Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/UV_4qc7sYG0LNFWGbAjqtng6R8k.roa
File: UV_4qc7sYG0LNFWGbAjqtng6R8k.roa (raw, json)
Hash identifier: bH8cOMUDyZgIVEmLff3ZbHUwkAXYslbVzucUf7LCvtg=
Subject key identifier: 51:5F:F8:A9:CE:EC:60:6D:0B:34:55:86:6C:08:EA:B6:78:3A:47:C9
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018D17AA9E73EF035D8B33E521BE7F01C792
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/UV_4qc7sYG0LNFWGbAjqtng6R8k.roa
Signing time: Wed 17 Jan 2024 13:44:34 +0000
ROA not before: Wed 17 Jan 2024 13:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203511
IP address blocks: 91.228.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Feb 2024 17:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:17:aa:9e:73:ef:03:5d:8b:33:e5:21:be:7f:01:c7:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 17 13:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=515ff8a9ceec606d0b3455866c08eab6783a47c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:89:bb:f7:15:fc:2b:b5:a9:70:eb:de:6f:cc:
06:73:32:b3:15:33:3b:5e:7c:71:af:dd:e3:bd:24:
d5:f3:18:6e:6c:3a:1d:38:9d:ef:de:0c:f7:c0:40:
b7:44:1e:bc:61:7d:fd:78:e9:a0:c9:f5:a9:f7:a3:
5c:3c:3d:79:70:b4:b9:74:d2:28:42:12:8c:33:01:
bb:19:65:4c:69:a6:27:44:e6:60:62:2b:0b:b7:11:
62:37:9c:a7:fc:c0:ed:de:39:bf:ce:8e:32:8f:30:
b6:1b:46:a1:ae:d5:a6:07:12:be:01:f8:8e:84:2f:
42:c3:5b:3d:52:9a:7c:aa:51:dd:ea:55:55:64:6d:
f2:ba:ab:21:35:f0:86:a4:4f:11:c3:a4:47:b7:96:
03:fe:d1:27:cb:cc:7c:a2:d2:5a:f2:24:26:02:80:
82:ba:bd:45:c0:b3:03:59:4c:25:e0:94:67:77:13:
ca:23:f3:f1:99:52:ae:85:83:bc:f2:98:6b:85:30:
40:0c:0a:8c:c7:1d:90:ef:0b:06:b4:72:d2:01:d0:
36:13:35:be:1e:38:39:b4:b2:ca:0f:60:f5:6a:6c:
80:52:81:13:41:9a:1f:c4:c8:cf:db:ea:a2:78:6f:
8e:9e:ff:68:84:55:be:ee:01:57:86:70:6b:c4:e5:
07:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:5F:F8:A9:CE:EC:60:6D:0B:34:55:86:6C:08:EA:B6:78:3A:47:C9
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/UV_4qc7sYG0LNFWGbAjqtng6R8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.15.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:80:2b:10:e4:ef:38:dc:47:39:37:d0:a6:23:74:c2:c3:64:
4d:bf:54:6c:b1:6a:c2:4d:dc:07:88:16:ae:eb:0f:51:3c:52:
ea:f2:cf:97:52:2d:02:6e:7c:10:70:2b:c8:fc:29:ab:54:b0:
66:0e:fe:d7:71:91:53:02:3c:67:39:e0:2f:6b:8a:31:60:ad:
4d:af:97:17:8e:a3:b2:43:bb:01:2c:49:0f:64:07:ab:2d:be:
8d:ec:11:1d:e6:d1:e1:a2:b6:68:5c:a3:84:f4:7e:26:99:43:
b8:e4:05:bd:20:e5:7c:9d:3a:08:bb:e2:8f:05:38:0b:ad:d3:
a8:c8:9d:95:1f:0a:8b:5d:31:fa:6a:d4:a8:7b:70:f4:2e:be:
87:f9:8e:00:2b:5a:70:ce:bf:21:34:13:14:56:0e:40:ed:4c:
f2:07:99:9f:0e:cf:93:31:e7:3f:aa:ec:03:ac:11:79:f7:9c:
5b:10:f6:d1:42:2d:96:d1:1f:61:ed:93:80:9e:fe:5f:78:78:
88:40:ec:15:24:06:57:f8:dd:ab:fb:f3:db:54:49:55:0e:69:
37:92:80:d5:5e:2a:29:26:5f:5b:2a:b3:a6:e3:60:3c:21:2b:
46:b4:66:52:98:e5:8c:04:07:74:38:27:a4:46:4c:71:01:79:
ac:49:b7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 22 20:07:06 2024 by rpki-client on console-ams.rpki-client.org