Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/4BXfzDXVHm8GcLXqo8JpQ4WwjYA.roa
File: 4BXfzDXVHm8GcLXqo8JpQ4WwjYA.roa (raw, json)
Hash identifier: 3PV/4uxw8CUK2qvcqzaHjDpoqQqh+M7GbFHKuJ7WZ98=
Subject key identifier: E0:15:DF:CC:35:D5:1E:6F:06:70:B5:EA:A3:C2:69:43:85:B0:8D:80
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 018B445ED10D37DA49D6286F26A7B2FBD5BB
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/4BXfzDXVHm8GcLXqo8JpQ4WwjYA.roa
Signing time: Wed 18 Oct 2023 19:59:06 +0000
ROA not before: Wed 18 Oct 2023 19:59:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 188.191.107.0/24 maxlen: 24
91.225.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Oct 2023 18:57:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:44:5e:d1:0d:37:da:49:d6:28:6f:26:a7:b2:fb:d5:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Oct 18 19:59:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e015dfcc35d51e6f0670b5eaa3c2694385b08d80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7e:13:f1:1f:60:a8:16:b8:4b:1e:89:f4:ea:
ce:30:87:45:40:e5:7e:bf:df:8c:70:a3:fa:56:21:
c7:2c:58:59:b6:24:b3:b7:a6:05:71:4e:28:f1:5a:
78:50:b6:40:d3:d4:6d:d3:58:99:38:a6:84:8e:99:
19:ac:9a:76:4e:a4:5f:76:65:57:ef:84:7d:ef:e6:
6c:b8:60:47:dd:64:13:04:50:27:af:54:dd:56:bd:
51:ca:db:0a:01:bc:b9:28:51:d6:aa:4a:b3:81:13:
e0:c8:75:d6:9c:80:30:10:a0:57:14:ef:ef:ce:72:
f5:5e:c3:1a:2b:6e:b8:63:a5:7d:a2:67:37:9b:fb:
64:c3:d5:ba:58:3d:41:b5:d5:a6:65:54:6d:cb:75:
03:2f:02:ce:fd:6a:7c:ef:23:cd:dd:68:42:d6:d0:
02:a0:f7:3b:11:61:21:73:0c:07:f6:06:f5:66:74:
35:5b:6c:2f:75:e2:31:8a:97:f9:da:d5:b0:d0:27:
07:03:a4:9b:1e:84:20:c0:41:c4:e0:b1:98:65:93:
25:ce:10:81:dc:1b:36:35:24:f3:ff:6f:18:cf:cf:
ca:00:cd:c4:7a:c4:bb:1a:49:d9:2f:57:6c:b7:e9:
b7:56:6f:30:03:51:8b:61:3b:d8:bf:16:fc:1b:28:
9b:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:15:DF:CC:35:D5:1E:6F:06:70:B5:EA:A3:C2:69:43:85:B0:8D:80
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/4BXfzDXVHm8GcLXqo8JpQ4WwjYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.225.0/24
188.191.107.0/24
Signature Algorithm: sha256WithRSAEncryption
67:7b:2b:7e:7a:a4:34:3d:2a:7b:ce:f3:f3:b7:22:e8:b4:44:
db:80:7d:ba:fc:13:68:fb:81:bd:ca:48:ec:b0:61:5b:78:c9:
e8:45:d7:7e:27:7f:80:c7:38:f6:7f:4b:3d:95:72:5e:e6:15:
8a:7b:f1:02:28:d4:c3:b9:a5:b9:57:36:fe:c4:f2:ed:19:7f:
a6:f2:71:ea:bc:de:82:23:21:04:0f:bc:47:81:26:84:b3:17:
9a:c9:5a:f6:6e:a9:87:d9:aa:27:6b:fc:51:29:92:11:53:19:
b6:f4:19:66:b2:4a:2c:c2:00:9f:b6:b3:69:94:59:35:09:cd:
d0:28:23:76:32:9c:27:c6:9f:0b:fa:c3:b8:b2:ad:16:a0:ed:
f0:d6:14:3d:32:a7:38:97:59:dd:5d:cb:dd:8c:1f:f2:99:0a:
03:06:e4:14:ad:8c:1f:c7:b7:d0:fe:f9:e8:e1:c0:48:74:0e:
bb:b2:d0:6b:65:21:1a:5f:d4:ad:e0:d3:c9:98:d8:ff:59:08:
e2:26:05:c3:16:b8:36:e6:be:d0:fb:94:34:23:77:0d:2f:28:
46:9a:98:e3:b9:ae:d2:46:f1:66:a7:92:8b:06:1c:1d:18:b0:
82:a0:3b:dc:26:9e:61:6a:0c:7a:a0:b6:4a:c3:35:10:6f:64:
d1:94:7c:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:48 2024 by rpki-client on console-ams.rpki-client.org