Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/fPRQ2xfR-D4xD-YqiX4OdQlp_tw.roa
File: fPRQ2xfR-D4xD-YqiX4OdQlp_tw.roa (raw, json)
Hash identifier: LQffdqassC1ATWSSfCF5nVRi1zgoOmJWyJzTZbSi0E8=
Subject key identifier: 7C:F4:50:DB:17:D1:F8:3E:31:0F:E6:2A:89:7E:0E:75:09:69:FE:DC
Certificate issuer: /CN=07f231365985828d5a9663ed1b440624b24fec13
Certificate serial: 018C41006852DE105603CC7939520DDDD7A3
Authority key identifier: 07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/fPRQ2xfR-D4xD-YqiX4OdQlp_tw.roa
Signing time: Wed 06 Dec 2023 21:19:54 +0000
ROA not before: Wed 06 Dec 2023 21:19:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 91.199.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:41:00:68:52:de:10:56:03:cc:79:39:52:0d:dd:d7:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07f231365985828d5a9663ed1b440624b24fec13
Validity
Not Before: Dec 6 21:19:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cf450db17d1f83e310fe62a897e0e750969fedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0c:39:89:36:92:c7:c8:4c:6b:36:cf:e9:9a:
3c:9a:a7:c7:c8:f7:87:d4:f7:68:e8:69:6e:7a:24:
9b:43:61:f9:5c:10:4e:f4:4f:38:2d:e1:85:36:e7:
e8:33:1f:c3:98:1e:7d:01:76:2e:e4:52:bb:af:db:
30:cf:58:36:c5:75:65:18:7b:a8:b7:10:8f:5e:9a:
ef:8c:f4:82:fe:55:f2:66:3f:f2:a4:22:31:d0:a2:
10:3e:f3:7a:2a:94:a5:da:5a:b5:c7:6f:25:a9:f6:
f4:36:3a:cb:7a:34:37:54:82:5c:9d:6f:95:9c:6f:
41:ca:ce:81:fa:7e:0b:ba:f5:30:6b:9d:aa:5a:a3:
2b:d3:32:86:94:7f:75:50:3a:49:30:1b:29:20:ee:
95:cf:f1:1b:43:3f:1e:e6:4d:05:2e:16:e6:f4:96:
51:99:b6:96:5d:00:3b:5d:62:ce:79:84:c9:a9:f5:
c7:27:1c:d1:a1:a7:80:9d:f9:ee:dd:89:fc:39:2a:
c6:bf:de:f6:20:6d:7c:93:9f:59:91:64:cf:57:c4:
6b:58:3e:2a:4f:75:8b:d5:bc:dc:a8:60:95:06:2f:
c7:c9:2f:88:36:b5:8d:4d:91:ec:d2:09:ca:f4:9a:
ca:f8:37:1d:08:d0:00:2d:00:a2:93:9e:1f:67:7a:
df:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:F4:50:DB:17:D1:F8:3E:31:0F:E6:2A:89:7E:0E:75:09:69:FE:DC
X509v3 Authority Key Identifier:
keyid:07:F2:31:36:59:85:82:8D:5A:96:63:ED:1B:44:06:24:B2:4F:EC:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_IxNlmFgo1almPtG0QGJLJP7BM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/fPRQ2xfR-D4xD-YqiX4OdQlp_tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/ef5fb3-3e56-4b77-aac7-085fa0a56052/1/B_IxNlmFgo1almPtG0QGJLJP7BM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.42.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:99:e8:26:ee:10:fe:71:0f:af:f2:84:e4:be:a8:b8:00:e5:
c7:d2:37:48:71:1f:20:28:b7:56:c5:4e:6f:1f:8b:7e:c4:b7:
6c:44:56:57:10:95:e7:f2:d9:6f:fa:99:61:39:c9:ce:c1:75:
1e:56:94:1f:9c:af:f4:99:33:ce:ca:0f:54:9b:98:ba:c4:f6:
4f:c9:38:37:df:d9:24:6e:53:5c:2b:e2:41:9d:65:41:63:1c:
17:24:8a:ba:ce:e1:d3:83:13:22:19:6e:90:d6:80:ae:6c:8d:
24:f5:ab:a5:40:a2:35:1d:f7:55:ca:27:15:b4:05:07:24:42:
02:0e:9d:3f:c8:49:42:5d:95:5e:3c:56:e5:51:32:c0:47:47:
a3:e1:9d:8d:cf:5b:14:ff:f4:ac:e3:9a:11:0f:4a:c1:8d:0d:
9a:0a:fe:88:3b:46:6a:ff:ff:46:cf:24:ef:87:22:87:e6:cb:
b4:0e:c3:c9:65:bf:f4:22:68:af:b4:5b:b0:60:6d:ba:2e:dc:
60:c4:bf:c2:a4:e2:f6:4c:22:98:bf:73:0d:11:d8:fb:30:09:
fc:b2:7b:fa:e1:bc:88:5e:7a:62:48:49:2b:7e:75:1d:35:29:
49:25:d8:fa:4c:d2:75:ca:cc:90:58:96:bc:0a:d3:87:ae:d7:
e1:0f:a8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:58 2024 by rpki-client on console-fra.rpki-client.org