Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/XlgJZ6iNc2JzCnP_J-2ev3T3Dyg.roa
File: XlgJZ6iNc2JzCnP_J-2ev3T3Dyg.roa (raw, json)
Hash identifier: j/OuV/5Mq3zAEKTf1EwVrNe3R74WSc9BpghZVY2tRHQ=
Subject key identifier: 5E:58:09:67:A8:8D:73:62:73:0A:73:FF:27:ED:9E:BF:74:F7:0F:28
Certificate issuer: /CN=054409a1d8b072f7db024528b9720339bdbbb106
Certificate serial: 01856C4155D7B93098123F0B260A0340CDAA
Authority key identifier: 05:44:09:A1:D8:B0:72:F7:DB:02:45:28:B9:72:03:39:BD:BB:B1:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUQJodiwcvfbAkUouXIDOb27sQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/XlgJZ6iNc2JzCnP_J-2ev3T3Dyg.roa
Signing time: Sun 01 Jan 2023 07:34:59 +0000
ROA not before: Sun 01 Jan 2023 07:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64465
IP address blocks: 91.212.251.0/24 maxlen: 24
2001:67c:179c::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:55:d7:b9:30:98:12:3f:0b:26:0a:03:40:cd:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=054409a1d8b072f7db024528b9720339bdbbb106
Validity
Not Before: Jan 1 07:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e580967a88d7362730a73ff27ed9ebf74f70f28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:58:30:f5:9f:ed:1e:90:54:e2:ce:1c:95:a1:
88:fc:70:87:38:91:f4:5b:ee:0a:0a:6e:57:e0:dc:
88:f7:5d:4f:55:03:14:b8:eb:c1:2b:b7:49:38:fd:
f3:52:d9:90:55:46:97:0f:7b:13:94:03:b9:2e:5a:
35:47:bf:09:d0:fe:8f:1b:87:7d:77:a6:a4:8f:f1:
b2:72:9f:8c:65:1a:68:be:ca:e7:98:58:53:d2:50:
a0:ec:fc:15:1f:30:3a:61:22:58:97:f8:3b:5b:8c:
56:9d:aa:61:ea:27:e5:3b:e9:fe:33:ed:94:39:a3:
eb:77:7a:c0:e6:f0:fc:bd:a8:bf:10:e8:40:d1:fe:
7c:98:65:dc:cd:d0:83:e4:6a:da:1e:f8:d7:7e:52:
24:f4:65:93:82:f6:ff:8c:d9:95:74:a2:d5:f2:cd:
f2:ec:5d:68:90:dc:5f:a9:d8:e9:e6:b7:c0:3f:85:
0a:b0:32:a3:70:3d:cb:58:79:0a:d1:68:8f:bc:07:
bb:6d:aa:21:43:a8:fa:9f:78:5d:d9:4a:6f:c8:f5:
ae:f4:5b:35:e4:de:d8:cd:7f:da:8c:d0:3a:a6:13:
bd:aa:cd:3b:c5:fe:ec:ac:6d:f2:63:3c:ba:cd:cd:
33:1f:62:bd:82:65:40:6a:8d:87:35:45:b5:77:ce:
e1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:58:09:67:A8:8D:73:62:73:0A:73:FF:27:ED:9E:BF:74:F7:0F:28
X509v3 Authority Key Identifier:
keyid:05:44:09:A1:D8:B0:72:F7:DB:02:45:28:B9:72:03:39:BD:BB:B1:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUQJodiwcvfbAkUouXIDOb27sQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/XlgJZ6iNc2JzCnP_J-2ev3T3Dyg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/c885e7-4d6f-4b45-9e4a-b16d219b3592/1/BUQJodiwcvfbAkUouXIDOb27sQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.251.0/24
IPv6:
2001:67c:179c::/48
Signature Algorithm: sha256WithRSAEncryption
49:05:a8:79:11:df:a0:12:06:ac:73:ee:4b:cd:de:8b:17:27:
f6:0c:36:14:60:58:15:b5:cc:45:86:be:b1:a7:b7:a7:70:fe:
4a:cb:b5:88:3a:6d:c5:cf:27:bb:89:d3:3d:19:3b:eb:60:6b:
d9:f7:89:bf:03:bd:4e:92:f9:88:72:55:ab:2a:2c:78:07:ec:
57:40:0f:c3:c0:ee:82:11:85:72:d3:45:b8:cb:d9:dd:f6:70:
20:37:5a:c4:2f:07:c6:8a:a5:e8:ae:6e:7a:ed:65:0a:88:bd:
f1:37:6a:30:9e:d1:e6:4d:0e:10:2f:c0:0b:0d:69:7c:c3:c4:
84:c1:99:cc:19:93:23:81:4c:06:cc:d4:67:3c:cc:cf:89:8d:
4f:89:4e:95:fd:f8:a8:33:96:66:4c:84:70:64:57:74:fa:89:
b0:63:cc:b6:0d:c8:29:5a:b1:dc:0e:1e:de:7e:27:0c:fd:6c:
c4:35:8d:45:82:6b:46:68:64:bb:48:0e:10:49:a4:3d:31:da:
cd:ac:e0:e0:46:07:5a:c3:dc:26:a1:b4:1e:ca:89:52:3e:2a:
f4:54:11:b6:2c:ad:aa:c0:ab:34:f1:db:e4:53:c9:ce:28:ef:
bd:00:7e:75:f7:54:48:ac:90:db:c5:5e:ee:10:64:2f:be:6b:
56:75:8a:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:08 2024 by rpki-client on console-ams.rpki-client.org