Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/H1a8uRacsYPZMZqMm7Ri7bFfHMo.roa
File: H1a8uRacsYPZMZqMm7Ri7bFfHMo.roa (raw, json)
Hash identifier: lK2F0RgbHnUbLxMYuVaqeR9XAzxyid6wA6Hx+urMNUo=
Subject key identifier: 1F:56:BC:B9:16:9C:B1:83:D9:31:9A:8C:9B:B4:62:ED:B1:5F:1C:CA
Certificate issuer: /CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Certificate serial: 018CC94E50F8EE4446032D86BC20D34DBD84
Authority key identifier: 58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/H1a8uRacsYPZMZqMm7Ri7bFfHMo.roa
Signing time: Tue 02 Jan 2024 08:33:22 +0000
ROA not before: Tue 02 Jan 2024 08:33:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12570
IP address blocks: 91.222.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Apr 2024 09:04:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:50:f8:ee:44:46:03:2d:86:bc:20:d3:4d:bd:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5847f1f4f6bcb2a4758ac8a997bc108000e418d1
Validity
Not Before: Jan 2 08:33:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1f56bcb9169cb183d9319a8c9bb462edb15f1cca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:c8:96:1b:3f:16:ea:f4:7e:84:e0:0c:70:dc:
f1:1b:ee:1e:1d:aa:83:05:08:6c:2b:c4:f0:c1:81:
a9:cb:d9:63:ed:60:91:12:58:63:95:84:a4:f0:ce:
f5:30:07:8a:e8:cd:be:73:6b:aa:b9:85:4e:82:de:
c5:e0:3c:cb:6e:64:ad:8b:41:17:a1:12:30:3a:28:
8c:00:05:2e:6c:13:a1:ec:0e:34:3f:21:e9:cb:04:
01:a2:ff:e1:c3:f6:18:10:f4:28:cc:29:6d:cf:97:
e7:0e:f9:3e:e6:f9:af:b1:62:27:6b:6e:e3:b1:df:
4d:18:2e:e0:cf:ca:56:b6:9b:bf:27:e9:04:3c:0b:
b1:a6:db:f0:78:e1:07:da:3a:9d:cf:7b:e1:4e:ae:
e3:79:04:8a:85:49:e7:1c:8b:50:59:31:8d:31:35:
9f:b5:1b:21:40:93:76:85:b5:c9:49:36:64:42:bf:
d2:ed:e8:26:8f:3d:97:08:54:c3:21:35:29:82:6c:
1f:34:e8:ae:89:34:87:71:dc:26:ba:fa:15:1e:c4:
2e:a6:48:2a:25:8e:6c:d8:02:4d:00:77:63:6d:9e:
de:10:98:ac:d2:32:2e:15:35:07:42:d5:45:64:45:
c5:38:82:41:69:88:2b:18:2b:ba:16:7b:53:a1:37:
88:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:56:BC:B9:16:9C:B1:83:D9:31:9A:8C:9B:B4:62:ED:B1:5F:1C:CA
X509v3 Authority Key Identifier:
keyid:58:47:F1:F4:F6:BC:B2:A4:75:8A:C8:A9:97:BC:10:80:00:E4:18:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WEfx9Pa8sqR1isipl7wQgADkGNE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/H1a8uRacsYPZMZqMm7Ri7bFfHMo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/38006f-fbfc-48aa-85ef-065bc28c2a52/1/WEfx9Pa8sqR1isipl7wQgADkGNE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.222.52.0/24
Signature Algorithm: sha256WithRSAEncryption
97:f7:06:c9:3f:59:8a:a4:ec:02:a3:8e:e4:61:b8:0b:f3:85:
f3:19:5a:10:a5:cd:e8:d6:3f:69:52:0c:93:5e:9b:82:65:7c:
3c:37:36:0a:65:5e:73:36:bb:8f:33:5d:2b:a9:0b:98:49:03:
41:59:b0:e6:5e:2b:1a:1c:de:ed:c3:c6:13:48:00:2a:2c:b9:
1e:ae:04:02:c3:e1:f8:90:8d:da:c4:b4:e3:cc:aa:e7:dd:99:
8a:9a:e3:0a:d0:e4:b4:71:fe:38:22:b5:9f:cf:eb:78:61:a0:
f3:71:c6:e2:6c:59:b5:35:59:91:1d:3f:51:1c:40:06:92:d2:
37:da:7b:b3:57:a6:9a:a8:39:63:0e:80:34:e9:87:9f:6f:dd:
60:31:84:fc:62:6a:c1:b4:60:f4:44:b1:a6:0f:86:a1:08:92:
e4:4f:22:85:25:6c:b3:3b:50:95:34:c5:0b:05:79:65:e5:82:
c6:30:2f:77:dd:2d:3c:e6:8f:05:39:66:bc:b0:b6:f8:d3:06:
5a:bf:80:45:61:35:6c:0c:3b:d1:b2:76:14:e6:f7:a7:d8:bc:
4d:1a:90:95:ac:0e:b1:49:30:a0:a7:7f:34:86:a1:1f:09:f5:
aa:7b:af:01:ae:c3:8e:02:b1:f5:37:4f:ec:b6:cc:12:32:31:
f9:af:af:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:45 2024 by rpki-client on console-fra.rpki-client.org