Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0pDqmCLYW8-0o52su6AMxLdi000.roa
File: 0pDqmCLYW8-0o52su6AMxLdi000.roa (raw, json)
Hash identifier: 1KveXG90/zxn9LZZP1XR+vvAur8oGIXoKK5mYwDSkRU=
Subject key identifier: D2:90:EA:98:22:D8:5B:CF:B4:A3:9D:AC:BB:A0:0C:C4:B7:62:D3:4D
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 018D212382BF17D52F972A03FD4CFF00474A
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0pDqmCLYW8-0o52su6AMxLdi000.roa
Signing time: Fri 19 Jan 2024 09:53:11 +0000
ROA not before: Fri 19 Jan 2024 09:53:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207326
IP address blocks: 91.132.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 19 Jan 2024 17:28:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:21:23:82:bf:17:d5:2f:97:2a:03:fd:4c:ff:00:47:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 19 09:53:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d290ea9822d85bcfb4a39dacbba00cc4b762d34d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:d7:88:ae:a1:1a:31:78:10:31:26:de:12:e2:
76:61:c0:ff:eb:de:1e:b8:94:a8:83:65:de:6a:73:
26:ab:bc:e1:19:66:96:94:bf:00:49:ff:ac:c9:92:
bf:e0:70:78:b6:f6:99:94:8b:42:7b:e7:ff:74:6c:
68:08:5f:0f:c2:32:49:13:91:bb:86:8f:b4:f3:ec:
b6:52:3c:01:2a:d7:b2:22:3f:73:62:c7:43:7f:31:
61:f7:89:a8:e4:24:59:dc:67:88:2e:1d:72:5e:23:
db:6f:be:42:00:29:62:a9:f6:58:8d:e6:af:17:af:
ef:0f:c6:01:07:83:24:d4:79:36:15:a7:8c:4e:2a:
e6:bf:de:e1:72:5f:07:56:dd:48:d8:bc:a2:50:b0:
a6:8c:bb:87:9f:2c:96:bf:61:8b:4b:3e:8b:84:18:
97:c4:44:d3:31:dd:0c:32:2d:96:6d:8f:0e:35:16:
53:50:3c:b1:ea:6e:d5:86:6f:3a:b9:62:bf:44:6d:
0d:87:ec:f6:3c:0e:af:eb:37:c5:18:ad:b8:0b:65:
99:82:7e:71:2b:a4:91:f7:f9:4f:80:d7:de:f9:18:
9b:08:7f:17:a7:db:a1:73:41:97:88:5d:f1:57:e0:
27:23:04:51:97:b7:56:e2:43:d3:4a:8d:56:39:4d:
05:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:90:EA:98:22:D8:5B:CF:B4:A3:9D:AC:BB:A0:0C:C4:B7:62:D3:4D
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/0pDqmCLYW8-0o52su6AMxLdi000.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.51.0/24
Signature Algorithm: sha256WithRSAEncryption
25:cb:f4:df:53:94:61:e1:6b:4a:32:a0:ec:f9:ac:ba:09:80:
34:a5:c2:1d:52:21:04:bf:10:7e:2b:6f:ba:4b:67:01:dc:8b:
3a:da:e9:9a:93:83:e3:a1:f8:5b:9c:06:01:4c:d0:fa:6c:92:
66:2d:0a:de:91:c8:9d:da:a6:a7:27:b7:cd:12:fd:7c:b7:58:
68:0c:04:0f:cf:88:2f:42:c8:af:16:b8:d2:eb:9f:3b:00:64:
15:58:71:fc:c2:11:a0:59:a9:6f:16:c3:4c:ff:fe:0b:85:03:
31:48:fb:76:8c:a8:ed:6d:85:22:67:2f:df:db:b9:7a:91:89:
48:72:19:35:de:08:b4:aa:83:8c:04:55:79:a2:96:fa:4b:9f:
08:66:df:b1:d6:24:22:8d:d1:96:c7:d1:e9:f4:9e:57:57:7e:
55:45:9c:2b:f2:05:12:bc:d6:75:bd:2f:4b:fb:9d:96:ec:f1:
60:69:16:de:7f:ef:bf:05:10:38:5b:b2:00:73:27:09:3b:8d:
26:e7:f5:a5:0c:34:3c:4e:65:df:39:4c:a0:3a:39:43:8e:5a:
9d:43:a4:4d:4b:68:37:0f:14:41:7e:ec:8d:ca:c9:54:41:08:
36:bc:cc:b4:f1:4d:36:0c:6e:3b:eb:66:b1:b0:50:f9:bd:d1:
ae:3e:06:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:05 2024 by rpki-client on console-fra.rpki-client.org