Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/3ee969-98d1-481a-a487-9a895467da85/1/UdhIro3E8sAiuf2Vyp3ZAQ6-8_Y.roa
File: UdhIro3E8sAiuf2Vyp3ZAQ6-8_Y.roa (raw, json)
Hash identifier: MGr+uESmGaLRT+RL7DHahNnA3xk4TxlcdiIjnrs4kxQ=
Subject key identifier: 51:D8:48:AE:8D:C4:F2:C0:22:B9:FD:95:CA:9D:D9:01:0E:BE:F3:F6
Certificate issuer: /CN=c2510a8a525dc9b1ec0b1560d090a64268d42ec4
Certificate serial: 01856F301F75DD91982AC4A87F40DB49F393
Authority key identifier: C2:51:0A:8A:52:5D:C9:B1:EC:0B:15:60:D0:90:A6:42:68:D4:2E:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wlEKilJdybHsCxVg0JCmQmjULsQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/3ee969-98d1-481a-a487-9a895467da85/1/UdhIro3E8sAiuf2Vyp3ZAQ6-8_Y.roa
Signing time: Sun 01 Jan 2023 21:15:02 +0000
ROA not before: Sun 01 Jan 2023 21:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43394
IP address blocks: 91.198.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:1f:75:dd:91:98:2a:c4:a8:7f:40:db:49:f3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2510a8a525dc9b1ec0b1560d090a64268d42ec4
Validity
Not Before: Jan 1 21:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=51d848ae8dc4f2c022b9fd95ca9dd9010ebef3f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c0:cb:35:a2:a7:cc:9a:d7:2e:99:f6:71:06:
10:07:71:4a:2f:fb:73:3b:42:53:8f:92:3a:ad:65:
9c:05:b5:c5:e3:f8:3c:d9:f7:6d:e7:d1:8f:ff:e1:
9c:8f:7b:64:d9:2d:a1:d8:55:d6:00:0b:d8:13:8d:
45:d5:c2:af:fd:9b:b8:52:2f:29:4e:27:5b:d0:7d:
e2:4b:c0:56:d6:45:9f:94:74:2d:7b:9d:e6:d5:bc:
1c:a2:c4:a8:c7:9e:3b:75:77:71:51:6f:5e:32:72:
49:fb:8c:04:ff:c6:53:ab:1a:b5:71:0b:73:0b:0e:
25:63:83:6a:21:02:81:8c:ac:ac:61:21:e6:1d:3b:
06:bf:e4:df:8b:13:ee:fd:a0:79:d6:39:db:70:3a:
46:e6:a1:0c:3a:fa:a7:03:35:8d:9f:b8:d0:0a:76:
6d:b8:b4:88:0c:d3:c6:7a:bb:b0:75:0f:7a:59:d3:
4c:05:02:1c:7b:a0:44:45:42:e9:c4:00:94:55:6a:
dd:ad:be:22:36:11:7d:85:cd:82:bb:b5:84:2a:d0:
12:be:52:5c:02:65:97:4c:6b:70:b3:d3:4f:90:01:
ae:a5:a2:72:2f:3a:e5:9c:fe:dd:cc:9c:7a:49:94:
90:34:a1:89:79:c8:fd:4d:a6:e8:33:ad:06:f1:31:
96:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D8:48:AE:8D:C4:F2:C0:22:B9:FD:95:CA:9D:D9:01:0E:BE:F3:F6
X509v3 Authority Key Identifier:
keyid:C2:51:0A:8A:52:5D:C9:B1:EC:0B:15:60:D0:90:A6:42:68:D4:2E:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wlEKilJdybHsCxVg0JCmQmjULsQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/3ee969-98d1-481a-a487-9a895467da85/1/UdhIro3E8sAiuf2Vyp3ZAQ6-8_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/3ee969-98d1-481a-a487-9a895467da85/1/wlEKilJdybHsCxVg0JCmQmjULsQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.214.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:76:a1:37:3a:ff:de:10:c9:50:6a:9e:de:77:b5:d3:10:92:
2b:65:ab:80:4a:95:f5:a6:51:89:bc:61:f7:5f:f3:17:83:fb:
02:18:14:14:16:c9:f6:88:f7:50:73:67:d3:8a:01:85:a1:5d:
15:79:dc:5d:ce:ea:b1:c3:56:eb:80:f2:2a:85:16:30:3c:45:
74:82:12:8b:a0:0b:28:31:3a:c6:eb:90:23:17:46:86:d5:cc:
c9:26:48:a3:a8:5e:5b:c0:57:72:dc:ba:79:b4:e3:39:70:0b:
d2:8b:67:04:80:f5:c9:59:53:10:43:d3:d9:33:7c:6e:5f:01:
11:79:02:dc:1f:00:21:17:75:28:81:85:ef:a7:43:c2:49:26:
da:29:80:a4:7f:86:34:04:77:16:01:cc:d4:da:d7:30:7a:79:
80:db:24:66:d2:ef:a5:c5:4b:2f:30:39:04:72:cd:36:23:b1:
e9:bf:d1:96:92:fe:35:00:37:4d:c9:89:ad:55:d0:d1:97:22:
9a:ec:02:8a:a2:b7:84:55:92:24:6d:2f:c8:06:fa:35:8b:08:
d5:52:d5:55:77:03:5a:7b:24:63:f3:6c:ff:57:4d:1c:55:c1:
4f:35:c2:2f:08:46:39:d7:86:9a:c4:ec:db:79:a3:d8:84:22:
e8:02:71:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:43 2024 by rpki-client on console-ams.rpki-client.org