Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/8a140b-0e51-4fc7-9c01-d67b9aca6417/1/v8RWZeu9EiDm8CCO68L1YP6QRnQ.roa
File: v8RWZeu9EiDm8CCO68L1YP6QRnQ.roa (raw, json)
Hash identifier: UdTcs43v1uzd0dWGssvEWQoy+DhpzyzRoz70+t7KA3Y=
Subject key identifier: BF:C4:56:65:EB:BD:12:20:E6:F0:20:8E:EB:C2:F5:60:FE:90:46:74
Certificate issuer: /CN=4f41c56ea069ee7b1c1df6686bd36e0e14528a20
Certificate serial: 018572BA5424EF0A4ED75374DBC4030D78EC
Authority key identifier: 4F:41:C5:6E:A0:69:EE:7B:1C:1D:F6:68:6B:D3:6E:0E:14:52:8A:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T0HFbqBp7nscHfZoa9NuDhRSiiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/8a140b-0e51-4fc7-9c01-d67b9aca6417/1/v8RWZeu9EiDm8CCO68L1YP6QRnQ.roa
Signing time: Mon 02 Jan 2023 13:44:51 +0000
ROA not before: Mon 02 Jan 2023 13:44:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59619
IP address blocks: 91.240.226.0/24 maxlen: 24
91.240.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:ba:54:24:ef:0a:4e:d7:53:74:db:c4:03:0d:78:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f41c56ea069ee7b1c1df6686bd36e0e14528a20
Validity
Not Before: Jan 2 13:44:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bfc45665ebbd1220e6f0208eebc2f560fe904674
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:51:27:93:ab:42:f8:10:e4:57:e4:83:88:
db:50:88:b6:77:f2:a1:93:b4:13:c4:a2:8a:1c:3b:
9c:27:b9:8b:8f:53:a8:27:50:02:ea:a0:03:4b:61:
6e:1c:f7:d0:0d:2f:ca:3c:fb:a7:3f:6e:cd:d1:fc:
33:ca:0d:d8:69:77:59:27:45:af:96:79:77:0a:d7:
4b:27:27:3b:16:51:49:b5:87:46:e5:af:49:7f:91:
51:11:b1:e5:e7:96:de:bb:c2:9d:b7:cb:bf:39:62:
78:28:a3:dc:e7:18:a0:a1:7f:6b:ce:cb:8b:d7:68:
82:90:66:3c:40:a5:1d:fd:9b:fe:01:cd:50:fc:b0:
6e:41:d1:db:1d:8a:a7:97:6d:e1:3d:e4:48:01:c4:
7c:e1:17:e4:bf:4c:b4:42:e3:62:94:96:4b:64:83:
d1:2b:51:18:f2:59:d2:28:71:f5:c0:a5:46:3f:f6:
ad:44:be:cd:d6:5b:2f:53:42:da:ce:57:3f:2d:06:
aa:dc:70:aa:80:74:56:c7:98:8e:81:b3:68:48:b8:
70:40:e2:c1:91:2d:31:c2:34:50:1b:d4:23:aa:c5:
63:1b:37:ed:98:82:87:f6:71:aa:86:ad:6e:79:06:
11:d1:74:e5:ce:ee:a0:02:98:09:bb:b1:4f:20:fd:
69:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C4:56:65:EB:BD:12:20:E6:F0:20:8E:EB:C2:F5:60:FE:90:46:74
X509v3 Authority Key Identifier:
keyid:4F:41:C5:6E:A0:69:EE:7B:1C:1D:F6:68:6B:D3:6E:0E:14:52:8A:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T0HFbqBp7nscHfZoa9NuDhRSiiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8a140b-0e51-4fc7-9c01-d67b9aca6417/1/v8RWZeu9EiDm8CCO68L1YP6QRnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/8a140b-0e51-4fc7-9c01-d67b9aca6417/1/T0HFbqBp7nscHfZoa9NuDhRSiiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.226.0/23
Signature Algorithm: sha256WithRSAEncryption
51:ee:95:ae:62:8f:87:4f:35:c8:71:6e:db:a0:11:ee:f5:22:
cc:16:49:ac:6c:2a:cc:e4:ac:87:97:fe:d4:77:94:92:1f:e2:
1b:f5:e3:89:eb:73:e3:34:f4:21:6a:64:c2:79:98:05:07:a8:
1c:63:fc:9e:c6:ff:15:40:23:2b:63:09:81:75:b1:56:54:c1:
67:2e:56:d3:4c:fd:84:8f:ea:9b:cf:7a:0a:c0:ed:5b:82:b7:
2c:7d:c2:15:34:e6:ab:13:1d:dd:a1:94:32:fa:66:8e:f0:ae:
ba:b4:32:50:a0:56:a3:0b:f6:27:20:bd:5b:b6:4f:83:95:af:
6e:4b:0c:41:b1:22:0b:b2:5c:dd:8e:64:1c:1a:c5:0f:95:51:
9e:55:93:af:01:b5:ea:97:aa:92:96:05:78:e3:db:2e:13:41:
fe:fa:ba:4f:a4:67:39:c0:31:7a:e7:2a:08:85:dc:1a:3d:d3:
15:fd:c2:07:bf:c7:39:4d:eb:83:1b:5a:ce:6d:96:3e:42:7c:
bb:f1:a4:c0:37:a9:62:a0:8f:7a:39:45:f6:dd:25:78:ad:d6:
d9:3e:5d:05:f8:ae:67:26:43:bc:27:77:c0:4a:17:a8:ea:7c:
b9:57:ea:5e:38:65:b9:49:29:e3:5e:5b:d9:f1:02:d1:5a:07:
ca:d3:36:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:22 2024 by rpki-client on console-ams.rpki-client.org