Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/oQAW7GvR4A5ftEeH9wz92kW1F94.roa
File: oQAW7GvR4A5ftEeH9wz92kW1F94.roa (raw, json)
Hash identifier: MS60pMDFgb0H/RYMjxZraCDlZSAC6wWpV59MJY0yRMg=
Subject key identifier: A1:00:16:EC:6B:D1:E0:0E:5F:B4:47:87:F7:0C:FD:DA:45:B5:17:DE
Certificate issuer: /CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Certificate serial: 01887142EF8980E12481CD6BCD3835E78AA2
Authority key identifier: CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/oQAW7GvR4A5ftEeH9wz92kW1F94.roa
Signing time: Wed 31 May 2023 10:03:12 +0000
ROA not before: Wed 31 May 2023 10:03:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44591
IP address blocks: 91.199.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:71:42:ef:89:80:e1:24:81:cd:6b:cd:38:35:e7:8a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caece41cbc2c30626ef2a28d1839f2d6c4757f3f
Validity
Not Before: May 31 10:03:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a10016ec6bd1e00e5fb44787f70cfdda45b517de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:82:0a:ed:c5:10:14:ba:f7:86:5f:68:43:1e:
89:27:d0:0b:e7:5c:b2:2a:97:53:cf:da:52:3a:e1:
84:d0:d9:28:83:4c:f1:a6:d4:74:11:1c:5a:6d:7e:
9a:3f:8c:e1:3f:ed:fd:e8:67:21:71:dc:d0:d3:dd:
a3:6e:a6:ca:1d:a7:83:c4:86:19:bb:72:b5:dc:b1:
36:e0:81:50:c9:b8:c7:a6:d7:0d:ba:a5:6e:ef:7f:
82:74:90:d6:ef:e8:d7:34:81:c2:ba:35:23:c4:6d:
e7:99:02:2e:50:b3:3c:87:9e:37:ae:a2:b8:ba:70:
fb:1e:e2:1d:b9:3e:9a:cc:33:f2:12:68:80:ef:97:
97:c2:c6:aa:1d:11:db:b4:7b:50:1f:22:2d:6e:7e:
45:6a:c4:2e:1f:5a:9b:7b:b1:b5:f1:50:a3:20:d5:
53:e8:54:35:3e:d7:0e:a3:21:ee:54:2d:60:b3:3d:
ca:93:f4:9b:1d:dd:43:82:5e:39:85:07:a9:ba:1a:
a8:29:ea:2a:62:e3:f6:3a:a0:f7:bf:5f:e4:89:9c:
59:4f:ef:c3:fb:a6:ac:1e:b5:d2:63:70:29:68:7d:
6c:ee:5e:19:6a:37:31:85:a3:d2:04:fe:a3:f7:3c:
1b:89:39:95:5e:cc:d1:f1:76:3a:de:de:24:89:87:
83:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:00:16:EC:6B:D1:E0:0E:5F:B4:47:87:F7:0C:FD:DA:45:B5:17:DE
X509v3 Authority Key Identifier:
keyid:CA:EC:E4:1C:BC:2C:30:62:6E:F2:A2:8D:18:39:F2:D6:C4:75:7F:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yuzkHLwsMGJu8qKNGDny1sR1fz8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/oQAW7GvR4A5ftEeH9wz92kW1F94.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/630cbe-ce01-464d-82eb-d851e40d57bf/1/yuzkHLwsMGJu8qKNGDny1sR1fz8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.173.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:25:be:c8:5b:d9:17:73:f4:0b:e1:68:d6:7f:b1:0b:f8:5b:
03:ee:2e:a5:90:bb:8b:6b:ef:58:97:74:de:45:5a:e8:4e:b9:
73:9b:31:85:b1:b3:85:54:7b:dc:a9:a6:d7:38:43:33:56:59:
1f:fe:6a:87:20:2f:96:0d:b9:85:f4:39:87:ed:4a:d0:b3:fc:
fb:68:e9:24:71:46:65:92:a1:c1:4a:f6:3b:21:b8:7e:5e:6e:
a4:37:ab:db:9f:63:a2:92:e1:56:16:0d:f6:6a:fb:7f:95:0c:
b3:35:2d:57:39:19:79:b3:e7:b5:2b:2d:61:f3:e8:2d:2d:94:
84:7a:15:17:7e:55:e5:f8:54:f6:4a:15:68:74:70:23:05:d7:
0c:14:0b:93:57:e0:25:fe:2f:b8:2d:28:9a:63:dc:c4:7d:3b:
e3:c0:7d:83:7a:df:01:54:ba:10:b9:57:bc:3c:91:0d:5a:6f:
1e:c7:2b:cc:5c:86:36:08:2a:53:f8:6a:0b:a9:6a:6b:4e:c3:
6d:04:2d:e3:21:53:24:3e:91:37:c7:dc:c1:cf:eb:5f:02:f7:
1d:76:a9:6b:de:b5:46:fc:8e:c3:a5:bf:d8:d3:a8:50:b1:76:
ce:f2:7e:0f:ed:4c:ab:8e:0c:e2:cc:19:9f:63:bf:2c:14:08:
dd:49:e6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:22 2024 by rpki-client on console-fra.rpki-client.org