Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/35tJlks1lqn7kCcua0fI5QJLJYo.roa
File: 35tJlks1lqn7kCcua0fI5QJLJYo.roa (raw, json)
Hash identifier: nOnQCVmMNFRVqMyA8oKSReOZ6LzKKN93hFcMJwDyDDw=
Subject key identifier: DF:9B:49:96:4B:35:96:A9:FB:90:27:2E:6B:47:C8:E5:02:4B:25:8A
Certificate issuer: /CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Certificate serial: 0190E357DD805EF76AF69E5D52A81CD0EBA4
Authority key identifier: 56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/35tJlks1lqn7kCcua0fI5QJLJYo.roa
Signing time: Wed 24 Jul 2024 06:05:04 +0000
ROA not before: Wed 24 Jul 2024 06:05:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39521
IP address blocks: 91.190.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 01 Nov 2024 10:26:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:e3:57:dd:80:5e:f7:6a:f6:9e:5d:52:a8:1c:d0:eb:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56b98f83ccbda7c19f004151c98b57c59d268f54
Validity
Not Before: Jul 24 06:05:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df9b49964b3596a9fb90272e6b47c8e5024b258a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f1:ab:0b:65:2d:37:5a:00:f0:f5:ad:da:b7:
8d:70:ea:62:fc:9a:54:67:76:56:2c:34:f3:bc:40:
93:74:e5:0f:f6:43:df:60:57:c0:75:22:bc:9e:e8:
fb:8d:25:35:52:a8:41:32:b3:31:d2:7e:0d:21:7b:
53:00:95:f8:a3:1f:58:0f:44:e2:80:4b:b3:f3:51:
33:1c:a8:2d:97:9c:e8:55:4b:41:ec:3d:56:3d:7a:
47:aa:ee:55:0f:44:ae:25:9f:9a:1b:c7:97:6b:08:
6c:3f:54:34:64:34:d3:3e:4e:0c:66:10:4b:0a:df:
40:ce:bd:18:11:a2:f4:8a:c8:8b:4f:08:43:ee:7c:
8c:56:32:f9:97:7c:ce:f3:00:00:dd:b7:86:cb:f7:
8c:27:73:ea:00:03:8e:97:a3:64:c0:49:df:aa:83:
b6:35:fb:a0:1c:bc:ad:cd:5b:24:b3:a1:23:2e:01:
40:b3:9b:51:d1:2f:e7:6f:fe:5c:d0:70:b9:92:da:
22:34:89:fb:12:2d:a8:3a:94:e3:fd:49:61:21:81:
a2:1e:cb:fa:6e:3e:c8:9a:05:ee:a9:65:ea:11:5c:
a4:6d:a6:13:a1:11:be:41:c8:8f:1c:74:08:fb:d4:
ae:1c:90:d1:4d:0e:5b:90:37:f3:9e:dc:fb:ec:c7:
1e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:9B:49:96:4B:35:96:A9:FB:90:27:2E:6B:47:C8:E5:02:4B:25:8A
X509v3 Authority Key Identifier:
keyid:56:B9:8F:83:CC:BD:A7:C1:9F:00:41:51:C9:8B:57:C5:9D:26:8F:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/35tJlks1lqn7kCcua0fI5QJLJYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/8cb935-71a3-4db3-9f3f-7aa7fc359655/1/VrmPg8y9p8GfAEFRyYtXxZ0mj1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.154.0/24
Signature Algorithm: sha256WithRSAEncryption
72:59:df:82:17:ee:4d:ac:2a:2f:66:b3:4a:43:a1:a4:a2:77:
7c:77:5b:19:cb:1e:a4:0c:cf:90:24:ec:8c:1d:2e:c1:5e:20:
48:a0:47:99:dc:75:b1:3e:91:af:43:c4:ea:24:1e:b7:6f:52:
73:ce:cf:81:85:2d:1d:a6:d3:a1:ba:37:72:7a:e5:29:55:9d:
ab:54:5c:36:59:76:2e:07:b1:80:8c:3a:3b:e8:73:97:33:c9:
8c:9d:5c:2f:c2:3e:56:3d:3f:99:c2:d5:7b:90:9a:48:e7:3b:
df:69:0c:fd:bd:71:46:e4:b8:9e:04:1a:fd:fb:31:a7:33:7f:
52:f2:20:fb:e3:11:e0:ef:52:59:e7:46:04:73:71:98:76:31:
98:b3:58:b7:79:36:31:22:c7:36:75:19:30:09:e5:af:ab:41:
49:ea:7b:f1:8a:2d:62:24:f7:6b:dc:9f:93:3a:33:78:dd:a7:
0f:87:8d:70:2d:77:71:07:39:5a:e1:2d:e1:51:c0:ec:ee:f5:
f7:1a:3c:0d:17:c6:06:bb:27:93:cc:e2:9b:b3:73:d3:38:d3:
ec:c4:10:1b:9e:ec:25:ac:00:bf:12:de:0e:4c:81:6d:39:59:
75:32:39:35:d4:44:29:29:b8:2d:af:87:ab:29:bc:c6:78:37:
06:27:1c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 1 12:52:17 2024 by rpki-client on console-fra.rpki-client.org