Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/kJtiqN21K891TICGGK-28lV_JrI.roa
File: kJtiqN21K891TICGGK-28lV_JrI.roa (raw, json)
Hash identifier: O5psBc6PpglaqXkVIvC8v+DmQqqWpB0h3k9s6quxWHA=
Subject key identifier: 90:9B:62:A8:DD:B5:2B:CF:75:4C:80:86:18:AF:B6:F2:55:7F:26:B2
Certificate issuer: /CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Certificate serial: 018CC86EFFAA169CA02A26380C75B13EB837
Authority key identifier: 53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/kJtiqN21K891TICGGK-28lV_JrI.roa
Signing time: Tue 02 Jan 2024 04:29:26 +0000
ROA not before: Tue 02 Jan 2024 04:29:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197202
IP address blocks: 91.223.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6e:ff:aa:16:9c:a0:2a:26:38:0c:75:b1:3e:b8:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53296ee33153ef6e6938d57a2a132c1e526dc430
Validity
Not Before: Jan 2 04:29:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=909b62a8ddb52bcf754c808618afb6f2557f26b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1e:66:70:47:ee:3a:ba:59:9e:53:b1:32:fd:
15:ec:fe:c3:12:64:e6:58:91:08:0f:fc:86:41:59:
ba:cf:13:f8:ae:9a:13:f3:9a:13:52:2e:cd:da:4b:
fe:51:64:d3:1a:e7:ae:6a:61:ce:b2:fe:6b:41:77:
a4:19:bb:96:1c:c3:cd:64:7e:98:26:e6:fe:0c:18:
b8:c6:3c:10:2f:fb:5d:d4:b2:04:42:95:35:d5:f7:
de:c5:2b:99:8b:d6:e9:f9:6f:96:c8:f2:6c:60:00:
a8:63:e8:11:7d:28:34:0d:33:3c:f4:7f:6c:8c:03:
5f:2f:fa:e0:3e:d1:94:c8:3f:ee:69:82:77:df:56:
80:fc:4c:eb:1e:42:46:b3:b8:4f:e7:1f:8c:8c:5a:
e8:09:9c:c7:54:4c:1e:dd:b6:f6:3b:86:b1:5b:50:
4f:fd:90:b1:c4:76:f3:df:12:db:c9:5c:e2:cd:c8:
8a:fc:58:09:4e:59:c4:fe:21:e3:a2:18:c0:d4:73:
1d:22:03:45:11:18:ef:68:04:71:44:26:4a:06:a6:
07:8d:73:bb:44:27:97:fc:b1:7b:fe:ef:97:b4:85:
c6:40:58:0b:c8:52:09:0f:be:f8:46:87:b1:5e:74:
ae:49:c9:b4:3f:54:3b:d9:df:80:ff:1e:43:af:f0:
9c:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9B:62:A8:DD:B5:2B:CF:75:4C:80:86:18:AF:B6:F2:55:7F:26:B2
X509v3 Authority Key Identifier:
keyid:53:29:6E:E3:31:53:EF:6E:69:38:D5:7A:2A:13:2C:1E:52:6D:C4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uylu4zFT725pONV6KhMsHlJtxDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/kJtiqN21K891TICGGK-28lV_JrI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f8b381-692a-4830-8d7d-21bf708f3cad/1/Uylu4zFT725pONV6KhMsHlJtxDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.79.0/24
Signature Algorithm: sha256WithRSAEncryption
26:6d:ea:1e:14:55:f3:42:9d:a7:17:ec:61:34:e3:2d:45:3c:
ad:54:6c:1e:64:29:82:21:da:87:95:f8:8a:4a:c7:fc:b5:15:
1d:b0:8a:ab:fa:9f:0c:f2:2b:2b:53:d8:3e:82:c8:f1:d2:27:
04:a7:12:3d:1a:ea:c9:a1:70:9a:45:30:70:6b:e9:63:7d:be:
01:c1:dc:26:84:07:0b:af:8a:0f:09:06:fb:11:d4:76:5a:1e:
b3:1a:ce:a0:b7:40:bd:5a:41:6a:4d:af:7e:95:04:9d:5c:5e:
07:66:0c:b3:ea:45:11:b3:a7:72:f8:79:6c:85:18:79:c1:06:
10:76:4f:9c:5f:ae:25:f6:a6:ae:4a:01:04:e8:01:f0:bd:bd:
ea:0f:5e:fb:5c:c7:c8:76:91:42:c0:e1:79:69:c0:3e:40:68:
b4:cc:d0:87:d6:fb:d0:3d:2a:c1:e9:db:78:80:3d:a7:2c:78:
d8:c9:7a:9c:2d:db:c0:42:c0:95:1b:7a:79:ac:51:08:14:7e:
c5:fe:10:9e:70:c4:4b:4d:aa:47:d7:c3:3d:ca:fb:2e:e4:27:
f7:4f:f0:3d:26:7a:ba:c0:53:bd:ea:10:fd:00:fc:6d:07:54:
39:c8:17:a2:5a:58:af:78:e6:55:6b:36:64:9d:6e:ba:3e:d1:
81:22:09:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:08 2025 by rpki-client