Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/5PSgQBS5u92hcW3DDqmPiOooxT8.roa
File: 5PSgQBS5u92hcW3DDqmPiOooxT8.roa (raw, json)
Hash identifier: FIrHi/HQGFNzoZ32zNY1jiDsPmqlobnC763b9Hgu79I=
Subject key identifier: E4:F4:A0:40:14:B9:BB:DD:A1:71:6D:C3:0E:A9:8F:88:EA:28:C5:3F
Certificate issuer: /CN=4bd2b3f31a6b0a5d7c0698a37796a51d7b0cb6a4
Certificate serial: 01856FB116C0A3BFBBF006706220A781EB26
Authority key identifier: 4B:D2:B3:F3:1A:6B:0A:5D:7C:06:98:A3:77:96:A5:1D:7B:0C:B6:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S9Kz8xprCl18Bpijd5alHXsMtqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/5PSgQBS5u92hcW3DDqmPiOooxT8.roa
Signing time: Sun 01 Jan 2023 23:35:54 +0000
ROA not before: Sun 01 Jan 2023 23:35:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197055
IP address blocks: 91.216.174.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:b1:16:c0:a3:bf:bb:f0:06:70:62:20:a7:81:eb:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bd2b3f31a6b0a5d7c0698a37796a51d7b0cb6a4
Validity
Not Before: Jan 1 23:35:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e4f4a04014b9bbdda1716dc30ea98f88ea28c53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:3c:e4:d0:e3:90:4a:b6:81:36:21:0a:25:96:
b6:43:b5:25:44:86:db:15:50:12:40:8f:5e:8e:d1:
f2:03:aa:bc:38:59:88:8f:88:26:db:19:cb:c3:eb:
4e:d2:7c:a1:e1:c1:7d:79:fc:73:ed:04:79:f6:38:
c3:af:68:74:d9:08:d5:54:59:60:07:0e:ae:f4:eb:
f7:95:48:5e:4a:16:89:6c:7f:40:9f:3e:48:02:87:
a8:2a:db:96:bc:e5:60:c7:d0:27:31:a4:26:e4:bd:
15:bf:64:2d:0a:03:72:3e:77:4f:f1:a8:05:10:37:
bd:51:c6:60:e6:2e:f2:ad:17:4a:d5:8c:3d:a5:bb:
c2:4b:46:5c:d7:83:5a:3f:ff:4c:d2:cc:ee:e3:7f:
fc:2c:cb:2a:8d:a4:1f:4d:74:54:99:4b:cf:ff:31:
ff:14:55:cd:71:22:5f:98:62:fd:f7:97:c1:46:f4:
16:eb:99:70:7f:ae:ae:27:7f:57:73:bc:5e:c3:73:
90:d0:ce:16:aa:b5:c9:8a:27:7a:a8:0e:a4:d4:5b:
f6:36:fb:ec:da:b6:6a:a0:6d:77:88:9c:bb:34:da:
f5:09:9b:c8:ec:88:ca:b2:eb:6f:38:d2:7c:e9:8f:
20:07:9b:5f:5e:d4:bd:55:00:91:59:5e:87:90:5d:
12:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:F4:A0:40:14:B9:BB:DD:A1:71:6D:C3:0E:A9:8F:88:EA:28:C5:3F
X509v3 Authority Key Identifier:
keyid:4B:D2:B3:F3:1A:6B:0A:5D:7C:06:98:A3:77:96:A5:1D:7B:0C:B6:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S9Kz8xprCl18Bpijd5alHXsMtqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/5PSgQBS5u92hcW3DDqmPiOooxT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/3997ea-204a-4efd-85d6-2d7fd0fb22ce/1/S9Kz8xprCl18Bpijd5alHXsMtqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.174.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:a5:ff:39:7c:45:d7:90:c0:13:56:aa:6d:a4:aa:27:3c:db:
c2:89:fc:ba:84:34:84:2f:29:a2:01:33:b1:48:20:7b:06:20:
4f:2c:53:43:c0:a7:b7:34:b9:be:33:64:22:2e:99:9b:80:0f:
d9:72:4d:69:5f:d8:54:5b:78:10:90:92:57:41:f3:dd:d1:33:
58:ba:3d:9c:1f:04:03:ea:ed:fc:2d:e9:8a:9e:82:ac:a3:a7:
8b:f0:db:ca:85:13:3d:6f:b4:c5:00:28:0a:a1:4f:65:e7:ac:
d1:3c:45:03:c6:0c:59:cc:7e:cc:96:81:a6:89:a7:f3:b1:08:
42:0d:c5:11:ac:c4:64:8b:e1:07:50:b2:3e:f3:da:ce:9b:bc:
93:1a:db:84:27:9c:b1:8d:0a:02:38:24:b4:f5:42:b7:62:03:
ba:9d:5d:ca:5e:fc:1a:a1:bb:78:aa:c6:2a:58:9e:ed:c9:56:
a1:4e:87:3a:cd:18:64:26:d3:37:a0:2d:1b:67:d2:84:79:84:
e0:da:9c:f1:08:7c:ee:97:35:43:ab:a4:b3:ab:c0:f1:3c:e3:
bf:21:09:b9:ab:4a:73:50:27:f8:40:71:4d:e5:24:0d:3a:d5:
45:76:a9:84:d1:3f:d7:cf:a2:89:7f:70:54:e7:a9:f2:a1:d1:
7a:6b:24:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:45 2024 by rpki-client on console-fra.rpki-client.org