Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/RNqcviDj4hdqVmEoIWIjRCQrYCg.roa
File: RNqcviDj4hdqVmEoIWIjRCQrYCg.roa (raw, json)
Hash identifier: TR0D7FeZCJVbvmkOOShndCIAzgB06om28//jd6axlZc=
Subject key identifier: 44:DA:9C:BE:20:E3:E2:17:6A:56:61:28:21:62:23:44:24:2B:60:28
Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Certificate serial: 018C815D52F7D2182FE80EE6A3DE9FF7CD53
Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/RNqcviDj4hdqVmEoIWIjRCQrYCg.roa
Signing time: Tue 19 Dec 2023 09:17:06 +0000
ROA not before: Tue 19 Dec 2023 09:17:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56962
IP address blocks: 91.242.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 20 Dec 2023 07:42:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:81:5d:52:f7:d2:18:2f:e8:0e:e6:a3:de:9f:f7:cd:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Validity
Not Before: Dec 19 09:17:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44da9cbe20e3e2176a56612821622344242b6028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:7b:cc:b2:29:8b:c6:04:55:38:d4:e7:7b:92:
b8:f4:dd:7d:75:bf:04:81:49:c2:4b:b6:09:85:43:
3a:24:e6:75:cc:5c:e1:e6:3a:cb:85:5d:ce:e2:bf:
f7:c2:9b:17:57:9d:c3:25:25:43:7c:99:83:03:5a:
14:da:f2:b7:51:05:19:9e:b4:23:77:75:20:41:60:
70:5f:9d:ac:1d:4d:be:e4:68:60:ca:7b:ff:95:c8:
88:28:8a:46:92:d5:03:13:dc:ad:36:8a:5a:b6:75:
11:21:65:75:fc:20:3c:51:3c:82:c5:7b:4a:72:95:
c7:bb:04:3f:9a:25:32:7f:6f:f2:7e:59:b9:27:20:
41:90:de:33:6b:36:85:ce:87:ba:9f:dc:b6:d7:db:
84:85:33:a4:3d:a4:89:66:b7:ca:25:71:90:5a:48:
26:c3:27:9b:08:78:4e:44:43:48:3a:46:6d:f9:25:
95:13:b9:0e:2f:53:bc:67:7f:fd:43:9a:a2:8e:7d:
bc:06:59:79:f3:ca:da:2e:1a:36:67:ab:9e:94:a4:
58:ea:a4:fd:14:a7:50:06:16:4c:81:54:04:68:a9:
1f:29:c5:b9:aa:e8:26:d6:ce:b1:0a:6d:41:c1:4b:
52:f8:db:57:55:60:4e:4d:ba:1a:2c:72:77:c3:e8:
ea:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:DA:9C:BE:20:E3:E2:17:6A:56:61:28:21:62:23:44:24:2B:60:28
X509v3 Authority Key Identifier:
keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/RNqcviDj4hdqVmEoIWIjRCQrYCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.235.0/24
Signature Algorithm: sha256WithRSAEncryption
66:cb:93:36:4b:39:e2:fa:8a:81:ac:ad:4d:7b:59:7e:f9:22:
b5:be:84:9a:d3:51:d7:89:81:9d:6f:7a:a1:b8:87:dc:83:78:
20:bb:56:55:f6:68:6b:3f:b8:63:64:c3:f8:3b:55:31:c6:7d:
34:5e:18:59:6d:7c:eb:69:04:80:92:97:b0:5e:a2:a5:05:37:
47:6a:14:a5:4e:21:3d:ef:e6:23:44:dd:1d:4a:8b:37:99:66:
d3:51:f1:2b:1f:07:45:77:6e:66:8f:f9:d8:b0:12:1c:22:e2:
60:93:16:b3:d9:3d:be:fc:51:21:db:9b:e4:14:2e:af:6b:a6:
df:c1:aa:12:da:bc:bf:58:e8:d2:ee:70:ae:27:c4:bd:7b:6f:
2b:45:1e:c9:db:f6:1e:bd:b8:1a:ce:2a:4e:f5:08:43:29:4d:
7c:60:44:57:d9:24:be:30:dc:36:34:30:a1:a6:b4:3c:93:0a:
9b:40:60:d8:e4:ed:07:b3:83:f2:99:2d:be:0e:5d:69:b5:4c:
6f:cf:6c:d8:fb:da:e0:fc:dc:04:db:98:79:36:96:2b:b6:56:
63:f7:bb:86:6d:f0:76:1f:d4:25:8d:81:f8:9d:04:39:3e:07:
9c:35:7d:0b:9a:5e:7e:58:59:b7:9c:4a:0d:1b:2e:9e:47:5f:
65:02:bd:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:55 2024 by rpki-client on console-ams.rpki-client.org