Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/_-439IlNqnbobLtZW8QjbM9s_bE.roa
File: _-439IlNqnbobLtZW8QjbM9s_bE.roa (raw, json)
Hash identifier: VOQ7zdh/xDtDrkHW6ZpH+RGaqW2PYIXn5wJI3DEftEM=
Subject key identifier: FF:EE:37:F4:89:4D:AA:76:E8:6C:BB:59:5B:C4:23:6C:CF:6C:FD:B1
Certificate issuer: /CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Certificate serial: 018C876DF167D1A0FF1D2D3BC1EC0430158B
Authority key identifier: 5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/_-439IlNqnbobLtZW8QjbM9s_bE.roa
Signing time: Wed 20 Dec 2023 13:32:58 +0000
ROA not before: Wed 20 Dec 2023 13:32:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209155
IP address blocks: 91.211.90.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:87:6d:f1:67:d1:a0:ff:1d:2d:3b:c1:ec:04:30:15:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Validity
Not Before: Dec 20 13:32:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ffee37f4894daa76e86cbb595bc4236ccf6cfdb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:48:c8:55:d4:bc:83:15:f8:1e:fd:5b:f4:dc:
a9:49:5a:99:21:3c:9f:a9:07:20:40:30:2d:d3:bf:
5f:fe:ee:f9:15:8b:98:d5:b4:4b:0f:60:fb:7a:86:
9d:c9:97:ef:eb:dd:c9:77:90:05:da:e6:85:30:ce:
78:ba:23:40:45:f7:d6:21:c0:f3:c1:9a:1a:8f:a4:
20:87:33:dc:6d:3f:58:0e:28:f5:e6:9c:97:55:8c:
98:d5:89:90:8f:a9:59:00:b6:0c:fe:b6:be:33:5c:
83:ac:09:4e:0b:44:aa:2d:1c:43:9d:27:7c:e1:47:
8e:60:00:f9:98:e0:02:1d:62:a7:73:c8:47:c0:c2:
3c:10:79:cd:ff:04:ee:c3:e7:46:3d:e6:4b:ee:1e:
7d:a5:b9:d1:d4:e0:8b:6b:3c:eb:10:af:18:23:35:
16:f8:ff:b3:ac:93:10:2f:75:80:0f:40:a3:29:31:
ed:58:c4:8d:40:2b:6a:92:2c:4c:da:4c:11:0b:97:
dc:f0:ba:61:a2:ed:e8:7f:4c:56:0b:b6:68:3a:d7:
f5:14:61:2b:ed:80:59:7a:5f:54:88:7c:00:f0:f3:
18:ec:05:b9:40:b7:71:a9:47:24:e7:73:b0:c9:a8:
b4:ad:1c:c4:11:f7:67:38:5f:62:d8:59:6a:f3:ae:
40:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:EE:37:F4:89:4D:AA:76:E8:6C:BB:59:5B:C4:23:6C:CF:6C:FD:B1
X509v3 Authority Key Identifier:
keyid:5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/_-439IlNqnbobLtZW8QjbM9s_bE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/XmFA8XMSeE72KuO-AwwMLMZhpwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.90.0/24
Signature Algorithm: sha256WithRSAEncryption
57:d6:76:25:c1:da:d4:6f:89:46:54:d6:ee:3b:ab:98:d5:1b:
b2:c0:a7:08:4a:38:12:11:69:51:10:3b:dc:2a:0a:97:fd:fd:
7f:69:79:3e:48:f3:31:c1:06:b1:9c:9c:9b:c6:b5:65:87:ca:
ed:48:d2:87:00:8a:6b:c2:3a:13:e6:50:92:14:2b:9a:1a:08:
ac:1c:1c:60:0e:00:ac:c0:a3:30:3a:34:65:f6:aa:f8:bc:d8:
4a:2c:76:28:0f:7c:4a:ad:56:d5:fb:23:19:7d:0e:90:61:40:
d3:30:6c:d8:ac:f5:74:f8:b6:a1:7d:44:e5:3e:e0:57:c1:a6:
41:8e:22:df:e6:c2:32:83:f1:ed:2a:19:ec:c3:6b:3c:8e:b8:
9e:56:e5:8c:e7:4b:f3:0a:cc:48:4f:93:7e:e2:21:00:90:3c:
79:a1:a2:ea:af:f5:d4:55:0c:52:59:1a:56:93:15:f1:81:50:
5d:77:8d:2d:3b:49:e5:3f:c8:55:b1:ea:7e:6c:91:3a:eb:7e:
d0:62:56:55:86:1c:03:b5:29:29:5c:ce:5e:70:ce:7c:f0:e2:
23:99:49:a3:d8:68:f8:72:4f:84:68:99:93:ad:fe:35:d3:ca:
a0:a1:06:e3:67:93:5e:4b:d9:3a:3c:84:48:21:6f:b1:d0:ba:
d0:1e:d8:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:11 2024 by rpki-client on console-fra.rpki-client.org