Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/RluoBN_OJ47XRnWUUkIgmzalcTg.roa
File: RluoBN_OJ47XRnWUUkIgmzalcTg.roa (raw, json)
Hash identifier: uRi0E9ekp8Njqqx/2hCmOvuAprkBg3TxEc9qrtS91JQ=
Subject key identifier: 46:5B:A8:04:DF:CE:27:8E:D7:46:75:94:52:42:20:9B:36:A5:71:38
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018A1B69608C71AF9AC7E6A307C861A03658
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/RluoBN_OJ47XRnWUUkIgmzalcTg.roa
Signing time: Tue 22 Aug 2023 04:03:25 +0000
ROA not before: Tue 22 Aug 2023 04:03:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.200.221.0/24 maxlen: 24
109.122.42.0/24 maxlen: 24
109.122.46.0/24 maxlen: 24
89.251.19.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Aug 2023 10:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:1b:69:60:8c:71:af:9a:c7:e6:a3:07:c8:61:a0:36:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Aug 22 04:03:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=465ba804dfce278ed74675945242209b36a57138
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:41:31:9b:b2:09:fa:b2:a9:4c:27:5b:a7:42:
cd:89:1d:be:d9:c7:59:e4:0e:68:73:eb:e7:a9:f6:
55:65:47:48:0e:22:5f:ae:c2:43:58:3c:fa:37:31:
5a:b1:cc:80:fd:a5:6f:38:b9:e1:1d:7b:97:3a:32:
4f:7f:07:19:79:ae:9b:9f:fe:91:94:97:c8:74:ba:
ac:bd:e2:fc:70:ab:1e:00:a8:9c:ce:2d:e9:6f:4b:
ed:88:82:46:a1:a9:7a:65:ab:49:96:ef:42:4f:50:
9f:7e:e0:f4:4a:41:02:4d:4a:46:9d:07:8e:dd:48:
39:aa:67:6e:1f:7c:af:e1:8a:b4:f2:b4:2a:88:f9:
33:7a:7c:34:3b:dc:29:05:f6:81:fc:8e:7a:08:97:
25:66:ec:03:d3:b6:c0:50:45:a7:e7:1a:0c:36:76:
30:fe:72:dc:cd:25:b8:6d:5f:d6:54:6b:51:6c:b6:
3f:c1:1c:5a:61:a4:c9:7b:aa:de:87:7c:8b:5e:58:
02:df:20:41:5d:d7:a0:c5:3d:b2:22:b5:ee:b6:87:
f2:07:f3:bf:4d:b4:86:cf:c0:06:b0:da:7c:79:22:
41:91:51:75:7e:c1:ef:fa:45:f2:14:ef:6f:a4:c0:
97:ce:a3:b6:72:0e:1c:19:2b:03:35:b9:81:f9:98:
16:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:5B:A8:04:DF:CE:27:8E:D7:46:75:94:52:42:20:9B:36:A5:71:38
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/RluoBN_OJ47XRnWUUkIgmzalcTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.251.19.0/24
91.200.221.0/24
109.122.42.0/24
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e4:3f:17:43:ed:f7:74:9f:f1:d4:70:e5:ef:bf:43:4d:6e:
cf:75:fe:4d:6d:a7:8a:ef:06:49:74:d1:46:9b:1c:03:dd:22:
4a:5b:f2:ab:e6:e9:e1:a8:c7:5d:86:a1:c7:65:74:20:4d:bd:
9b:ce:f4:71:07:0b:f3:f6:8c:fc:35:f1:20:5f:15:09:51:53:
54:4b:1a:cf:bb:58:5d:8b:15:d0:02:c1:81:3d:b0:8f:54:cf:
ba:4d:22:b9:56:0d:6a:01:3a:04:c6:5d:b9:ae:5c:fb:db:ac:
ec:0c:e3:46:3c:0a:e2:4c:96:a6:b8:f5:de:82:94:f3:4c:cc:
d5:45:2b:9f:86:ef:2b:2d:fa:a2:17:29:1a:91:de:29:6a:d6:
c5:51:09:8b:a6:58:39:5e:ac:e7:54:00:db:96:58:37:58:30:
af:67:95:29:16:ff:03:8e:7f:33:41:38:bb:be:f0:8e:8e:dc:
ce:7f:7f:8f:bd:b6:4b:c3:53:d0:3d:38:2c:7e:cc:80:a5:60:
48:c4:c9:87:66:68:49:a1:77:3d:f8:51:af:96:f8:49:22:3b:
d3:23:40:ed:c0:92:86:92:68:a3:3a:52:65:4b:c0:ef:c8:b7:
7c:bf:53:3d:a7:71:0f:31:ca:2f:97:a5:86:8a:02:b5:cc:49:
03:28:b7:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:36 2024 by rpki-client on console-fra.rpki-client.org