Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/4GUmLY5yU70-4CMwdH7Bed0Bq_A.roa
File: 4GUmLY5yU70-4CMwdH7Bed0Bq_A.roa (raw, json)
Hash identifier: jr75YTzDJr9r29Ia2R3q8wuMVLNr0dh+haCulbR1Sy4=
Subject key identifier: E0:65:26:2D:8E:72:53:BD:3E:E0:23:30:74:7E:C1:79:DD:01:AB:F0
Certificate issuer: /CN=26ad7d3560134e0a8ae46fc5b32c5acb61dde39c
Certificate serial: 018617F3F688A7547D024ABC1D040E6C53CE
Authority key identifier: 26:AD:7D:35:60:13:4E:0A:8A:E4:6F:C5:B3:2C:5A:CB:61:DD:E3:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jq19NWATTgqK5G_Fsyxay2Hd45w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/4GUmLY5yU70-4CMwdH7Bed0Bq_A.roa
Signing time: Fri 03 Feb 2023 15:45:09 +0000
ROA not before: Fri 03 Feb 2023 15:45:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203735
IP address blocks: 91.205.42.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:17:f3:f6:88:a7:54:7d:02:4a:bc:1d:04:0e:6c:53:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26ad7d3560134e0a8ae46fc5b32c5acb61dde39c
Validity
Not Before: Feb 3 15:45:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e065262d8e7253bd3ee02330747ec179dd01abf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:37:21:f2:8d:e9:7f:21:41:f4:8f:75:4a:49:
d7:a3:56:f3:fa:c4:e0:a1:33:a9:d1:8b:ec:d4:3d:
42:ed:23:03:e2:b2:8f:7b:2d:84:b6:e5:ec:79:5e:
63:84:b9:38:c0:0d:95:08:af:2c:8c:4a:92:8d:fd:
5e:d1:95:ca:cb:e6:c7:4a:90:36:42:87:7f:65:06:
fc:72:e2:c1:42:a9:6c:fa:96:70:33:11:d4:20:5c:
ed:ac:d3:58:4a:86:75:46:55:ce:e3:ae:7d:65:c0:
7b:72:fd:39:27:a6:71:f2:47:9c:27:ae:58:9d:f4:
aa:2c:a7:8b:40:0c:fa:24:6c:f7:be:6e:ab:e5:6a:
c7:7c:29:4c:b9:d9:7e:8f:a3:b3:bb:20:4f:05:26:
94:c7:14:62:9f:0d:40:a1:d2:31:c9:cf:41:09:42:
4f:e7:48:c7:c3:ef:9d:95:ad:59:7f:8e:a8:da:16:
c7:6b:60:07:ca:d1:68:85:e4:eb:eb:67:32:37:cd:
b9:79:ef:61:22:c0:09:a1:ac:a9:c0:99:4b:3f:a8:
63:12:1b:88:17:e6:e9:29:5e:ad:34:e6:0b:07:f6:
6c:48:4c:38:c1:ff:84:32:07:f5:f0:4e:a1:7d:62:
fc:75:0c:da:c5:fb:c7:51:cc:b9:ce:32:fb:46:cc:
3b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:65:26:2D:8E:72:53:BD:3E:E0:23:30:74:7E:C1:79:DD:01:AB:F0
X509v3 Authority Key Identifier:
keyid:26:AD:7D:35:60:13:4E:0A:8A:E4:6F:C5:B3:2C:5A:CB:61:DD:E3:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jq19NWATTgqK5G_Fsyxay2Hd45w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/4GUmLY5yU70-4CMwdH7Bed0Bq_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/98fcb5-87a7-4fde-9847-4902a66b2d95/1/Jq19NWATTgqK5G_Fsyxay2Hd45w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.42.0/24
Signature Algorithm: sha256WithRSAEncryption
14:02:9f:43:3d:62:3b:d5:a0:8c:f3:14:20:08:dd:d5:e6:a7:
d0:6d:b4:28:c7:bf:7f:2b:a6:3e:49:79:00:f4:7a:70:63:a8:
0c:f6:42:2a:65:3f:a7:46:58:f8:31:8b:d3:87:c0:bf:82:dc:
2a:7c:6c:2d:f2:f8:70:9b:98:50:d4:83:da:2f:0b:67:06:e2:
05:fd:24:63:3f:d6:ad:25:42:2e:fd:99:1b:ad:7b:0f:d0:33:
65:0a:2b:7f:d1:62:d2:ef:e8:93:0f:08:b7:af:a2:93:a0:7a:
d1:df:2c:e1:cf:ee:e0:59:da:85:94:fe:1a:c8:f7:9d:67:df:
6c:43:09:0f:07:16:d9:f8:1a:2c:00:4c:75:64:d8:d2:a8:63:
97:6b:ce:b2:65:30:46:79:50:2b:ef:17:7b:37:0a:f5:55:6d:
14:b5:d6:b2:ba:6d:7f:47:d9:a8:ea:4e:fc:39:be:0b:6a:fd:
c6:1c:3d:42:31:64:78:06:15:12:50:5f:ab:dd:22:1b:77:ef:
89:c5:ee:07:35:ac:18:84:cc:c6:0b:f1:25:38:55:d8:1f:c0:
e4:f4:7b:a5:60:aa:f9:d9:80:a4:75:6c:5e:51:5a:27:c6:14:
da:dd:30:49:81:06:70:f3:a1:c2:fe:da:13:e1:a4:ab:40:6d:
ee:36:fe:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:20 2024 by rpki-client on console-fra.rpki-client.org