Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/8bfZ0KvWYUtn3LkL-wglTCMSBHE.roa
File: 8bfZ0KvWYUtn3LkL-wglTCMSBHE.roa (raw, json)
Hash identifier: szdRXIaSXO/RXdnV5evoIATUAKHLUNTakOwKu4prZTs=
Subject key identifier: F1:B7:D9:D0:AB:D6:61:4B:67:DC:B9:0B:FB:08:25:4C:23:12:04:71
Certificate issuer: /CN=a5dae805cc94bdd29fc27107cd63b0bd27c914d0
Certificate serial: 018570C2A6275619F278097EB91C3E86FAE6
Authority key identifier: A5:DA:E8:05:CC:94:BD:D2:9F:C2:71:07:CD:63:B0:BD:27:C9:14:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pdroBcyUvdKfwnEHzWOwvSfJFNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/8bfZ0KvWYUtn3LkL-wglTCMSBHE.roa
Signing time: Mon 02 Jan 2023 04:34:42 +0000
ROA not before: Mon 02 Jan 2023 04:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44630
IP address blocks: 91.199.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 20:29:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:a6:27:56:19:f2:78:09:7e:b9:1c:3e:86:fa:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5dae805cc94bdd29fc27107cd63b0bd27c914d0
Validity
Not Before: Jan 2 04:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1b7d9d0abd6614b67dcb90bfb08254c23120471
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:62:77:d0:d6:49:d3:fb:60:bb:cb:22:5a:c5:
a3:45:88:ea:45:ce:c1:e2:12:39:c7:c3:04:8d:e7:
34:06:55:d7:17:05:6c:0a:15:94:e2:32:e2:bc:de:
0c:8c:a3:b5:a3:e2:cd:85:24:02:be:79:ab:a2:cd:
b4:c8:87:d5:1f:5c:12:d4:f6:65:ac:21:5d:45:4e:
95:2d:91:3c:d7:59:b3:cd:fc:9e:dd:de:8e:75:91:
58:ce:67:f9:59:51:bf:a0:06:e1:c3:6a:b2:37:80:
33:6e:17:03:ea:35:fa:e4:70:75:58:e8:24:56:cf:
d7:20:27:65:b7:31:8a:54:1e:ee:a3:8b:99:ba:aa:
a3:6f:d9:0d:82:e8:63:a3:14:9d:3b:39:04:05:26:
1c:9d:3f:d4:0b:f5:d5:36:5f:51:ec:5a:98:e0:e0:
6b:2c:74:da:cd:09:c7:aa:08:e6:8d:44:6e:59:bc:
d2:82:86:0b:de:26:9a:fa:c6:72:78:01:9b:58:05:
1a:8b:1f:70:2d:ed:28:4f:1d:cf:bf:b6:53:45:3c:
c1:11:87:ab:0e:b7:fa:e4:8a:3b:69:56:93:cd:c0:
24:46:b5:23:0f:d7:61:ff:db:1b:54:c0:4a:ea:a3:
f6:74:66:48:a3:12:46:46:e0:ad:04:cb:86:30:49:
bb:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:B7:D9:D0:AB:D6:61:4B:67:DC:B9:0B:FB:08:25:4C:23:12:04:71
X509v3 Authority Key Identifier:
keyid:A5:DA:E8:05:CC:94:BD:D2:9F:C2:71:07:CD:63:B0:BD:27:C9:14:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pdroBcyUvdKfwnEHzWOwvSfJFNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/8bfZ0KvWYUtn3LkL-wglTCMSBHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/c8e001-ada3-45bf-aa46-fd515681620c/1/pdroBcyUvdKfwnEHzWOwvSfJFNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.188.0/24
Signature Algorithm: sha256WithRSAEncryption
64:7e:e7:69:08:c2:ae:bc:a5:d7:83:33:28:66:a6:5a:9c:7e:
d7:c6:41:2d:72:b6:bd:bc:aa:ee:6f:ee:e9:85:59:f3:6f:7c:
b7:0e:4a:39:16:34:a7:56:8a:af:a4:8d:2c:2f:7e:7e:3e:20:
58:67:48:44:d2:41:eb:8a:11:81:f0:16:f1:40:a9:6d:11:31:
51:72:b7:cb:2a:54:b5:27:51:f3:2a:c7:9b:ed:78:94:fb:4a:
53:f3:9c:27:45:6f:e5:68:95:df:b1:e6:31:a0:ff:96:14:d0:
73:ef:0b:b3:16:d2:ec:d9:bc:0b:6a:90:e2:fd:72:04:32:1d:
31:58:23:07:d3:27:18:ea:99:f0:93:09:19:ee:66:b5:05:c0:
9e:04:47:b7:4f:0c:a5:18:81:3a:c4:5d:da:64:41:39:53:9d:
3d:d0:f4:d0:c4:5e:11:29:2e:84:39:19:7f:57:f7:af:70:50:
32:8c:bf:fd:cb:cc:fe:a0:d8:c6:93:42:a3:f1:fd:4f:5d:da:
6c:ef:ba:fc:86:77:fa:e5:f2:c2:4d:b0:f1:27:a0:64:89:1b:
a9:0b:35:ca:4a:8f:c9:df:9f:b7:cd:f1:29:21:a3:12:0c:73:
2c:5e:4f:f8:69:dc:03:0a:c2:c2:0b:11:a1:8c:e1:37:1f:5e:
66:48:46:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:40 2024 by rpki-client on console-fra.rpki-client.org