Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/LJfwqbwPUlQBY9d8vqHQz5N1dew.roa
File: LJfwqbwPUlQBY9d8vqHQz5N1dew.roa (raw, json)
Hash identifier: iFnLqCBpi4kUpVJ+44s+XHzlR2bCr51dyTmhWZ1TNjg=
Subject key identifier: 2C:97:F0:A9:BC:0F:52:54:01:63:D7:7C:BE:A1:D0:CF:93:75:75:EC
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018D30FA61F46FCA5F01F5EBA0F07FA55D73
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/LJfwqbwPUlQBY9d8vqHQz5N1dew.roa
Signing time: Mon 22 Jan 2024 11:42:11 +0000
ROA not before: Mon 22 Jan 2024 11:42:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201575
IP address blocks: 91.200.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jan 2024 13:14:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:30:fa:61:f4:6f:ca:5f:01:f5:eb:a0:f0:7f:a5:5d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 22 11:42:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2c97f0a9bc0f52540163d77cbea1d0cf937575ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:7c:b4:ec:fb:f6:9d:b9:ef:e3:18:7f:e1:ec:
b6:a7:a6:9f:11:12:06:1f:0f:d4:16:74:81:22:32:
69:f3:84:b2:c7:a1:65:37:91:b6:91:ba:ce:a9:01:
31:1e:d6:6e:d8:b9:08:eb:e6:11:7c:5c:04:93:0d:
62:38:d8:58:c6:f4:da:64:7a:5d:e2:1a:2d:45:c4:
b1:ea:a7:ed:f0:cf:56:39:4a:7c:f7:16:e6:04:50:
c1:0e:11:68:a9:aa:8d:34:7f:ec:c4:db:28:73:e4:
fe:46:10:85:7d:83:61:13:55:e7:35:32:20:82:41:
b3:65:28:5c:94:8a:75:a0:6e:55:7c:94:9e:60:67:
3b:18:8d:06:59:04:66:62:9c:e6:3d:73:ab:a0:53:
88:f0:46:4c:0d:05:07:cf:cd:0b:77:fe:62:bd:e2:
98:0c:87:d0:00:b3:42:99:aa:53:00:fa:08:9d:d0:
3b:c1:bd:57:85:23:e1:cd:a4:df:7b:f8:94:36:3e:
8c:bc:37:20:21:83:f5:50:86:6b:10:41:70:ad:df:
b3:5e:18:a2:79:b1:8b:b4:58:16:0b:b2:66:9c:2e:
a1:d0:5e:37:cd:3c:51:ba:8c:ed:f2:08:31:43:26:
fc:79:13:e0:cb:44:8d:20:a0:d0:1c:ea:2a:14:df:
e7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:97:F0:A9:BC:0F:52:54:01:63:D7:7C:BE:A1:D0:CF:93:75:75:EC
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/LJfwqbwPUlQBY9d8vqHQz5N1dew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.221.0/24
Signature Algorithm: sha256WithRSAEncryption
18:da:b0:e3:ce:19:92:38:ed:89:e2:c8:ce:0c:6d:ab:20:8b:
f7:8b:e5:dd:c5:27:80:72:0e:04:c8:83:bb:f5:45:47:95:9a:
fd:44:b4:83:6b:7e:19:48:28:24:ea:fa:67:12:c9:94:a1:ac:
aa:80:c5:0f:80:65:f4:8e:e2:3b:61:3e:af:68:62:18:e4:d2:
4a:b1:6f:54:5d:77:04:a5:ef:c3:6b:c5:db:74:62:92:2a:89:
7c:ba:98:6d:80:0c:94:d1:8d:93:8f:b3:af:b5:e9:79:57:03:
80:f7:b5:f6:a6:9c:21:17:35:e4:43:a3:bd:c6:b1:b8:b3:3b:
26:b0:03:11:2a:49:b3:4c:79:19:e8:69:bf:d5:99:e9:ce:e1:
c6:df:d0:8e:85:41:2b:8c:e9:f3:fd:ed:d1:07:8c:d5:d0:2b:
35:9a:6b:e0:60:97:be:7d:9c:8f:f0:51:44:7f:88:75:82:dd:
05:23:0e:92:f4:b3:89:6b:59:8f:14:98:1d:da:11:40:79:53:
4e:a3:6d:b5:9e:68:f6:74:38:7e:64:aa:9c:c0:47:b2:8e:f5:
1c:83:8d:c7:93:cb:4f:ff:f3:4b:8a:3e:a3:69:5c:35:c6:79:
d9:3d:0e:e4:82:23:db:38:4e:68:8f:d9:c8:79:df:f6:e7:f4:
46:f4:20:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org