Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/eqjfuENYAv5lu9LptUokGfPae2o.roa
File: eqjfuENYAv5lu9LptUokGfPae2o.roa (raw, json)
Hash identifier: gZR2kEjBFz0aCa7wsnZYf8q5fQ0hvy7rzT+Iw7M/7lA=
Subject key identifier: 7A:A8:DF:B8:43:58:02:FE:65:BB:D2:E9:B5:4A:24:19:F3:DA:7B:6A
Certificate issuer: /CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Certificate serial: 018A8A655047BCA75D6863F1A6C1DFD51C23
Authority key identifier: 34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/eqjfuENYAv5lu9LptUokGfPae2o.roa
Signing time: Tue 12 Sep 2023 17:16:50 +0000
ROA not before: Tue 12 Sep 2023 17:16:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205842
IP address blocks: 91.246.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:30:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8a:65:50:47:bc:a7:5d:68:63:f1:a6:c1:df:d5:1c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=349cbbd5c2cf4195cc6ec7f21f607581a0224daa
Validity
Not Before: Sep 12 17:16:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7aa8dfb8435802fe65bbd2e9b54a2419f3da7b6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b3:2c:56:64:f3:a0:35:65:d1:c4:77:b7:b2:
ff:df:e9:72:45:42:d8:77:f9:e7:e3:8b:80:f9:ba:
ec:8d:49:56:2a:93:d9:d8:17:88:64:44:28:1d:38:
ae:f6:e6:d2:5d:1f:67:24:98:3c:90:12:b4:fa:19:
d9:e5:70:c2:f7:9d:ea:8d:b2:db:70:67:b8:0a:98:
1c:6a:c2:8e:1f:e7:59:fa:d6:50:f0:74:2b:5f:a9:
07:f5:27:01:f0:68:8f:80:e6:dd:f0:f2:c2:24:9f:
da:c4:d6:5f:98:69:55:61:e6:42:cd:8b:fb:c3:7a:
9f:1d:dc:a9:a3:09:79:cb:30:de:28:53:b5:f4:4d:
e5:b5:6f:c9:3a:a9:af:7d:02:d8:89:6b:de:c1:b6:
ae:3d:47:a8:2c:e5:d6:49:86:a4:61:66:34:1b:8f:
be:bc:7e:85:2b:49:1e:e7:8c:b7:20:ce:3d:48:66:
c5:25:54:78:d9:45:b9:f6:22:c9:0d:8f:7b:e4:fe:
9e:6f:28:86:3f:2d:2e:ee:28:fe:27:78:ca:95:07:
4d:48:6b:ff:50:57:f7:7f:e9:90:30:c3:a0:23:3a:
84:9f:26:00:79:1f:b0:ab:f9:3a:3c:99:1e:11:47:
05:0c:a4:d4:c0:94:08:42:cf:07:02:a1:c3:64:94:
1e:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:A8:DF:B8:43:58:02:FE:65:BB:D2:E9:B5:4A:24:19:F3:DA:7B:6A
X509v3 Authority Key Identifier:
keyid:34:9C:BB:D5:C2:CF:41:95:CC:6E:C7:F2:1F:60:75:81:A0:22:4D:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NJy71cLPQZXMbsfyH2B1gaAiTao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/eqjfuENYAv5lu9LptUokGfPae2o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/cdf5f6-2f18-42c7-930e-dc06dd805960/1/NJy71cLPQZXMbsfyH2B1gaAiTao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.217.0/24
Signature Algorithm: sha256WithRSAEncryption
91:61:96:72:0d:8f:e6:02:20:c2:4a:51:d8:a9:9c:cf:f5:89:
7a:73:37:95:c2:87:32:16:28:3f:df:2b:d9:89:8f:9a:36:45:
d8:a0:09:50:be:e1:3f:2c:d7:8e:0a:a3:f7:1a:f4:57:8e:1c:
82:c2:de:6f:e6:3b:b2:ff:56:d2:dc:4d:9a:18:85:8b:c2:ff:
73:dd:2e:15:65:2e:87:51:84:5c:27:78:96:06:40:53:cb:86:
57:d7:66:a4:32:df:7a:89:ee:52:bd:46:d6:59:b2:1d:53:ea:
17:db:93:e3:94:70:f1:36:49:35:5b:07:09:b5:8b:c0:1f:19:
9c:4b:96:22:06:fd:b7:00:20:6b:e8:1c:53:ad:65:a0:bf:b5:
0e:8b:3e:97:40:8b:b3:89:7b:7d:31:5f:8d:24:1b:2e:7b:b2:
ee:f0:98:5d:30:fc:26:b8:79:a1:6c:13:a5:3a:7f:09:db:a3:
58:3e:00:0b:8f:72:35:db:e8:e8:cd:2b:cb:b8:a2:0b:98:0b:
e0:c0:cb:c8:85:59:c5:01:d8:8a:93:c0:d1:28:48:84:62:05:
f4:36:8d:fe:4c:4d:67:8b:1d:c8:ae:6e:64:f7:e2:23:54:41:
b1:fc:ba:7b:03:e0:ad:60:ce:c3:1a:9d:91:32:0b:63:2e:f1:
9f:8c:1b:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:57 2024 by rpki-client on console-fra.rpki-client.org