Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/m7U7TF4QAAFLv96Uewuwc6X6v-Q.roa
File: m7U7TF4QAAFLv96Uewuwc6X6v-Q.roa (raw, json)
Hash identifier: NlbG8jh5bWRkt7XPFbzRrcV+GEAQputevMcjcK4Ruo8=
Subject key identifier: 9B:B5:3B:4C:5E:10:00:01:4B:BF:DE:94:7B:0B:B0:73:A5:FA:BF:E4
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 0188194C9986E7DF3BF73B1F4D29759E9BC6
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/m7U7TF4QAAFLv96Uewuwc6X6v-Q.roa
Signing time: Sun 14 May 2023 08:07:10 +0000
ROA not before: Sun 14 May 2023 08:07:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 91.200.223.0/24 maxlen: 24
109.122.44.0/24 maxlen: 24
91.226.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 03:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:19:4c:99:86:e7:df:3b:f7:3b:1f:4d:29:75:9e:9b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: May 14 08:07:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9bb53b4c5e1000014bbfde947b0bb073a5fabfe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:19:db:8b:f4:f0:1e:82:11:93:03:d2:b8:30:
7e:52:89:a0:03:7e:01:f1:2b:55:fa:48:9a:f2:d9:
30:aa:fc:b1:e3:5b:49:33:9f:ff:f5:65:b1:40:ae:
9a:87:c3:fb:36:d2:48:ef:52:47:94:34:6c:a0:74:
65:04:9a:6f:03:99:aa:64:bc:05:f4:0d:c3:c8:ce:
97:6d:7c:00:44:4c:f0:1e:fa:ee:61:dc:a4:af:d7:
1d:1b:40:10:e9:5e:9d:e0:03:fb:27:99:97:3c:b7:
e3:3e:e5:f3:99:29:64:41:df:00:46:09:f6:61:73:
16:60:3b:a4:22:1b:7d:99:03:78:1f:02:13:dd:6d:
65:ad:13:87:49:a8:fe:26:68:3d:85:68:d2:75:f1:
93:ee:88:47:55:57:31:c3:c4:ae:dd:00:c0:58:f9:
ec:59:d2:9a:2f:ec:eb:a0:49:69:52:be:5b:8b:41:
ad:41:ce:d4:d5:35:6f:e2:63:90:54:1b:72:3a:c2:
d9:67:31:79:3d:9f:99:c4:ef:85:94:be:42:71:15:
48:49:f7:9e:fa:78:71:4d:94:f0:b9:4a:1b:d2:b3:
3d:c0:8e:c8:88:8c:8a:94:4c:10:58:4c:ff:5d:7c:
3c:c7:da:d5:a9:ff:8b:a2:70:f7:f7:43:7f:05:b5:
49:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:B5:3B:4C:5E:10:00:01:4B:BF:DE:94:7B:0B:B0:73:A5:FA:BF:E4
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/m7U7TF4QAAFLv96Uewuwc6X6v-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.223.0/24
91.226.57.0/24
109.122.44.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:18:c9:c0:1f:1c:de:14:ea:68:67:67:73:e0:71:c6:36:c6:
e3:d4:c0:e7:50:ce:59:50:08:f8:8f:b5:a3:87:22:fa:78:b6:
f0:71:f7:14:b2:20:88:5a:e0:87:8a:c0:9d:5c:b6:6b:ca:1b:
a8:98:13:23:bc:9d:04:51:cb:88:bf:d8:69:11:0f:3f:03:52:
d9:ce:24:0c:ae:e5:91:4e:55:12:22:a8:85:ae:65:09:cd:1c:
8d:6c:cf:8e:e3:ac:78:8b:be:4f:62:9a:6e:84:c7:29:7c:24:
37:ea:96:1e:a0:ff:f9:cf:55:57:64:69:21:b8:34:e6:c0:31:
cb:bd:78:5d:7a:65:e7:e8:eb:ec:b8:bc:cb:57:6c:14:9c:8a:
3f:8e:ed:12:33:58:f1:67:39:00:86:78:42:e4:21:53:09:86:
a7:ae:81:3b:49:c1:3e:9f:dd:47:cf:f1:76:f3:31:35:96:2b:
ae:f9:0f:ae:45:b0:6a:52:a5:7f:3a:5d:42:18:4a:9e:a5:59:
f1:6d:8c:d8:e4:4e:cb:e6:e2:46:92:0a:23:af:2e:47:53:20:
39:37:fa:d8:80:d6:fe:f9:bf:96:7b:d6:52:71:da:f0:a5:0b:
4a:a6:66:78:5b:68:c4:67:de:6d:4d:52:6b:ec:d2:49:26:0b:
95:f2:c5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:07 2024 by rpki-client on console-ams.rpki-client.org