Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/2BY3gkeEY7GPwX20k-paXFWR4kQ.roa
File: 2BY3gkeEY7GPwX20k-paXFWR4kQ.roa (raw, json)
Hash identifier: PxtPR07SU+Msyt699FshI5oSpPxd5vytwpLHUtaZnw8=
Subject key identifier: D8:16:37:82:47:84:63:B1:8F:C1:7D:B4:93:EA:5A:5C:55:91:E2:44
Certificate issuer: /CN=585d968f5be1ce671e20d5831c170001f372d3dd
Certificate serial: 018571958338307CC11FA03FB31BF2BBFDC9
Authority key identifier: 58:5D:96:8F:5B:E1:CE:67:1E:20:D5:83:1C:17:00:01:F3:72:D3:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WF2Wj1vhzmceINWDHBcAAfNy090.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/2BY3gkeEY7GPwX20k-paXFWR4kQ.roa
Signing time: Mon 02 Jan 2023 08:25:01 +0000
ROA not before: Mon 02 Jan 2023 08:25:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20845
IP address blocks: 91.135.112.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:95:83:38:30:7c:c1:1f:a0:3f:b3:1b:f2:bb:fd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=585d968f5be1ce671e20d5831c170001f372d3dd
Validity
Not Before: Jan 2 08:25:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8163782478463b18fc17db493ea5a5c5591e244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:93:cf:31:71:a4:14:4f:a3:8e:57:2e:29:5a:
d0:d0:6f:a8:bc:04:34:87:cd:8c:ff:9c:11:6d:87:
e6:1a:42:b2:11:f4:72:02:11:d2:8e:47:74:ff:67:
50:9a:db:16:59:da:3b:08:b2:bc:8a:26:a8:bb:42:
cc:1e:da:76:44:bf:15:36:82:7e:81:23:fa:ea:ec:
96:bf:8d:97:36:bc:9a:fd:39:a8:7f:b8:0a:15:82:
f1:61:68:15:8f:06:ba:58:8f:d6:9a:79:7f:8b:1d:
c5:a9:71:00:fc:be:0b:b6:f4:1c:72:6b:4c:25:6d:
b8:10:f0:b4:ff:bf:ff:61:8f:3b:da:03:36:9d:08:
9a:ba:3e:fa:57:98:11:d6:07:7a:3f:12:1b:d8:7b:
cb:6f:2e:49:f8:ee:26:90:92:b3:5e:0e:1d:b0:22:
e6:23:70:ad:72:30:4e:97:a4:77:ee:e7:cb:2a:dd:
e3:1e:53:5e:58:61:05:e9:77:a2:04:b3:9b:86:99:
f0:0c:81:0c:04:a2:79:83:70:9b:6e:4f:43:a7:72:
8b:49:75:87:7b:49:a8:af:e2:cd:47:b9:24:4d:0a:
de:03:dc:ae:c1:d0:2d:f8:1c:94:f1:6f:b2:25:5a:
a8:a8:8e:01:25:1c:dd:16:ec:8d:b6:e5:f5:5c:21:
6a:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:16:37:82:47:84:63:B1:8F:C1:7D:B4:93:EA:5A:5C:55:91:E2:44
X509v3 Authority Key Identifier:
keyid:58:5D:96:8F:5B:E1:CE:67:1E:20:D5:83:1C:17:00:01:F3:72:D3:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WF2Wj1vhzmceINWDHBcAAfNy090.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/2BY3gkeEY7GPwX20k-paXFWR4kQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/acac1e-e690-41b0-83be-9ed35d5b3735/1/WF2Wj1vhzmceINWDHBcAAfNy090.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.135.112.0/20
Signature Algorithm: sha256WithRSAEncryption
03:6d:9a:0a:31:b0:4b:30:52:94:2d:21:1a:02:6c:5f:e2:7a:
ea:84:7a:67:6c:52:07:7b:98:dd:82:7e:9a:90:90:30:9c:77:
fb:c2:1e:fe:5a:d9:c5:58:31:6d:2b:9e:07:ab:15:9b:3a:42:
7b:1c:0d:d1:8b:bd:42:65:32:1b:64:9f:88:90:9b:98:25:2f:
9f:95:d7:fb:e6:98:60:ab:81:5c:47:bd:e6:ec:c0:30:55:7c:
c1:b3:6d:21:e4:ed:8f:a5:aa:7c:a0:a1:d6:61:8a:f9:74:c6:
67:47:eb:47:ee:4a:5d:58:a1:c3:ef:66:c3:f5:39:ad:3e:be:
71:0b:91:21:5d:65:5b:3b:f9:c7:02:af:89:65:87:ac:2c:9a:
04:2f:27:04:84:ac:e0:ac:15:a3:78:28:b4:b0:ba:44:ca:08:
8b:e8:c2:99:78:17:74:2e:ed:ac:bc:93:fe:e4:63:ac:fe:85:
08:a9:c8:61:c8:c7:34:ac:d6:87:b3:ab:be:d3:ee:46:eb:c1:
3e:9d:71:08:a2:77:2c:68:c0:46:88:78:26:37:cc:1b:97:2f:
89:5b:75:bf:9f:ee:6a:47:69:f2:62:3b:a7:ee:27:3b:af:4d:
34:08:8d:45:b1:9b:a3:a0:12:d9:dc:65:65:da:1f:e5:52:ec:
e4:d9:c2:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:04 2024 by rpki-client on console-fra.rpki-client.org