Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/ed5ce7-2e2a-4e0e-99d2-1962c1d8cbb3/1/atUxESwMtPc3bnnz8U6u_RQuIVc.roa
File: atUxESwMtPc3bnnz8U6u_RQuIVc.roa (raw, json)
Hash identifier: DDn85QDtmYkRTikOeRid+mMsnij661lgI5yTV/ANoTA=
Subject key identifier: 6A:D5:31:11:2C:0C:B4:F7:37:6E:79:F3:F1:4E:AE:FD:14:2E:21:57
Certificate issuer: /CN=fde1afb55d8bb3dff1f0fe6306f3ef2079585aad
Certificate serial: 01856EF43589258AABE83A55D4D558A32E64
Authority key identifier: FD:E1:AF:B5:5D:8B:B3:DF:F1:F0:FE:63:06:F3:EF:20:79:58:5A:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_eGvtV2Ls9_x8P5jBvPvIHlYWq0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/ed5ce7-2e2a-4e0e-99d2-1962c1d8cbb3/1/atUxESwMtPc3bnnz8U6u_RQuIVc.roa
Signing time: Sun 01 Jan 2023 20:09:36 +0000
ROA not before: Sun 01 Jan 2023 20:09:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41064
IP address blocks: 91.203.184.0/22 maxlen: 22
193.93.124.0/22 maxlen: 22
2001:678:bc0::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:f4:35:89:25:8a:ab:e8:3a:55:d4:d5:58:a3:2e:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fde1afb55d8bb3dff1f0fe6306f3ef2079585aad
Validity
Not Before: Jan 1 20:09:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ad531112c0cb4f7376e79f3f14eaefd142e2157
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:24:d0:06:01:9e:a1:fc:84:44:54:8e:3e:dd:
62:bf:69:13:4e:46:2e:1c:49:72:b4:c3:a2:72:07:
3c:52:a3:f9:74:eb:32:46:8a:11:07:96:32:f0:a7:
e2:30:27:54:a5:cf:5e:af:c9:ba:95:f7:fb:38:00:
81:18:f9:15:8c:ae:b0:04:c3:9f:fb:93:55:0e:0a:
88:66:40:db:b8:95:f1:d9:2c:67:11:bc:74:e6:46:
33:13:6c:3e:ea:ab:a7:39:ef:a6:e2:b0:39:bd:c2:
e9:e4:fb:33:41:27:df:8b:a3:f6:b4:6e:c3:19:0f:
39:42:2b:9b:67:cc:d6:53:d4:c1:ad:62:5c:c0:3d:
86:70:7c:49:19:ad:9d:f9:1a:5f:fe:b9:39:0e:35:
58:93:bf:22:79:57:6e:56:df:c6:7a:ca:5a:34:73:
04:e4:b3:be:8e:29:95:70:63:7c:4d:2e:34:1d:82:
e9:07:95:46:07:e4:1e:c9:14:da:76:bb:08:0d:8a:
25:ac:f2:c7:76:c9:9a:b8:d2:22:4d:41:fe:28:8c:
6b:1e:00:74:be:59:49:fd:d2:76:44:24:57:05:e7:
60:5c:19:8d:c9:fe:83:eb:82:17:a9:2e:2f:ac:d3:
1a:59:f3:09:4d:1a:6f:db:34:31:08:58:51:f9:a7:
a8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D5:31:11:2C:0C:B4:F7:37:6E:79:F3:F1:4E:AE:FD:14:2E:21:57
X509v3 Authority Key Identifier:
keyid:FD:E1:AF:B5:5D:8B:B3:DF:F1:F0:FE:63:06:F3:EF:20:79:58:5A:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_eGvtV2Ls9_x8P5jBvPvIHlYWq0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ed5ce7-2e2a-4e0e-99d2-1962c1d8cbb3/1/atUxESwMtPc3bnnz8U6u_RQuIVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/ed5ce7-2e2a-4e0e-99d2-1962c1d8cbb3/1/_eGvtV2Ls9_x8P5jBvPvIHlYWq0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.184.0/22
193.93.124.0/22
IPv6:
2001:678:bc0::/48
Signature Algorithm: sha256WithRSAEncryption
5e:0f:47:5f:20:16:39:c0:03:fb:2b:bc:5c:82:ba:3d:6b:f9:
41:57:5d:49:1b:52:e0:c9:4f:37:50:00:4d:37:b6:d7:af:e5:
aa:fb:0b:31:3e:7b:96:b5:1e:4f:89:56:f0:cc:7c:83:b2:c4:
d9:a6:f1:d3:c8:42:19:54:ae:2e:a1:50:a5:b4:45:45:cd:ba:
8f:5c:b9:e2:ad:30:cf:e6:4b:c5:f8:35:52:ed:97:ba:5c:dc:
c9:d8:a9:b4:ae:18:3a:08:18:a3:ed:aa:77:11:e8:4b:1c:e7:
d6:0f:71:c4:d5:3c:d3:8e:bc:66:41:bd:6a:9d:44:f4:55:58:
dc:be:9d:89:26:5a:58:53:35:4a:db:a9:cf:99:3e:37:ca:94:
08:c5:13:70:77:96:53:17:b1:a6:62:e2:73:91:de:86:4d:1f:
23:42:72:e3:69:f5:6e:ce:ac:51:21:12:52:0a:d1:cf:6e:64:
f6:0b:d3:93:81:1b:06:40:68:f3:74:f7:bf:dc:56:04:0b:a5:
fc:76:6e:ff:a6:c9:47:40:95:c6:1d:19:bd:08:7a:4a:4d:5b:
1d:90:c9:57:d4:b9:65:bb:fc:47:e6:0b:d6:f1:ff:d4:77:f1:
c5:1c:14:aa:b0:23:73:aa:ac:56:b6:ae:b7:65:ce:1f:e7:08:
18:c0:8f:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:06 2024 by rpki-client on console-ams.rpki-client.org