Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d27567-710c-48cd-9e5d-3002df825d5d/1/Cu8fiKqYt-hGGIPoej1bAEBPUJE.roa
File: Cu8fiKqYt-hGGIPoej1bAEBPUJE.roa (raw, json)
Hash identifier: vlemim++sEeugIqhCtDShN7qzeei3Fcc7dcTIhzf1vI=
Subject key identifier: 0A:EF:1F:88:AA:98:B7:E8:46:18:83:E8:7A:3D:5B:00:40:4F:50:91
Certificate issuer: /CN=1e7e08d56475bae407a4f2bca8e89a0997685a3a
Certificate serial: 018BA48E12271150CB4EF803902961ADFB08
Authority key identifier: 1E:7E:08:D5:64:75:BA:E4:07:A4:F2:BC:A8:E8:9A:09:97:68:5A:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Hn4I1WR1uuQHpPK8qOiaCZdoWjo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d27567-710c-48cd-9e5d-3002df825d5d/1/Cu8fiKqYt-hGGIPoej1bAEBPUJE.roa
Signing time: Mon 06 Nov 2023 12:14:16 +0000
ROA not before: Mon 06 Nov 2023 12:14:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34525
IP address blocks: 91.224.120.0/23 maxlen: 23
2a00:1ce8::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 06 Nov 2023 12:24:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:a4:8e:12:27:11:50:cb:4e:f8:03:90:29:61:ad:fb:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e7e08d56475bae407a4f2bca8e89a0997685a3a
Validity
Not Before: Nov 6 12:14:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0aef1f88aa98b7e8461883e87a3d5b00404f5091
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1f:e7:ee:39:0a:56:cf:d3:a2:ef:91:16:e6:
d7:b3:3e:51:06:14:d9:55:96:21:c8:ba:97:b0:49:
6e:50:5a:17:de:73:e7:3d:fa:08:a3:3c:7b:a1:f6:
fe:a4:55:ba:ba:24:43:45:06:5c:c5:f0:3f:3b:9b:
b8:63:9d:84:a1:ae:88:ad:10:68:1f:01:1a:26:3c:
46:01:09:f2:0a:3b:74:cd:c5:63:9b:fd:ec:a5:59:
e2:4a:99:be:85:59:80:d3:1e:2f:ee:a6:69:09:5b:
92:e1:92:6a:86:b4:eb:a1:d5:ec:7b:8b:0e:a5:bc:
dc:75:6a:33:5c:97:b4:a4:97:20:ac:fa:0d:ef:7a:
d1:8d:5f:26:11:f7:66:74:64:ac:8d:c7:d8:23:cf:
03:e7:9f:c3:c5:04:d2:b7:e2:06:e6:08:92:81:79:
4d:72:eb:8b:90:43:a5:d4:c7:f5:b5:c4:b7:7e:c2:
8a:86:b8:c1:03:f6:26:eb:67:12:f1:10:51:e6:f4:
a8:3a:02:25:87:93:fb:8d:1d:66:46:54:bc:8f:6e:
1b:50:3b:86:6e:42:76:1a:54:e5:ae:3b:de:52:51:
c2:93:1a:08:a0:49:53:f2:e1:b0:dd:20:66:24:f2:
a0:42:84:a8:67:98:e7:6f:8b:73:c6:86:f2:d7:c4:
ea:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:EF:1F:88:AA:98:B7:E8:46:18:83:E8:7A:3D:5B:00:40:4F:50:91
X509v3 Authority Key Identifier:
keyid:1E:7E:08:D5:64:75:BA:E4:07:A4:F2:BC:A8:E8:9A:09:97:68:5A:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Hn4I1WR1uuQHpPK8qOiaCZdoWjo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d27567-710c-48cd-9e5d-3002df825d5d/1/Cu8fiKqYt-hGGIPoej1bAEBPUJE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d27567-710c-48cd-9e5d-3002df825d5d/1/Hn4I1WR1uuQHpPK8qOiaCZdoWjo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.120.0/23
IPv6:
2a00:1ce8::/32
Signature Algorithm: sha256WithRSAEncryption
49:8f:0d:32:b8:72:41:60:6a:2b:92:86:86:ec:04:a5:13:1d:
0b:9a:cc:1f:ae:39:90:58:cc:b7:08:d1:f8:aa:ea:21:ad:70:
87:5f:9f:2c:9f:3b:ca:03:72:24:be:0a:25:a1:0a:0e:50:83:
43:54:e9:46:a9:c8:f1:0c:9d:0b:06:21:47:89:cc:2e:02:b1:
4c:06:c5:c5:fa:7d:7b:b0:b6:9f:c6:01:2d:31:c3:d5:a2:27:
5e:ed:3e:32:da:6b:d0:00:46:f3:2b:a2:ce:16:53:55:ce:a7:
af:b0:41:c2:64:0e:e5:cb:88:66:d2:6a:e1:ce:11:b8:db:c4:
6d:7f:d6:80:c5:6e:b1:e9:ad:05:ff:f2:97:d4:8e:69:86:6c:
1c:b7:04:48:41:54:c2:95:5f:0d:fb:25:27:16:da:54:a7:20:
31:ed:ca:d7:82:31:80:d4:e7:2e:1c:27:fb:f5:49:65:87:28:
90:ae:da:f7:0e:5e:de:6b:1c:e0:2d:41:97:a4:9f:28:ff:20:
d8:bd:2e:d0:4f:4d:bd:f2:89:fc:40:89:a4:c6:03:dc:af:8f:
cb:fa:ef:e4:49:48:ec:ee:7a:8c:f5:74:6a:77:4c:48:48:7d:
23:40:df:ee:95:4a:a6:f0:a8:14:c7:d3:d3:eb:8d:ab:89:f9:
0b:0c:b8:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:56 2024 by rpki-client on console-ams.rpki-client.org