Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/MeqZ5tqruKIt8iYdMjdvCUVx_vw.roa
File: MeqZ5tqruKIt8iYdMjdvCUVx_vw.roa (raw, json)
Hash identifier: GNWHUrHmgfdL8+SL1svFRwcP7lkb6fVUMb/ZZn61OBg=
Subject key identifier: 31:EA:99:E6:DA:AB:B8:A2:2D:F2:26:1D:32:37:6F:09:45:71:FE:FC
Certificate issuer: /CN=ac0852af5a8e436b2d4da72e92b64114e1f4d15f
Certificate serial: 018DC70B8FB0B019C0233EAD743551AF63E5
Authority key identifier: AC:08:52:AF:5A:8E:43:6B:2D:4D:A7:2E:92:B6:41:14:E1:F4:D1:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rAhSr1qOQ2stTacukrZBFOH00V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/MeqZ5tqruKIt8iYdMjdvCUVx_vw.roa
Signing time: Tue 20 Feb 2024 15:04:00 +0000
ROA not before: Tue 20 Feb 2024 15:04:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8100
IP address blocks: 91.108.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 12 Mar 2024 20:38:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:c7:0b:8f:b0:b0:19:c0:23:3e:ad:74:35:51:af:63:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac0852af5a8e436b2d4da72e92b64114e1f4d15f
Validity
Not Before: Feb 20 15:04:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=31ea99e6daabb8a22df2261d32376f094571fefc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:08:eb:2f:5a:bb:17:5a:45:cf:f1:f5:c1:69:
a6:b7:95:9d:b0:b0:d4:b8:55:82:b0:94:33:98:22:
19:1c:26:98:46:46:f4:6a:e7:17:ca:2b:20:05:db:
bc:4a:50:1c:43:65:94:b7:3f:a8:56:3f:53:3e:53:
c3:c2:de:1e:41:8c:e5:5b:06:83:17:65:c8:d2:ed:
65:8f:a3:68:76:6b:f4:2b:b7:c0:4b:e8:10:ef:49:
0b:3f:3f:30:4e:23:c1:20:70:b9:30:65:ed:5d:85:
1b:d3:d9:e7:92:92:59:5a:51:3b:ef:8b:d6:f2:e5:
77:1b:57:ef:da:a1:53:6b:ca:6d:c5:07:bd:9f:c7:
99:fb:a4:5e:d3:ce:0d:e8:7d:91:94:fc:d7:f6:14:
32:f3:c7:89:dd:fc:eb:8b:16:f0:9c:ef:4b:9f:4f:
4e:13:5e:54:93:4f:43:59:c5:80:a8:93:82:3f:e3:
82:62:4f:d8:5a:04:78:47:5f:46:17:9b:f9:9b:81:
0b:75:c3:b8:c9:d0:4d:d2:47:b7:fd:0c:63:b6:48:
5b:02:41:26:c2:97:54:04:00:21:a1:ef:e1:30:8d:
d9:b0:cd:85:9c:5c:93:86:8b:86:4c:88:91:e1:4c:
10:e9:e6:b8:b7:fc:d3:e2:ae:6f:d2:aa:5d:d7:2f:
a1:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:EA:99:E6:DA:AB:B8:A2:2D:F2:26:1D:32:37:6F:09:45:71:FE:FC
X509v3 Authority Key Identifier:
keyid:AC:08:52:AF:5A:8E:43:6B:2D:4D:A7:2E:92:B6:41:14:E1:F4:D1:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rAhSr1qOQ2stTacukrZBFOH00V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/MeqZ5tqruKIt8iYdMjdvCUVx_vw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/4dbcb2-3a96-4817-9971-5007dde35045/1/rAhSr1qOQ2stTacukrZBFOH00V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.186.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:27:48:33:81:7e:a1:66:d2:a2:4a:10:41:4b:b6:af:c9:87:
5c:d3:6d:07:4e:08:29:7e:e1:dd:d7:f5:be:cc:a7:1d:29:08:
6f:c3:aa:90:8f:c1:b0:a2:aa:f3:2d:68:57:fa:d1:6b:68:f1:
41:b0:fe:55:98:86:03:ef:0f:b9:a8:b3:4c:0f:b9:18:c1:85:
8d:24:5b:b4:79:75:ca:9d:ae:84:c1:b6:eb:0a:a5:d3:1e:63:
c9:76:e3:52:f1:51:07:1e:cd:aa:e7:99:89:d0:b5:67:02:5a:
26:4e:59:ae:fd:03:38:5d:13:b1:3b:75:c8:1f:e2:8c:e6:61:
ed:31:a0:07:74:49:45:b6:1c:19:8a:79:4a:3f:60:ef:f9:3e:
f5:7e:c9:f1:b9:5c:68:09:cc:f4:d7:71:05:ce:93:38:40:8f:
bf:91:f6:2a:c6:1b:7e:68:06:8c:29:cc:8c:c0:58:5b:29:9e:
52:9f:1f:d7:77:fb:97:21:91:f2:2b:ba:f2:e5:5c:80:dd:9d:
31:65:e4:ad:49:5d:48:52:7a:ac:a0:8a:04:c0:26:e8:92:cd:
67:5c:50:cb:7a:71:29:ca:de:3a:33:f3:1d:07:cc:80:de:92:
e5:e9:40:15:aa:b7:19:11:2b:25:cd:56:ae:68:a1:87:96:f7:
32:ca:9c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:46 2024 by rpki-client on console-fra.rpki-client.org