Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/IU0rgCtPilfp8HaDexo3X567mw8.roa
File: IU0rgCtPilfp8HaDexo3X567mw8.roa (raw, json)
Hash identifier: paGb0OdTxpGEDhOJAquLY3M/2/1aYv1UB3eOcGO+rwU=
Subject key identifier: 21:4D:2B:80:2B:4F:8A:57:E9:F0:76:83:7B:1A:37:5F:9E:BB:9B:0F
Certificate issuer: /CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Certificate serial: 018570306CB0A4F056A144587BDD2CFE18C7
Authority key identifier: F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/IU0rgCtPilfp8HaDexo3X567mw8.roa
Signing time: Mon 02 Jan 2023 01:54:59 +0000
ROA not before: Mon 02 Jan 2023 01:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51843
IP address blocks: 91.120.250.0/24 maxlen: 24
91.120.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:30:6c:b0:a4:f0:56:a1:44:58:7b:dd:2c:fe:18:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f02dac605f4659718c0a15e1f732cbd4f48aae7b
Validity
Not Before: Jan 2 01:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=214d2b802b4f8a57e9f076837b1a375f9ebb9b0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:6e:4c:2d:86:fa:04:c0:ad:47:2a:bc:d2:95:
27:56:20:6e:55:34:99:35:22:ec:e5:a0:c3:8f:77:
5c:34:06:45:cb:91:e7:79:fd:20:bd:b5:da:55:41:
45:a8:36:fa:6e:0b:40:7e:bd:4b:93:a3:66:20:ce:
d6:c4:05:85:7d:b6:a0:0e:6c:df:8b:c1:8d:fc:8c:
15:e4:74:2c:88:80:3a:8b:29:6b:c4:ca:a2:50:41:
51:d9:63:e7:3a:9b:c7:b6:86:82:dd:ef:21:7b:aa:
a2:9b:7e:41:a2:49:c9:51:27:8d:a3:99:b3:f4:af:
0e:08:74:75:8f:30:a9:c0:11:ea:85:65:fa:24:97:
8b:b0:98:47:4b:d2:5b:d3:74:18:5c:50:f2:24:81:
1b:d2:22:bb:c1:dd:0e:16:c8:9a:84:7c:77:a1:ac:
a2:46:a7:96:57:f5:6d:0d:e7:a4:ec:58:ca:96:c2:
2f:99:1a:68:70:4a:71:19:75:9d:d5:25:04:93:87:
9e:98:b7:38:2e:c2:95:24:4c:62:84:80:a1:82:2e:
66:99:b1:1c:da:c8:6e:e7:2f:b7:9b:8f:a9:61:d2:
db:7c:b1:30:c7:83:f4:13:a0:f6:e2:09:9f:12:39:
a6:d7:08:35:da:88:31:ce:a0:3b:e1:7b:e6:a0:18:
c8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:4D:2B:80:2B:4F:8A:57:E9:F0:76:83:7B:1A:37:5F:9E:BB:9B:0F
X509v3 Authority Key Identifier:
keyid:F0:2D:AC:60:5F:46:59:71:8C:0A:15:E1:F7:32:CB:D4:F4:8A:AE:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8C2sYF9GWXGMChXh9zLL1PSKrns.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/IU0rgCtPilfp8HaDexo3X567mw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/e90976-3dd1-4716-bbf6-292ae46e6302/1/8C2sYF9GWXGMChXh9zLL1PSKrns.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.120.250.0/23
Signature Algorithm: sha256WithRSAEncryption
89:f9:aa:c5:cf:7d:cc:57:64:77:95:18:ce:9a:9a:38:96:75:
8e:be:06:58:97:1f:d9:5b:30:90:f4:30:8d:99:7c:6e:c9:be:
44:8b:b3:dd:c8:72:17:05:cb:2a:c1:69:3b:70:fc:ab:48:ba:
e1:74:e0:1f:0d:04:77:24:68:32:05:1b:1c:d1:70:32:68:a1:
ff:4f:1e:c0:6b:2f:61:ad:e7:a2:ba:1c:7b:bf:de:8c:56:de:
6f:40:8e:e8:54:75:c0:75:87:1f:1c:7e:db:67:45:05:8b:7a:
bc:03:35:4a:17:8b:e3:ed:b8:72:02:4c:85:b7:da:49:19:19:
4b:a2:f2:f3:58:52:26:d0:a6:e4:53:a5:cd:9b:ac:91:17:8e:
ea:1a:b1:cd:e0:16:ae:58:d8:1f:b1:8f:5d:46:08:e2:ab:26:
e9:0e:f1:57:ca:d4:47:5e:06:57:e3:d3:a7:fd:23:84:a6:d8:
d5:6f:2b:23:a7:51:d8:ca:82:96:d1:0a:40:0c:27:7f:a2:9b:
9e:ee:fe:e1:90:63:cd:94:3f:9d:7f:e8:72:d3:f9:f7:57:e6:
cd:54:0f:90:8a:b9:92:cf:97:f6:89:6c:be:e5:46:dd:66:a2:
6f:f5:78:7d:9b:bc:04:9a:8c:52:d8:7d:bb:27:aa:db:d8:23:
00:69:ea:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:47 2024 by rpki-client on console-fra.rpki-client.org