Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/3cac6b-2c2a-4b66-adee-d52325de6b08/1/UQ_yxC6Ag2j_Gvyrddm4jovrlME.roa
File: UQ_yxC6Ag2j_Gvyrddm4jovrlME.roa (raw, json)
Hash identifier: W+4aNPGeK7pWtQZGdnx0BHB7bDAr63jKk9+oNokryks=
Subject key identifier: 51:0F:F2:C4:2E:80:83:68:FF:1A:FC:AB:75:D9:B8:8E:8B:EB:94:C1
Certificate issuer: /CN=d350a076ce4a8ce6fb69f1fda4a194614a941afa
Certificate serial: 01856F1DB8B7059FFE189B7977A2F935C59B
Authority key identifier: D3:50:A0:76:CE:4A:8C:E6:FB:69:F1:FD:A4:A1:94:61:4A:94:1A:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/01Cgds5KjOb7afH9pKGUYUqUGvo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/3cac6b-2c2a-4b66-adee-d52325de6b08/1/UQ_yxC6Ag2j_Gvyrddm4jovrlME.roa
Signing time: Sun 01 Jan 2023 20:54:56 +0000
ROA not before: Sun 01 Jan 2023 20:54:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51790
IP address blocks: 91.229.72.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:b8:b7:05:9f:fe:18:9b:79:77:a2:f9:35:c5:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d350a076ce4a8ce6fb69f1fda4a194614a941afa
Validity
Not Before: Jan 1 20:54:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=510ff2c42e808368ff1afcab75d9b88e8beb94c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:37:5f:74:53:95:51:b3:f0:4c:6c:80:ca:4b:
f6:48:b5:f2:f5:ae:d0:39:74:75:51:80:fb:d4:c1:
b2:e6:2e:01:9a:05:24:59:d8:d5:30:45:58:6c:26:
d4:89:6c:f2:3a:20:f5:e1:d4:1f:6f:b7:b4:8b:b8:
bd:83:46:70:45:80:c0:e6:76:41:98:9b:a6:d3:5b:
97:c6:03:08:be:29:37:e4:ed:a9:04:b8:70:99:aa:
47:cd:f1:17:cd:49:48:5c:82:c3:87:4b:a5:92:80:
4f:e8:bc:dd:b9:a0:e4:44:43:bc:78:10:b3:f7:60:
0f:0c:e8:e3:e3:10:54:aa:c6:a6:99:8d:d4:3d:ac:
21:b5:40:fd:76:29:9f:bb:48:fc:1c:56:d6:a8:fe:
70:6a:f3:d6:78:05:59:b2:ba:3b:e8:63:aa:35:73:
5b:2a:0b:d9:94:2d:4f:ac:46:cb:d7:38:fe:a6:93:
70:4f:5a:c2:df:a8:b5:56:c8:f1:93:0e:a4:6f:f6:
3a:38:47:e0:de:ed:2c:b1:50:6a:ff:89:19:54:b6:
82:51:ba:b4:3c:48:76:ef:75:b9:3e:37:2f:ae:71:
73:f9:98:9e:23:72:6d:e3:e1:55:fa:74:9f:47:b4:
81:8b:12:fd:34:54:55:15:98:29:ea:ea:d3:84:c8:
bb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:0F:F2:C4:2E:80:83:68:FF:1A:FC:AB:75:D9:B8:8E:8B:EB:94:C1
X509v3 Authority Key Identifier:
keyid:D3:50:A0:76:CE:4A:8C:E6:FB:69:F1:FD:A4:A1:94:61:4A:94:1A:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/01Cgds5KjOb7afH9pKGUYUqUGvo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/3cac6b-2c2a-4b66-adee-d52325de6b08/1/UQ_yxC6Ag2j_Gvyrddm4jovrlME.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/3cac6b-2c2a-4b66-adee-d52325de6b08/1/01Cgds5KjOb7afH9pKGUYUqUGvo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.72.0/24
Signature Algorithm: sha256WithRSAEncryption
77:f0:07:f5:d5:f3:ad:3f:cd:0b:17:42:ce:51:81:c6:5c:3f:
89:6b:ef:bb:28:a2:59:33:cf:71:e9:e2:e5:ac:fd:9c:a5:ee:
33:fc:0a:5b:f2:dc:68:30:93:e5:57:f1:64:2d:22:59:ed:22:
6a:50:1d:83:f2:f7:90:53:f3:08:d0:4b:55:0e:53:1f:c5:9f:
33:30:75:3b:e8:10:ee:d1:ca:53:7f:b8:31:18:d8:d3:fb:d1:
bd:f2:54:8c:65:28:ba:b9:ac:45:77:01:e2:83:79:2c:d7:3c:
8e:7e:d9:3c:6a:1a:d9:6e:b7:68:c0:61:e6:ae:91:59:50:76:
87:24:88:b1:4b:3b:25:57:55:fa:40:5b:bb:2e:62:35:45:6c:
d3:cb:65:87:25:db:82:4f:e8:f0:d4:31:44:44:04:da:71:a8:
13:64:57:43:5a:8a:71:ce:70:57:b9:e6:f6:8a:04:68:9e:d7:
07:8b:6b:38:b9:a7:b3:b1:1a:40:ae:4f:95:42:c3:18:78:91:
f6:fe:93:a5:f6:e5:84:61:a9:e2:22:f7:5f:cf:97:f2:d7:e0:
03:38:8b:a4:38:f6:2e:85:12:2a:65:f2:24:10:3c:3d:16:7a:
65:cc:45:6c:c9:1d:be:d2:57:bc:69:3d:f0:a6:96:6d:6e:39:
25:14:e0:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:03 2024 by rpki-client on console-ams.rpki-client.org