95:12:f1:76:84:
7b:91:3f:0c:ed:91:29:d9:5e:01:1e:e5:df:a6:a8:04:4c:ab:
cb:04:c3:d0:e3:c9:53:b6:b1:45:d8:cd:a6:6a:1e:d8:70:f7:
1e:c3:f0:0b:8a:31:90:63:66:e7:a9:d9:9a:68:97:ba:cc:c7:
fd:5e:16:68:96:5e:27:e2:d7:d7:01:40:eb:6c:56:83:10:71:
57:6a:70:6a:54:74:a2:98:d1:96:6d:c6:d0:ed:c0:ec:bb:26:
11:01:b1:80:69:fa:3e:03:e5:d1:89:c6:2d:69:b1:47:1e:bc:
5c:cd:04:07:fb:7f:12:67:5e:01:f4:4b:4a:2b:65:d6:3b:de:
45:51:1e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:21 2024 by rpki-client on console-fra.rpki-client.org