Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/hRWGqMTEdIvxNwLyVit_glXDnDE.roa
File: hRWGqMTEdIvxNwLyVit_glXDnDE.roa (raw, json)
Hash identifier: 0e/KmtsXG9e+sZo+uB5vpyQk9Eyx8WgnkPtPcGQxOU0=
Subject key identifier: 85:15:86:A8:C4:C4:74:8B:F1:37:02:F2:56:2B:7F:82:55:C3:9C:31
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018E55792081D2C6F6AFFCBED870E6128B9A
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/hRWGqMTEdIvxNwLyVit_glXDnDE.roa
Signing time: Tue 19 Mar 2024 06:49:45 +0000
ROA not before: Tue 19 Mar 2024 06:49:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Mar 2024 08:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:55:79:20:81:d2:c6:f6:af:fc:be:d8:70:e6:12:8b:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Mar 19 06:49:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=851586a8c4c4748bf13702f2562b7f8255c39c31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7f:1a:3c:01:62:3b:f2:e5:b5:a9:85:0a:f7:
c3:0b:f5:a7:80:9f:bf:5b:93:29:8f:5e:94:01:bd:
e9:bb:f9:2b:39:94:21:60:8d:89:e1:18:13:76:a0:
70:e8:42:96:68:1a:e7:92:d0:6d:8a:d5:66:25:a0:
15:1d:36:1f:bf:32:9a:d7:a2:85:e1:fe:4b:19:4b:
a5:f2:34:2c:10:5b:02:c4:7b:ee:bf:e5:71:cc:e7:
da:31:05:c0:4d:a0:65:6f:04:40:51:0e:95:88:6b:
61:eb:82:44:82:44:c8:e6:e1:de:78:f8:a1:a5:71:
c7:02:ab:64:b4:7c:c0:a8:d6:52:24:18:db:2c:f8:
fe:a6:6b:2f:7a:ef:ca:3a:ae:4d:66:8a:b5:70:ce:
8d:75:b5:7b:a9:b8:d1:80:02:1a:48:b4:3e:d3:d4:
92:17:44:04:6f:1c:aa:9f:17:a5:3e:44:05:69:34:
22:96:cf:46:bc:91:6f:34:e4:ba:03:c6:d3:45:4d:
cf:59:5c:70:b7:6f:eb:7c:d3:3d:c2:c4:37:45:ea:
62:8b:d4:d9:3f:aa:a1:50:02:9b:e5:f1:e9:bc:f0:
06:93:3e:87:15:6f:c3:5d:27:d8:e8:35:37:cc:d0:
b4:e5:76:87:30:1a:92:f3:db:f2:38:c2:82:c5:8b:
05:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:15:86:A8:C4:C4:74:8B:F1:37:02:F2:56:2B:7F:82:55:C3:9C:31
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/hRWGqMTEdIvxNwLyVit_glXDnDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
64:85:51:3c:26:72:79:eb:4c:0e:23:5f:db:f9:d7:52:0d:97:
43:f5:2d:56:db:99:29:62:0e:e0:cd:a1:15:e5:66:6a:bc:6e:
d6:f4:42:cd:58:57:7e:15:fa:e3:67:08:6d:44:8c:19:14:e5:
cd:97:c2:90:7e:ed:a8:c5:23:6b:d3:19:85:9a:c6:18:b7:b5:
b5:7b:c6:1d:83:78:b2:f4:0c:44:00:df:65:a8:74:78:06:e1:
57:7f:3a:ab:3e:2d:c5:ae:29:cf:77:cd:a3:b4:98:75:a7:d7:
d0:20:83:c9:a8:60:c1:31:9c:dc:73:48:f7:4e:d5:05:42:3c:
e8:92:60:a1:71:7b:75:94:02:d4:53:bd:7a:c7:2b:db:28:c1:
4b:8a:4e:68:0c:d4:3a:8a:49:59:82:f3:8c:69:5f:f9:19:d9:
c3:21:47:98:09:a4:15:b0:81:a7:2e:5e:9b:f2:a0:d6:4c:8b:
8e:37:f6:ca:e1:d1:a2:f3:69:2a:58:2d:8d:cc:81:6f:3a:a8:
58:12:73:aa:e6:8c:c3:c8:60:c0:1e:c3:41:bf:78:82:4d:b2:
39:4f:c2:15:cc:a5:de:db:ea:e2:71:2a:70:e6:5f:73:73:c6:
a2:2c:2c:28:04:e0:66:03:2b:5c:32:fc:b5:9a:67:d8:a9:f5:
3e:04:11:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 19 12:46:24 2024 by rpki-client on console-ams.rpki-client.org