Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lWU8HmCgOiKLaPeF93JTAWA8bZA.roa
File: lWU8HmCgOiKLaPeF93JTAWA8bZA.roa (raw, json)
Hash identifier: 3jrWyOY8zus9Psn1jXZ09F/vU6fi/jSsPgDNoH4KN4g=
Subject key identifier: 95:65:3C:1E:60:A0:3A:22:8B:68:F7:85:F7:72:53:01:60:3C:6D:90
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 01879E27CDD7B12A7F58A5A40D6FA4C6394C
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lWU8HmCgOiKLaPeF93JTAWA8bZA.roa
Signing time: Thu 20 Apr 2023 10:13:41 +0000
ROA not before: Thu 20 Apr 2023 10:13:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.225.225.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Apr 2023 10:23:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:9e:27:cd:d7:b1:2a:7f:58:a5:a4:0d:6f:a4:c6:39:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Apr 20 10:13:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95653c1e60a03a228b68f785f7725301603c6d90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:ba:5a:db:93:27:6a:6e:1e:de:11:69:d9:70:
ee:12:fb:5a:27:53:ca:f0:f0:0d:28:a5:2e:9d:b4:
0e:1a:44:56:4d:d9:0b:0d:0a:b6:59:32:dd:fa:94:
8f:2f:de:1e:75:44:7a:a6:0c:09:af:3c:78:53:7f:
5b:5f:ad:a2:36:f6:fe:af:e6:f5:b9:45:d9:42:fd:
53:81:18:75:76:6a:0a:c8:4d:2a:17:58:c2:a9:95:
8f:de:73:18:5e:4b:cd:e5:40:5d:27:53:36:61:a7:
b6:9f:bd:b9:81:2f:00:84:5e:67:87:30:d5:21:37:
48:e5:a6:52:7d:35:fe:34:f0:a5:d4:53:e9:2f:13:
f6:2e:9a:9b:77:b1:b9:68:64:d6:e7:59:2d:dd:26:
55:d6:fe:bf:66:b0:85:ef:9f:bc:7e:f1:2c:06:8c:
f6:e6:ef:4d:bd:af:ec:d8:64:43:c0:f1:f5:d3:fd:
76:01:89:7d:be:f5:f4:9e:7d:5b:f5:5c:55:14:b9:
15:32:66:df:e5:e4:b9:dd:c4:71:9c:0d:f6:80:73:
f5:dc:1a:b5:bf:78:b3:92:f4:81:b5:11:4a:49:81:
c7:79:b5:df:09:da:5c:0a:5c:60:e0:d1:cd:1e:cd:
8d:1b:ac:a5:a0:8f:92:f0:11:c3:b9:4f:c0:ad:fb:
af:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:65:3C:1E:60:A0:3A:22:8B:68:F7:85:F7:72:53:01:60:3C:6D:90
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/lWU8HmCgOiKLaPeF93JTAWA8bZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.225.0/24
Signature Algorithm: sha256WithRSAEncryption
79:b4:00:62:44:a3:72:22:f0:d2:38:ce:0f:d4:72:9a:5a:20:
42:5e:88:ba:d1:92:26:89:20:e9:8f:ca:96:3c:c5:a3:96:ce:
fd:77:43:c8:67:e1:a4:42:59:b6:dc:5a:b6:91:da:b6:e6:ee:
c4:56:75:75:09:41:77:32:73:dc:c1:f4:50:fd:07:93:12:a8:
4e:ce:b6:78:75:e7:e4:40:0b:8e:b8:36:9d:91:ab:87:e8:86:
1f:e6:76:50:45:69:76:c6:44:b9:47:1a:9a:fb:91:30:2b:7e:
01:c0:90:9b:49:3b:74:e6:14:42:96:38:ba:1a:78:b2:21:47:
ea:07:a7:06:ab:2b:11:b9:15:df:3c:3c:ec:0c:99:bc:42:21:
84:48:b7:ac:20:1f:36:4c:34:91:cc:03:7b:9f:99:c1:1f:27:
b5:5e:6e:78:e1:05:78:44:3f:6b:95:a6:e8:3a:ad:f0:a7:ae:
1a:a7:bc:95:3b:06:f2:35:86:92:29:0b:1f:2a:af:85:80:f8:
1b:5a:2b:b3:0e:43:29:83:22:31:80:ad:20:b0:56:14:3e:fb:
2f:9b:7f:b9:7e:b6:72:16:0b:9e:77:7e:39:36:51:52:61:02:
92:80:fa:fc:25:ea:8c:5a:ab:a2:c6:af:b8:4d:42:70:82:ac:
85:19:cd:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:49 2024 by rpki-client on console-ams.rpki-client.org