Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/uHmQuUIkzoctgfE_Mko_Xs6La0o.roa
File: uHmQuUIkzoctgfE_Mko_Xs6La0o.roa (raw, json)
Hash identifier: r0mt5+AAQN45tzRrINAOaNiSSkXIA1nRWSSPcXQdt30=
Subject key identifier: B8:79:90:B9:42:24:CE:87:2D:81:F1:3F:32:4A:3F:5E:CE:8B:6B:4A
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 0186A8415B212F4A4FF8190CF10DF4F0EB5D
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/uHmQuUIkzoctgfE_Mko_Xs6La0o.roa
Signing time: Fri 03 Mar 2023 16:15:00 +0000
ROA not before: Fri 03 Mar 2023 16:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1299
IP address blocks: 91.193.254.0/24 maxlen: 24
91.193.255.0/24 maxlen: 24
93.89.211.0/24 maxlen: 24
93.89.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 May 2023 11:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:a8:41:5b:21:2f:4a:4f:f8:19:0c:f1:0d:f4:f0:eb:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Mar 3 16:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b87990b94224ce872d81f13f324a3f5ece8b6b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:05:cf:87:ff:00:2b:ef:16:7c:fc:9d:d8:b6:
29:70:c5:27:97:12:d3:c1:08:9a:23:b2:2d:cd:11:
b3:bf:61:02:00:73:ae:2d:58:2d:13:d1:8c:94:f2:
7b:d4:d2:83:2c:29:a6:51:27:4b:af:73:67:97:a3:
32:33:eb:34:71:2c:d3:c9:06:c1:72:d7:95:9f:5d:
fa:0e:f6:3c:33:e1:79:9c:87:38:75:f7:69:90:70:
16:a9:18:43:cb:d9:40:f1:b3:8b:25:47:de:44:15:
53:6d:3d:12:6b:e8:20:9f:a4:f5:f8:ca:12:75:f4:
df:b4:96:8a:c1:3e:0d:4a:6c:68:ed:0b:c6:f7:63:
54:08:de:ab:b0:63:e4:70:22:9b:a1:92:d6:87:b6:
db:ba:20:55:f8:f2:db:14:6e:fb:bc:1e:02:d7:9a:
7a:86:e0:f2:92:71:0c:83:d2:27:5b:5e:26:25:d1:
a7:39:cb:17:58:86:48:e5:c2:86:50:e6:e0:e3:1f:
83:87:9d:cb:12:6d:c9:39:0e:4a:7e:d8:38:a1:48:
85:c5:59:0e:17:f3:ca:13:44:a3:41:35:f4:3d:f8:
f5:c1:bc:6e:f1:95:07:c0:e7:ab:8d:2c:db:27:8a:
fa:76:9e:54:25:61:e7:d2:51:71:71:f8:c4:31:04:
ce:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:79:90:B9:42:24:CE:87:2D:81:F1:3F:32:4A:3F:5E:CE:8B:6B:4A
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/uHmQuUIkzoctgfE_Mko_Xs6La0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.254.0/23
93.89.209.0/24
93.89.211.0/24
Signature Algorithm: sha256WithRSAEncryption
14:ee:bb:cd:9d:53:6c:25:16:24:f0:da:c1:77:ad:b1:7a:77:
38:3b:7d:fb:9c:0d:93:e8:b2:4b:08:2e:0f:d7:fa:79:16:cd:
5d:b5:5e:9f:d5:e1:1f:77:87:07:ce:f4:2b:71:5d:61:43:0c:
3b:e0:78:6c:bb:87:64:3e:7a:4c:97:67:39:76:1f:7e:5a:1c:
a6:a1:17:8b:6b:c8:9c:97:ca:99:cc:18:4f:0f:7f:eb:9f:73:
00:ee:a0:7c:dc:00:e7:72:09:ce:55:36:e3:5c:85:3c:b8:4c:
69:38:3d:3e:08:61:68:59:20:22:1f:68:d1:1f:af:8f:cd:9d:
ff:e4:fa:85:a5:29:b7:ed:d6:d8:93:dc:6e:12:b8:93:83:75:
e0:92:27:74:2a:9e:b5:cb:a5:94:4d:cf:20:77:93:cd:2a:b9:
c0:0e:73:87:ec:63:71:3a:c9:38:8c:b8:61:f1:8a:f0:20:09:
e9:ca:70:23:76:70:96:21:ac:1b:2d:5c:b1:d9:b0:73:f0:34:
43:bc:16:9d:5e:fc:2d:ea:d5:36:f6:13:32:90:89:75:50:e1:
f4:bd:8c:0e:de:fa:d4:ed:96:0d:e4:3b:dc:17:c2:b5:49:dc:
b7:ba:5f:be:fb:af:f8:7b:6b:7a:66:f9:44:6d:9a:01:a5:0f:
27:29:3c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:25 2024 by rpki-client on console-ams.rpki-client.org