Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/P7uWxGrOxxi9hOOHPyDYaJPmMU8.roa
File: P7uWxGrOxxi9hOOHPyDYaJPmMU8.roa (raw, json)
Hash identifier: 6BFfdXOQtrIGrybKVZjoDpYBX60noWf1K2bameLG0S0=
Subject key identifier: 3F:BB:96:C4:6A:CE:C7:18:BD:84:E3:87:3F:20:D8:68:93:E6:31:4F
Certificate issuer: /CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Certificate serial: 018CC26D7D69E5EF0579ECCD11EABCC92906
Authority key identifier: 1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/P7uWxGrOxxi9hOOHPyDYaJPmMU8.roa
Signing time: Mon 01 Jan 2024 00:30:04 +0000
ROA not before: Mon 01 Jan 2024 00:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48357
IP address blocks: 91.149.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 08:32:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:7d:69:e5:ef:05:79:ec:cd:11:ea:bc:c9:29:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Validity
Not Before: Jan 1 00:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fbb96c46acec718bd84e3873f20d86893e6314f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:e9:fa:dc:e4:ef:79:7f:0b:51:e6:39:72:68:
c3:79:a3:35:c7:cb:4d:65:c3:fa:27:92:d8:fc:10:
2a:70:35:d6:ed:a8:7d:4d:6f:4c:a8:5b:e2:e2:58:
eb:d1:43:60:f3:6c:78:72:16:d0:a7:c1:6b:2a:4a:
33:90:5a:7f:2a:35:da:8f:71:56:01:ea:17:61:9a:
65:f8:5d:56:e8:c2:d1:02:8b:57:2e:46:71:f2:88:
10:b8:2d:d4:b3:9b:65:d8:96:b4:c6:c9:86:8a:23:
b2:7b:de:49:cf:94:95:28:c0:a2:ad:6a:7f:76:73:
b8:a7:de:2a:43:71:d3:2e:97:ac:0f:d7:08:f1:1b:
ac:37:5d:9e:5d:da:61:3b:44:df:15:6c:a6:c9:0d:
b0:af:b7:95:13:36:bf:4c:e9:d1:fa:6e:37:41:41:
54:b7:24:19:44:2f:e4:ba:40:17:07:47:31:7b:93:
30:f6:6d:5c:57:a9:bb:c2:b2:f3:96:05:4a:f3:ee:
86:c7:e1:55:de:03:c1:0c:c4:32:ef:1f:e7:84:ee:
72:31:2f:eb:cd:17:80:b4:fd:74:1a:d3:a6:ab:18:
e7:af:dd:ba:de:8f:be:f3:72:6a:ae:c6:25:c2:67:
7f:00:6d:97:aa:28:fa:6a:9e:b1:0a:f5:60:c3:ee:
2a:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:BB:96:C4:6A:CE:C7:18:BD:84:E3:87:3F:20:D8:68:93:E6:31:4F
X509v3 Authority Key Identifier:
keyid:1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/P7uWxGrOxxi9hOOHPyDYaJPmMU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.192.0/24
Signature Algorithm: sha256WithRSAEncryption
34:f4:aa:88:98:66:d2:2f:88:47:af:bc:b3:99:02:a3:0a:66:
bd:ad:b8:80:48:8a:09:f1:52:88:ad:31:99:f9:e8:76:38:04:
c8:c2:8b:23:ca:08:ae:31:8a:ad:e6:e3:bc:98:a4:0b:c6:01:
f8:88:da:a0:34:d3:16:47:12:6d:55:26:f8:8a:40:69:d6:0b:
ee:25:5f:9d:b9:d9:bb:13:b5:87:ec:29:06:83:8e:a4:92:15:
97:fd:0f:8b:c2:a3:d6:99:7d:79:30:7e:bc:62:f3:be:36:d8:
1e:c9:a6:68:3f:0f:42:7b:c6:ef:76:c5:c9:02:f2:5e:c0:93:
8c:e5:ed:71:18:64:79:e5:32:99:9f:f4:e3:69:57:3b:d4:83:
c6:ee:f6:ac:75:a6:2a:01:ea:ec:2b:17:e9:0b:45:1e:55:29:
43:57:a0:f2:a0:9c:b4:ea:9d:40:d7:90:d5:c8:ee:da:5c:23:
ed:7c:97:25:a5:47:50:0e:e3:25:cd:30:9d:89:0a:93:7d:e2:
93:81:95:e8:a8:62:1b:af:97:d8:5b:f5:49:cf:13:cd:00:e2:
99:2a:e0:ad:d9:0c:c6:31:c2:75:04:e1:f3:29:a3:f1:05:d6:
6f:84:b0:1b:01:ee:98:5a:9b:1e:5e:f3:8d:94:8a:5f:30:9b:
e8:b5:b6:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:40:20 2024 by rpki-client on console-ams.rpki-client.org