Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/n8SBRpwyvA-uWfKsif1YjxvErx8.roa
File: n8SBRpwyvA-uWfKsif1YjxvErx8.roa (raw, json)
Hash identifier: Dwmr3XyQ57qlBnB3CMf7DW6o3GIJ1OF3WzjlPkTudjQ=
Subject key identifier: 9F:C4:81:46:9C:32:BC:0F:AE:59:F2:AC:89:FD:58:8F:1B:C4:AF:1F
Certificate issuer: /CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Certificate serial: 018C876DF0637B2FE799643C93EF2ADF3D75
Authority key identifier: 5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/n8SBRpwyvA-uWfKsif1YjxvErx8.roa
Signing time: Wed 20 Dec 2023 13:32:58 +0000
ROA not before: Wed 20 Dec 2023 13:32:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 91.211.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:29:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:87:6d:f0:63:7b:2f:e7:99:64:3c:93:ef:2a:df:3d:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Validity
Not Before: Dec 20 13:32:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9fc481469c32bc0fae59f2ac89fd588f1bc4af1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8f:ea:96:74:d3:5a:b0:39:e2:e8:0f:d8:55:
b3:b7:e6:11:75:17:e7:4f:1c:a9:af:eb:f7:9b:e3:
ab:f7:e2:ab:bd:b7:ad:87:e5:00:af:4b:db:42:46:
5c:27:34:b8:92:88:a2:da:b5:99:3a:d0:67:30:04:
ad:e1:29:a8:61:db:1b:49:28:90:68:6e:aa:db:b0:
d0:aa:3f:9d:ec:f2:18:6b:4b:64:19:18:9c:a5:cc:
74:b4:6b:e5:7e:d0:fa:36:42:6f:65:2a:75:98:0c:
6f:2d:0a:91:4b:67:f0:67:9b:9c:f5:e3:29:e7:72:
23:3e:7a:f9:d8:45:2f:63:6c:51:08:b9:d0:49:4a:
21:93:cc:ff:64:80:f5:2d:36:f9:cb:e9:06:5f:c9:
13:b4:24:b3:bf:dd:bc:80:ed:c0:4a:c7:38:da:83:
9b:0a:ed:91:97:39:93:68:46:48:e7:cb:96:20:5f:
88:61:d5:4e:e8:02:c8:d5:bd:51:b9:98:72:28:bf:
37:a0:09:dc:6d:02:76:02:1f:19:04:58:dd:c8:a9:
e4:40:90:d9:b3:19:99:1e:83:ec:c3:60:30:32:d4:
f1:e8:1e:16:55:38:31:6e:f3:49:01:f9:03:55:6e:
40:9a:cc:b1:c9:8e:70:6c:31:91:cf:42:6e:bb:12:
b2:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:C4:81:46:9C:32:BC:0F:AE:59:F2:AC:89:FD:58:8F:1B:C4:AF:1F
X509v3 Authority Key Identifier:
keyid:5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/n8SBRpwyvA-uWfKsif1YjxvErx8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/XmFA8XMSeE72KuO-AwwMLMZhpwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.89.0/24
Signature Algorithm: sha256WithRSAEncryption
39:00:de:dd:a6:5a:da:6a:8c:24:b7:09:b1:67:81:3e:fe:8b:
05:97:cd:a3:c5:32:27:0d:87:ce:99:26:9f:30:dd:d5:71:6e:
a9:dc:73:dc:e0:1f:e9:58:85:bf:50:e9:9e:d0:2e:ce:93:f8:
57:46:d9:b8:2b:20:da:02:6a:c1:58:35:b8:b6:ea:8c:cb:df:
10:87:f1:55:38:a3:08:dd:9c:17:95:b2:10:91:c6:25:62:e0:
bd:a7:3c:5d:ad:d3:64:1d:06:87:47:c1:8f:74:23:de:be:e8:
cf:24:34:1a:80:17:40:a8:42:d4:36:e1:16:35:89:1e:b6:2b:
70:da:f2:08:7f:6f:60:0a:52:05:fa:c9:a0:d7:51:a6:ed:29:
fa:a2:9d:a1:c5:74:98:c3:ad:1b:d0:83:17:0d:ba:02:21:50:
f4:4e:65:0a:34:67:40:a2:3a:ec:ab:8f:1b:4f:a8:22:a4:5a:
82:ae:62:e8:11:66:cb:a1:23:39:24:6a:c1:ec:52:b1:3e:6a:
90:c7:2f:46:c9:da:8a:25:85:9e:f3:31:6f:b7:b8:6a:fb:d1:
0c:0d:72:df:26:d6:89:e4:34:59:1f:6c:1a:fc:e4:f4:66:cb:
36:27:3a:fa:69:9b:b2:3d:f5:a6:26:94:df:0f:8f:aa:ef:33:
d9:55:17:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:56 2024 by rpki-client on console-ams.rpki-client.org