Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/fig926sI6dUaUc8sgut0-flioYg.roa
File: fig926sI6dUaUc8sgut0-flioYg.roa (raw, json)
Hash identifier: xbC0qWZstxPM9fVdLz30pnr9mWw73LuI8+wfQSJl/EU=
Subject key identifier: 7E:28:3D:DB:AB:08:E9:D5:1A:51:CF:2C:82:EB:74:F9:F9:62:A1:88
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018C172924A52FFF10C160F33AF0D4CAF542
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/fig926sI6dUaUc8sgut0-flioYg.roa
Signing time: Tue 28 Nov 2023 18:20:21 +0000
ROA not before: Tue 28 Nov 2023 18:20:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.200.220.0/24 maxlen: 24
109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 03 Dec 2023 21:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:17:29:24:a5:2f:ff:10:c1:60:f3:3a:f0:d4:ca:f5:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Nov 28 18:20:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7e283ddbab08e9d51a51cf2c82eb74f9f962a188
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2e:61:8e:5b:0a:47:25:ab:6a:47:40:11:25:
ec:3a:84:5f:98:a1:95:5c:9b:04:e5:ae:62:e6:97:
87:b5:8a:47:b2:e8:66:63:f3:84:5e:7d:c2:ca:d8:
fa:64:71:c5:38:a5:59:9e:e5:86:5c:c0:20:8d:19:
a0:87:30:90:90:e5:f4:51:3b:ef:96:ef:fe:cd:93:
43:d4:f2:fd:fd:5f:ff:0e:ca:61:41:c4:05:6e:9a:
ef:fd:8f:ab:ff:32:e0:09:e7:9a:10:89:53:7f:b5:
86:53:f2:43:ef:c6:1c:37:62:0d:e3:02:aa:02:cc:
4c:61:54:45:99:ac:45:8b:5a:67:5b:e5:c2:9e:78:
e4:e6:81:bc:cb:54:cf:b5:f6:ff:91:cd:4e:54:a4:
b6:72:23:97:d5:1a:cd:8a:6f:6d:27:90:f4:c3:69:
f2:c2:ea:01:2b:4d:61:fa:f6:ec:8b:b8:95:38:54:
f4:e5:98:f1:cf:a1:92:e8:72:1b:ac:60:90:d1:3a:
96:23:f6:21:12:19:05:85:b0:31:02:ce:a5:e7:b5:
f6:78:d4:45:c7:09:a3:be:e4:89:ec:d2:15:9e:79:
72:df:f7:11:e1:66:45:d3:02:81:95:02:e6:96:07:
97:49:c3:84:12:14:cd:30:82:b0:a1:16:e7:d8:d9:
fe:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:28:3D:DB:AB:08:E9:D5:1A:51:CF:2C:82:EB:74:F9:F9:62:A1:88
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/fig926sI6dUaUc8sgut0-flioYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.220.0/24
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
35:60:f4:b9:13:86:64:5c:ac:b3:41:ce:37:7a:3c:d5:d8:fe:
6e:f9:ca:56:3d:c4:16:73:8d:e7:bc:0b:54:a4:95:b3:4f:ea:
b8:07:0a:f3:75:e7:44:e7:15:9d:87:06:0f:03:c2:37:e4:08:
11:dc:d3:31:84:17:ef:8c:33:11:4f:de:b5:1a:e6:24:9e:e8:
64:0f:3d:2b:96:56:b6:30:e1:31:67:1f:2d:7f:dd:b4:ab:1a:
5c:3c:dd:d5:bf:f4:46:30:05:65:94:b7:35:95:d8:f0:db:76:
9b:01:19:6d:6b:c2:2a:8a:b1:6a:a2:31:a7:8f:d7:5c:ac:71:
d3:74:31:e3:ff:32:69:99:32:3e:6d:b2:99:64:48:3f:11:38:
3d:b5:7a:10:fc:e8:08:2d:9f:4b:10:c8:a4:85:3e:82:a7:97:
66:0c:a8:64:00:ad:92:ba:e8:56:58:6c:01:d8:49:55:d7:13:
a9:dd:e3:15:df:c9:d8:b2:95:0f:c2:62:41:6b:ed:6e:a9:2f:
b2:0a:92:7f:7a:58:7c:ad:c3:bd:31:48:22:be:5e:24:b1:3f:
ff:6b:e8:3c:69:70:b0:d3:d0:41:49:22:7d:b2:c9:03:50:07:
c2:ae:21:6c:c0:8f:b5:d2:3d:b5:ef:2e:24:ad:df:a9:0c:99:
8f:7f:b5:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org