Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/uRJ-qTApQZ-4YdjydCJgTF4932k.roa
File: uRJ-qTApQZ-4YdjydCJgTF4932k.roa (raw, json)
Hash identifier: 6R+bFcA6FXTrnixlUhGotjdi9cNCS2UZftx99XOYJDc=
Subject key identifier: B9:12:7E:A9:30:29:41:9F:B8:61:D8:F2:74:22:60:4C:5E:3D:DF:69
Certificate issuer: /CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a
Certificate serial: 01856F94B8CDD47AF29BF80F5B55785130B9
Authority key identifier: 3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/uRJ-qTApQZ-4YdjydCJgTF4932k.roa
Signing time: Sun 01 Jan 2023 23:04:55 +0000
ROA not before: Sun 01 Jan 2023 23:04:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49275
IP address blocks: 91.199.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:b8:cd:d4:7a:f2:9b:f8:0f:5b:55:78:51:30:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fa2d6850bbc4720557a9174dcbc9760aecc0b1a
Validity
Not Before: Jan 1 23:04:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b9127ea93029419fb861d8f27422604c5e3ddf69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:81:fc:31:87:30:93:91:39:97:2b:68:ee:d6:
4b:65:4d:c2:2e:8b:56:1f:4a:d8:45:c3:03:31:50:
00:b7:04:2b:11:bd:a8:06:1b:94:e3:ff:d0:da:0e:
16:82:f9:ae:dc:f0:0d:da:c5:9e:5c:2c:61:ef:43:
b9:f0:55:96:c9:cc:24:a1:06:5d:64:e1:85:36:d2:
66:d6:d6:62:20:38:96:d6:5f:a1:12:08:4c:00:02:
69:75:fd:40:79:3b:7d:c1:f3:f8:4b:7b:1d:68:0a:
ed:ed:eb:94:a6:9c:74:57:7b:6d:0b:e4:04:4b:e3:
a8:66:ee:79:12:77:6d:22:75:51:8d:82:a5:8d:87:
c0:6f:2e:b1:18:3f:cb:e1:35:99:cb:a2:96:7d:ee:
1b:66:ba:c3:47:7c:ca:3c:65:88:4f:0e:f3:53:20:
c1:74:1a:18:60:57:91:fc:0f:9b:0e:52:b2:60:1f:
61:21:f5:94:1b:f2:72:73:f7:3f:e9:b1:7e:ea:26:
74:95:79:ee:37:9a:fa:3d:e6:a6:41:a7:8a:26:0e:
47:e1:03:ac:bd:c1:5d:ae:15:a7:7a:15:5a:4b:a1:
49:5f:3f:5c:84:91:07:22:84:a8:1d:a4:3d:4e:fa:
04:6e:4f:7d:4f:37:86:cd:7c:da:45:0f:65:3e:5e:
63:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:12:7E:A9:30:29:41:9F:B8:61:D8:F2:74:22:60:4C:5E:3D:DF:69
X509v3 Authority Key Identifier:
keyid:3F:A2:D6:85:0B:BC:47:20:55:7A:91:74:DC:BC:97:60:AE:CC:0B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P6LWhQu8RyBVepF03LyXYK7MCxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/uRJ-qTApQZ-4YdjydCJgTF4932k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c3c758-a253-4989-ae2d-9c65d188e54e/1/P6LWhQu8RyBVepF03LyXYK7MCxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.239.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:b0:6f:99:e2:a9:80:b8:27:c5:1c:9b:5a:b5:7a:f5:8d:72:
73:d3:62:11:f1:f5:61:64:17:5e:24:21:43:77:22:25:69:1b:
c6:ba:0c:03:d3:ba:70:b2:49:91:c1:d6:5a:81:21:6c:5e:aa:
8b:cb:ec:97:20:28:38:e0:f3:46:dc:4f:35:9c:4a:90:ff:ec:
e2:a2:49:81:52:58:44:a6:35:fd:71:99:5e:3c:b4:28:46:e6:
d8:7f:18:af:11:fc:f9:d5:f8:c0:b7:65:dc:da:31:3d:67:7b:
c6:99:d5:2d:33:01:1b:0e:ce:4b:64:83:5a:50:ae:46:6f:b2:
9a:be:1b:44:5f:67:b6:b2:4f:96:d9:07:fc:82:be:cf:62:df:
69:46:07:2d:34:99:cc:b9:10:8d:00:98:65:3c:83:d7:b1:ef:
e6:39:43:83:3e:13:5f:35:d3:57:57:d7:a1:d9:05:94:a0:2c:
cd:9a:1e:f1:d7:d0:15:09:7a:79:17:0f:98:16:5e:80:e6:f5:
c2:e3:47:a1:33:5e:9e:72:90:bd:aa:04:be:eb:82:b2:88:d4:
96:6c:5e:1c:f2:7e:c1:ba:06:52:3f:1d:dd:99:89:17:78:c9:
cc:3e:92:9a:52:0e:2b:f3:4b:24:62:6f:b1:ab:ae:15:61:eb:
30:1c:73:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-fra.rpki-client.org