Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/533a8e-94fd-4b20-afb6-b3641ccdd4bb/1/AS4DTgP588rYTdgHa7HrYAGTT38.roa
File: AS4DTgP588rYTdgHa7HrYAGTT38.roa (raw, json)
Hash identifier: BWvy36rb0V1HqwSklSM/xpqEo4dXloMvnPjr/3cmgpM=
Subject key identifier: 01:2E:03:4E:03:F9:F3:CA:D8:4D:D8:07:6B:B1:EB:60:01:93:4F:7F
Certificate issuer: /CN=18969bc62955113c0d04999eec91bdda9d2fa3a5
Certificate serial: 01856F5DBACFDE564913FA5C8603A600F41D
Authority key identifier: 18:96:9B:C6:29:55:11:3C:0D:04:99:9E:EC:91:BD:DA:9D:2F:A3:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GJabxilVETwNBJme7JG92p0vo6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/533a8e-94fd-4b20-afb6-b3641ccdd4bb/1/AS4DTgP588rYTdgHa7HrYAGTT38.roa
Signing time: Sun 01 Jan 2023 22:04:51 +0000
ROA not before: Sun 01 Jan 2023 22:04:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47577
IP address blocks: 91.208.42.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:ba:cf:de:56:49:13:fa:5c:86:03:a6:00:f4:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18969bc62955113c0d04999eec91bdda9d2fa3a5
Validity
Not Before: Jan 1 22:04:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=012e034e03f9f3cad84dd8076bb1eb6001934f7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:00:ab:e3:5c:fd:c9:6b:21:14:8e:c5:cf:de:
ec:ee:94:de:81:e3:ca:14:f4:9a:99:a8:84:3f:08:
77:fa:c0:82:b3:eb:96:0e:f1:7d:ae:1c:f5:84:34:
04:84:8c:0b:7a:21:0a:26:53:2d:13:aa:5f:f8:0a:
d2:4d:bd:b8:5b:3d:f6:f2:8c:f8:65:ee:21:0c:d7:
6f:b2:78:e9:35:aa:86:db:1b:03:a4:a9:3e:df:9d:
f1:a8:6f:ef:4a:01:31:45:11:59:b5:0b:4f:2e:a4:
92:48:d4:4d:ba:97:4a:06:36:71:9f:76:1c:5b:03:
48:94:6b:f4:fc:9c:6d:f7:fe:52:8f:02:07:02:ba:
bb:5f:1c:56:c9:53:0d:f2:fa:81:75:87:aa:08:69:
cf:ba:99:4a:38:0d:0e:bf:36:d3:b4:e7:97:56:f2:
09:43:b8:d8:4a:0d:dd:89:92:75:ca:fd:28:14:12:
15:0b:e9:27:1c:51:89:40:66:a5:7f:ad:48:11:21:
a8:63:c6:d6:d2:c7:c3:88:6c:e3:cf:c5:84:8c:c1:
c0:84:c7:7d:b2:e5:21:f8:ca:9c:8e:d8:3c:a5:85:
f5:58:ea:75:0c:a4:7e:61:58:dd:d6:dd:f8:ab:24:
70:03:c1:97:fa:39:56:e1:59:ec:c3:9d:d2:0e:5b:
ef:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:2E:03:4E:03:F9:F3:CA:D8:4D:D8:07:6B:B1:EB:60:01:93:4F:7F
X509v3 Authority Key Identifier:
keyid:18:96:9B:C6:29:55:11:3C:0D:04:99:9E:EC:91:BD:DA:9D:2F:A3:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GJabxilVETwNBJme7JG92p0vo6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/533a8e-94fd-4b20-afb6-b3641ccdd4bb/1/AS4DTgP588rYTdgHa7HrYAGTT38.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/533a8e-94fd-4b20-afb6-b3641ccdd4bb/1/GJabxilVETwNBJme7JG92p0vo6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.42.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:3f:44:bd:98:4b:17:22:fd:b5:9d:37:10:39:79:37:4b:c0:
bc:ae:37:05:76:52:88:cd:8e:fa:cb:b2:f5:f2:3d:2b:6d:e2:
7a:42:9c:46:d7:ba:46:90:9a:4c:56:08:5d:71:25:8e:86:d7:
3c:1f:6a:93:2c:e4:f8:16:16:9d:8d:7b:10:3a:c7:1d:ab:7a:
4b:f3:be:10:14:36:8c:bd:a4:1e:1d:35:0a:70:f0:62:3b:a7:
06:11:e2:6a:8f:7a:94:70:b3:cf:0e:7c:20:19:b5:e6:17:3e:
57:21:47:ab:fe:a6:99:0c:08:17:b7:da:59:b3:3f:e9:98:72:
2e:04:91:d1:f9:43:62:1a:cf:b2:fc:36:53:4c:f2:bb:68:92:
e7:80:63:8f:21:56:2e:07:7e:93:bb:76:78:0b:72:a1:3e:fd:
68:02:83:6d:54:ca:0f:4e:ec:91:81:ec:97:4e:72:56:d5:92:
f8:db:c9:d1:38:82:53:c3:7d:4f:35:81:d0:df:1f:cf:b7:cf:
b8:f7:59:30:a5:1d:ac:84:63:5a:ff:ee:f8:fd:43:67:a2:b2:
5f:8a:b8:b2:7f:bc:17:26:57:71:be:24:19:4c:03:e3:1b:0b:
e4:1e:30:3c:2e:7c:86:8c:4f:a1:0f:6a:76:ed:62:1a:53:2e:
18:00:f3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:36:35 2024 by rpki-client on console-fra.rpki-client.org