Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/5vyG326wD06hGTc-wRTU53zg6GA.roa
File: 5vyG326wD06hGTc-wRTU53zg6GA.roa (raw, json)
Hash identifier: c/BI6MHInboh85D+CBiRcGkhR52XSVENAhGCoODcWW4=
Subject key identifier: E6:FC:86:DF:6E:B0:0F:4E:A1:19:37:3E:C1:14:D4:E7:7C:E0:E8:60
Certificate issuer: /CN=5134d1320645644e2eaf3685879d693f72522c76
Certificate serial: 018571D79C3C14D8E6502357A670FCB4A2F1
Authority key identifier: 51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/5vyG326wD06hGTc-wRTU53zg6GA.roa
Signing time: Mon 02 Jan 2023 09:37:13 +0000
ROA not before: Mon 02 Jan 2023 09:37:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 91.194.104.0/23 maxlen: 24
91.194.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:d7:9c:3c:14:d8:e6:50:23:57:a6:70:fc:b4:a2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5134d1320645644e2eaf3685879d693f72522c76
Validity
Not Before: Jan 2 09:37:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6fc86df6eb00f4ea119373ec114d4e77ce0e860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:52:fa:15:4b:c3:b4:38:9e:4c:a0:a5:b3:4f:
91:a4:40:c8:a6:1d:b1:68:0e:85:df:08:a3:27:50:
0b:4f:8c:e4:dc:bb:c7:d6:54:8d:81:18:93:bc:b4:
4c:a8:a5:8c:22:5a:fe:44:e3:98:b9:ba:c3:7b:40:
39:fc:91:32:8b:53:70:6d:c9:f1:f7:29:50:b2:28:
39:04:6b:29:8d:31:2c:1c:35:f1:a5:12:2f:40:23:
7b:56:eb:07:b5:54:52:54:b8:81:43:00:82:50:2c:
44:f1:ed:fe:31:7f:d0:41:4b:24:e5:c2:54:6d:ca:
11:fc:6f:16:40:c4:17:be:86:d4:ea:eb:12:3f:5a:
51:d7:58:ca:2c:41:30:75:c5:e7:43:ae:6f:e2:98:
a9:24:87:f6:c4:ad:9d:bf:c5:9e:b2:be:7b:cb:c2:
ca:38:3c:d6:42:ef:af:c8:2c:0c:45:31:fb:69:6f:
63:df:6d:ac:eb:eb:fa:7b:af:03:1b:1d:0b:f3:fb:
b7:fb:2d:58:27:e2:04:3d:50:1e:09:1d:bb:e2:d8:
c7:db:00:2a:9d:ad:75:d1:48:43:0b:25:99:d4:e1:
87:c0:74:f2:6f:bc:72:01:be:06:b8:31:1b:97:b7:
c4:d7:06:ee:3a:eb:7b:1d:31:1a:b1:d6:20:59:e6:
a8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:FC:86:DF:6E:B0:0F:4E:A1:19:37:3E:C1:14:D4:E7:7C:E0:E8:60
X509v3 Authority Key Identifier:
keyid:51:34:D1:32:06:45:64:4E:2E:AF:36:85:87:9D:69:3F:72:52:2C:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UTTRMgZFZE4urzaFh51pP3JSLHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/5vyG326wD06hGTc-wRTU53zg6GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/9fb1d7-8424-4c84-b0cb-2f51ecd1aa0e/1/UTTRMgZFZE4urzaFh51pP3JSLHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.25.0/24
91.194.104.0/23
Signature Algorithm: sha256WithRSAEncryption
c0:e8:af:77:9f:80:ea:4e:43:a1:1b:af:b9:b6:76:8f:96:c6:
e5:7a:24:56:95:87:22:62:76:b4:d6:94:d4:e3:ca:3b:ed:22:
90:14:b7:03:35:b7:6f:03:df:90:0d:5d:02:19:6f:1f:a2:64:
a3:25:66:1e:e3:8c:72:03:62:5a:66:90:89:51:68:7b:19:77:
e1:fa:e8:f2:65:92:2d:9e:5a:46:e6:5f:e1:69:cc:72:bf:b5:
84:65:4f:9b:32:24:50:e5:70:1b:3f:70:ff:49:c7:b8:8a:28:
02:c0:7c:58:97:32:33:0a:9d:c4:cd:0c:4b:7d:f6:78:8f:b1:
75:6a:53:08:e7:cc:f0:16:27:c6:fd:ed:fc:bd:63:d7:41:ad:
9a:7a:44:11:41:a4:92:09:5f:7d:aa:88:e7:06:a0:c0:73:00:
99:45:85:08:70:71:86:57:5a:ad:f8:4d:1c:24:2d:5d:51:c2:
e5:60:83:dd:97:84:e4:a3:b5:42:bc:c6:28:ce:33:5b:64:d2:
0a:d9:79:43:f8:00:1e:cb:96:ce:1d:e3:5c:55:b6:44:11:a4:
eb:7b:d8:61:d0:d8:e0:28:09:51:81:9c:54:9e:38:79:99:8f:
c1:a0:0d:94:90:fd:11:56:10:8e:48:c1:b7:ca:83:21:0a:cd:
72:3c:f8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:01 2024 by rpki-client on console-fra.rpki-client.org