Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/IBwhOfXsYpgvRSPGlKW-PA8fdcE.roa
File: IBwhOfXsYpgvRSPGlKW-PA8fdcE.roa (raw, json)
Hash identifier: VL+v9t9vBJ6sjJw56bVtoLVKkIG+a7yMCrwfplWoFNE=
Subject key identifier: 20:1C:21:39:F5:EC:62:98:2F:45:23:C6:94:A5:BE:3C:0F:1F:75:C1
Certificate issuer: /CN=427cc552ab57dbafa4621fb5dc593a45607cfb0a
Certificate serial: 01856F38FBBC212D8CD772D2916AE198DFDF
Authority key identifier: 42:7C:C5:52:AB:57:DB:AF:A4:62:1F:B5:DC:59:3A:45:60:7C:FB:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QnzFUqtX26-kYh-13Fk6RWB8-wo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/IBwhOfXsYpgvRSPGlKW-PA8fdcE.roa
Signing time: Sun 01 Jan 2023 21:24:43 +0000
ROA not before: Sun 01 Jan 2023 21:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42636
IP address blocks: 91.192.244.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:38:fb:bc:21:2d:8c:d7:72:d2:91:6a:e1:98:df:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=427cc552ab57dbafa4621fb5dc593a45607cfb0a
Validity
Not Before: Jan 1 21:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=201c2139f5ec62982f4523c694a5be3c0f1f75c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e5:35:93:b2:45:af:1e:76:28:7c:c4:bb:59:
7e:42:eb:10:1b:21:3c:ba:68:1d:e3:aa:9a:9c:b8:
ea:00:6a:ee:0c:71:f1:2e:3b:b8:4f:be:6e:3a:6d:
26:07:60:36:d8:4a:71:62:7b:23:83:4c:ab:6d:11:
67:c8:1f:80:83:8f:93:26:13:f7:04:4e:2e:69:5f:
9c:1b:00:66:8f:8d:7b:d2:75:fc:26:a3:f4:3f:ed:
cd:9b:f1:1f:95:1f:19:55:2f:af:77:6b:14:1b:6a:
9b:c5:59:c4:ed:79:99:80:b8:89:b6:d3:4e:83:8e:
a3:a9:69:8e:cf:db:e1:95:81:1e:73:6b:99:78:0b:
5a:44:63:f4:de:29:22:a3:fc:45:08:24:6b:40:59:
03:4b:c0:8a:46:3e:36:57:06:2a:b4:3f:7f:74:69:
22:e6:ae:a4:92:69:b1:93:75:ad:fe:95:da:89:55:
0c:c4:d0:9e:0c:d8:76:4c:17:1e:9a:95:c8:85:f0:
b6:8d:6b:46:d7:10:13:d9:8a:90:e9:33:29:2d:c6:
62:0a:fa:4f:bd:5f:17:c1:c8:e0:26:1d:87:cc:0c:
b8:38:c7:cb:73:29:b5:2b:88:e5:2a:74:45:fc:7d:
44:d6:08:80:67:0b:c2:c2:2b:fa:66:36:6a:9e:00:
3b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1C:21:39:F5:EC:62:98:2F:45:23:C6:94:A5:BE:3C:0F:1F:75:C1
X509v3 Authority Key Identifier:
keyid:42:7C:C5:52:AB:57:DB:AF:A4:62:1F:B5:DC:59:3A:45:60:7C:FB:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QnzFUqtX26-kYh-13Fk6RWB8-wo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/IBwhOfXsYpgvRSPGlKW-PA8fdcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/621180-30c3-42c3-8f47-85a5b4cfc84f/1/QnzFUqtX26-kYh-13Fk6RWB8-wo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.244.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:a1:ca:6a:d9:e9:04:71:23:30:7c:d8:1f:ea:86:b3:42:3a:
38:fe:01:4e:5f:73:33:dd:67:5b:76:ee:99:40:5f:89:7c:31:
8e:c4:b0:b6:41:3b:9c:c7:3b:b9:20:0b:71:c6:0e:a5:8d:54:
f9:79:9f:51:d6:eb:bf:8d:ba:1c:dd:eb:d8:18:e9:80:a9:c6:
39:72:34:2b:cf:09:25:65:f9:46:a8:a1:5e:fe:59:23:38:39:
90:b7:b1:95:ca:5e:b0:32:08:3d:e9:ad:93:48:e7:99:8a:01:
96:ee:a1:da:23:39:12:5d:33:6d:16:3b:81:1f:6c:6e:b4:2a:
c8:8b:87:54:70:3c:d5:c4:9f:a5:b7:d9:01:bf:10:52:f6:e8:
60:66:87:29:27:ee:63:5f:63:ea:61:34:84:dc:3d:c2:10:1f:
cc:0d:51:28:d1:82:08:39:9d:b9:8b:39:4b:ec:0c:40:10:e8:
ef:55:26:7e:67:c5:78:b7:cf:f0:d5:80:bf:f0:33:b2:81:43:
cd:bf:56:83:af:9e:70:72:f3:1a:f2:a8:44:27:c7:60:6b:ec:
3e:99:2a:e8:9a:e0:ed:cd:e5:7a:cb:11:90:3e:ce:c4:79:44:
06:90:83:09:55:d2:82:3b:c9:c6:2b:7e:8c:8e:bd:06:be:93:
99:fc:42:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:30 2024 by rpki-client on console-ams.rpki-client.org