Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/3e8100-988d-483e-bc86-600810634878/1/bFH6d_bJTD14Y-X4Awt4r2GaPHs.roa
File: bFH6d_bJTD14Y-X4Awt4r2GaPHs.roa (raw, json)
Hash identifier: q/0g2Mjfziayw0N8zkO921JTFIxjezyY5anDcdE6jP0=
Subject key identifier: 6C:51:FA:77:F6:C9:4C:3D:78:63:E5:F8:03:0B:78:AF:61:9A:3C:7B
Certificate issuer: /CN=5dd1398976b2f487725bc13d7faebed3e16d82c9
Certificate serial: 0190D0BFA60D5992D42DF70CE4D35DE6205D
Authority key identifier: 5D:D1:39:89:76:B2:F4:87:72:5B:C1:3D:7F:AE:BE:D3:E1:6D:82:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XdE5iXay9IdyW8E9f66-0-Ftgsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/3e8100-988d-483e-bc86-600810634878/1/bFH6d_bJTD14Y-X4Awt4r2GaPHs.roa
Signing time: Sat 20 Jul 2024 15:25:39 +0000
ROA not before: Sat 20 Jul 2024 15:25:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211014
IP address blocks: 45.91.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 23 Jul 2024 08:25:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:d0:bf:a6:0d:59:92:d4:2d:f7:0c:e4:d3:5d:e6:20:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd1398976b2f487725bc13d7faebed3e16d82c9
Validity
Not Before: Jul 20 15:25:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c51fa77f6c94c3d7863e5f8030b78af619a3c7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:14:d0:1a:8a:26:5f:82:92:97:00:3b:a9:b4:
07:4a:32:46:de:01:fb:4f:fa:0e:42:69:dd:93:a1:
8d:ff:c3:ed:7b:cc:36:53:f5:c3:67:46:15:cc:fa:
5d:71:41:00:6e:c5:5d:27:02:11:cc:7a:d3:a6:3b:
26:9e:70:5d:54:63:4e:b2:5b:76:04:93:29:2a:ed:
f4:66:99:72:19:8d:b9:77:75:5c:76:cf:35:52:1c:
d8:9f:5e:ab:97:82:a8:de:fe:db:c2:86:43:e6:1f:
e2:1f:5c:76:00:a9:ae:99:52:1a:b1:d3:f6:40:88:
36:fa:79:cd:5c:c1:a2:96:9a:d1:2a:56:7a:4c:c1:
30:0c:ef:71:56:d6:3d:69:29:51:4d:5e:c2:79:e6:
6e:34:09:70:85:27:4a:7f:89:57:b1:6c:98:18:f1:
7f:2e:43:72:37:4a:15:af:24:ba:e9:bb:d6:a2:ad:
15:79:69:db:87:9a:36:6d:e5:b3:b5:5c:86:37:0c:
64:51:e9:cc:dd:52:ca:e2:26:98:09:c1:cf:fc:14:
ff:46:72:fe:a6:08:46:8d:aa:30:49:90:a8:3f:11:
66:ed:91:f9:12:c8:a7:3b:9d:83:57:90:87:dc:79:
81:13:d2:8e:93:8b:c4:5c:40:ef:9c:8c:ee:78:57:
aa:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:51:FA:77:F6:C9:4C:3D:78:63:E5:F8:03:0B:78:AF:61:9A:3C:7B
X509v3 Authority Key Identifier:
keyid:5D:D1:39:89:76:B2:F4:87:72:5B:C1:3D:7F:AE:BE:D3:E1:6D:82:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XdE5iXay9IdyW8E9f66-0-Ftgsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3e8100-988d-483e-bc86-600810634878/1/bFH6d_bJTD14Y-X4Awt4r2GaPHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/3e8100-988d-483e-bc86-600810634878/1/XdE5iXay9IdyW8E9f66-0-Ftgsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.198.0/24
Signature Algorithm: sha256WithRSAEncryption
03:a0:b6:72:7c:30:b9:34:1e:27:c7:fc:f7:f4:12:3a:e7:db:
96:1a:49:4a:d9:0b:30:9b:2b:9b:f9:80:9e:b2:68:41:bd:d1:
6c:66:b0:95:35:86:bd:9f:8a:f6:22:f5:39:2a:44:7a:31:3a:
f9:2f:38:56:9c:31:1e:88:a6:e7:49:e8:fd:72:25:6c:22:45:
09:dc:88:da:c4:1b:ac:cc:6b:da:70:4d:00:78:52:07:79:f3:
b3:9e:b5:3a:cf:ed:0c:38:33:e9:71:b6:e6:c4:27:ec:08:d6:
d6:f2:64:de:99:29:17:1f:c5:03:5c:fc:9b:3d:83:a4:fe:57:
44:b4:8c:54:b7:a8:a6:6e:6e:d6:fc:88:6c:d8:fc:f4:d9:86:
10:ad:17:19:03:1f:50:94:a2:c4:e7:70:22:6a:60:6a:08:cf:
a3:20:a8:a7:9e:67:d4:c3:59:83:19:43:a1:df:a1:12:7e:4d:
47:f0:b0:83:3e:29:76:df:27:4e:39:92:c3:5b:6b:46:12:9c:
76:69:dd:5e:b1:c2:94:02:ca:ca:6a:36:59:64:8e:19:d8:cc:
dd:2a:0b:5b:8f:f4:23:1f:dd:b8:48:66:c3:0c:c5:a3:9f:09:
b4:8d:f8:fb:79:ae:ef:4a:50:4c:ae:f5:50:15:3c:55:45:89:
28:a1:45:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 23 12:25:25 2024 by rpki-client on console-ams.rpki-client.org