Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/ebef4c-fd91-47ba-99e1-ec68e35a71ef/1/QVXtvpuoc7p_0OIYBrm-8lLlIdE.roa
File: QVXtvpuoc7p_0OIYBrm-8lLlIdE.roa (raw, json)
Hash identifier: QB6hyYrBAmwwmJHp2U0i19Ah0HxFFQCb43EtX4KpRE0=
Subject key identifier: 41:55:ED:BE:9B:A8:73:BA:7F:D0:E2:18:06:B9:BE:F2:52:E5:21:D1
Certificate issuer: /CN=25f007e4fbd5a622aa853c425a010ee789f7115b
Certificate serial: 0185709507596A90FC636C15FF92BD2424A4
Authority key identifier: 25:F0:07:E4:FB:D5:A6:22:AA:85:3C:42:5A:01:0E:E7:89:F7:11:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JfAH5PvVpiKqhTxCWgEO54n3EVs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/ebef4c-fd91-47ba-99e1-ec68e35a71ef/1/QVXtvpuoc7p_0OIYBrm-8lLlIdE.roa
Signing time: Mon 02 Jan 2023 03:44:52 +0000
ROA not before: Mon 02 Jan 2023 03:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21094
IP address blocks: 91.212.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:07:59:6a:90:fc:63:6c:15:ff:92:bd:24:24:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25f007e4fbd5a622aa853c425a010ee789f7115b
Validity
Not Before: Jan 2 03:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4155edbe9ba873ba7fd0e21806b9bef252e521d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:22:6c:cd:0f:01:51:39:b3:0e:25:54:2d:f8:
fb:a6:07:00:39:68:e9:97:b7:2f:7a:f1:b0:9a:c0:
b5:fb:87:a3:4f:67:7c:7a:8c:6c:55:de:19:cc:23:
dc:ef:13:e6:53:85:84:79:91:ff:01:38:5f:c8:b2:
94:06:36:aa:28:1d:aa:a0:b0:b9:aa:da:76:c6:d7:
9c:f3:17:70:34:20:ad:5d:09:85:04:d8:c3:be:45:
66:39:b1:8a:70:0a:c8:4d:70:5d:b5:d3:2f:34:e4:
48:ec:ea:b9:38:aa:5c:6e:21:92:2c:bc:a0:6c:ab:
fd:c8:a6:18:a6:62:41:38:94:6d:45:a1:e3:af:f5:
f0:8a:f3:ec:49:d7:60:52:13:ab:c1:20:8b:5d:c2:
06:3b:75:2e:84:45:25:6a:a6:04:63:cd:29:5e:d2:
72:c4:48:31:f6:2b:21:56:d0:b9:ca:e3:17:1a:cb:
30:e6:fd:9c:ed:36:f3:38:d7:9c:c0:18:f6:7c:71:
fa:5b:69:9f:98:91:10:b1:e2:e9:84:a6:07:93:64:
fd:76:94:af:34:19:69:63:e0:b2:09:74:bb:95:39:
88:77:89:43:96:a7:6a:06:df:42:7c:30:a4:28:dc:
9b:43:8a:4d:97:48:57:ab:9f:95:c5:28:87:b1:b5:
aa:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:55:ED:BE:9B:A8:73:BA:7F:D0:E2:18:06:B9:BE:F2:52:E5:21:D1
X509v3 Authority Key Identifier:
keyid:25:F0:07:E4:FB:D5:A6:22:AA:85:3C:42:5A:01:0E:E7:89:F7:11:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JfAH5PvVpiKqhTxCWgEO54n3EVs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ebef4c-fd91-47ba-99e1-ec68e35a71ef/1/QVXtvpuoc7p_0OIYBrm-8lLlIdE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ebef4c-fd91-47ba-99e1-ec68e35a71ef/1/JfAH5PvVpiKqhTxCWgEO54n3EVs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.202.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:77:14:70:84:f5:54:a1:b4:cf:b8:a7:d5:a2:c1:a3:6b:c5:
53:14:82:47:4f:a5:1a:a3:7e:86:47:5f:3d:92:5f:27:0d:39:
89:f6:fa:f7:14:4c:28:9d:3a:d5:f2:50:ae:f0:bf:fb:d1:f4:
31:18:06:de:ff:dd:7f:79:98:fe:be:18:1f:3e:92:75:14:44:
06:c5:95:6e:0b:bc:cd:fe:94:fb:fb:4a:0c:5c:d9:d9:7f:3d:
f4:e5:7f:4f:48:0e:da:02:3d:97:6a:4f:bc:41:a1:65:30:ff:
9d:09:e4:23:5a:e0:b3:a2:1a:a4:1f:1e:7f:7c:a7:01:a4:df:
61:bd:af:c8:eb:ba:0b:00:59:70:e2:cf:f9:47:81:9e:78:41:
6d:10:78:10:20:b0:b3:c0:27:84:f4:33:17:92:95:2b:e6:e7:
56:fa:03:17:3a:58:6c:f0:9b:49:49:4b:ac:f6:22:f9:0d:67:
b6:d4:3c:e9:1c:df:31:d6:a9:01:e9:bf:7a:5a:db:bf:77:e8:
13:9f:55:bb:57:45:2a:78:4c:5c:4b:65:c2:60:2e:1e:b0:0b:
df:04:68:03:eb:64:32:37:bc:ed:95:b2:49:cd:c5:64:e6:01:
e0:dd:7c:fc:06:63:6f:fa:3f:8d:5e:fc:b2:f6:84:64:9b:34:
93:cf:40:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:48 2024 by rpki-client on console-ams.rpki-client.org