Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/lOwSFLRS9dsRvV5G_loSmfgGXQo.roa
File: lOwSFLRS9dsRvV5G_loSmfgGXQo.roa (raw, json)
Hash identifier: H6DT6RBN9c3LNcYqsBooLyJRSkNg6lfkZzdISuRHx4o=
Subject key identifier: 94:EC:12:14:B4:52:F5:DB:11:BD:5E:46:FE:5A:12:99:F8:06:5D:0A
Certificate issuer: /CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Certificate serial: 018CC26D7E5D3659E06793E331C0B8F9195A
Authority key identifier: 1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/lOwSFLRS9dsRvV5G_loSmfgGXQo.roa
Signing time: Mon 01 Jan 2024 00:30:04 +0000
ROA not before: Mon 01 Jan 2024 00:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58110
IP address blocks: 91.149.192.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 May 2024 08:32:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:6d:7e:5d:36:59:e0:67:93:e3:31:c0:b8:f9:19:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1acb6376a1648d49d55e4d7b01371367b0dc2af9
Validity
Not Before: Jan 1 00:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=94ec1214b452f5db11bd5e46fe5a1299f8065d0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:81:46:16:c7:a3:70:ac:4b:89:2b:97:37:08:
18:7e:c2:8f:1c:b6:4e:48:0a:62:8b:03:02:82:e5:
1a:3a:aa:bc:92:67:1d:54:cb:61:25:bf:9e:a6:5d:
d5:2e:b9:76:f4:24:65:03:1e:e7:bc:da:37:13:0c:
de:b9:75:a2:55:c4:eb:82:04:d6:fe:9a:e6:25:1f:
33:3d:10:85:b3:83:2a:8a:50:48:84:88:cb:83:0e:
de:47:af:dd:35:cc:7f:18:f9:20:d3:d2:28:5b:45:
34:69:45:dc:71:57:35:c5:f9:62:c2:a9:2b:ee:6f:
bf:f6:f4:1e:86:1b:9c:a9:45:8e:90:3b:09:1a:e6:
4e:50:e4:35:eb:03:72:a8:f9:3c:fc:20:8f:4e:ea:
f2:1c:66:2e:24:48:44:94:76:d7:03:b7:90:62:13:
c6:df:48:a6:3a:78:02:e0:76:66:9b:0e:bc:85:ea:
2b:bd:d9:4d:43:3d:61:1d:22:14:10:98:b5:30:59:
71:a9:39:9d:2d:05:90:f6:9c:5a:40:5e:b2:6b:42:
36:5e:bd:63:07:fc:4d:a4:fa:c9:c3:48:51:ba:9c:
7f:b4:c0:6b:fa:15:52:46:6e:69:52:be:a8:60:55:
c6:f2:7c:95:57:b6:b4:62:d1:be:9a:c3:14:26:ac:
db:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:EC:12:14:B4:52:F5:DB:11:BD:5E:46:FE:5A:12:99:F8:06:5D:0A
X509v3 Authority Key Identifier:
keyid:1A:CB:63:76:A1:64:8D:49:D5:5E:4D:7B:01:37:13:67:B0:DC:2A:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GstjdqFkjUnVXk17ATcTZ7DcKvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/lOwSFLRS9dsRvV5G_loSmfgGXQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/7247b0-4989-43ea-9350-7a936751db1b/1/GstjdqFkjUnVXk17ATcTZ7DcKvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.149.192.0/24
Signature Algorithm: sha256WithRSAEncryption
38:d0:82:a4:36:f9:e3:e0:d1:e4:05:dc:52:0b:ea:b4:34:02:
fe:e9:d6:5d:25:8b:53:a7:a4:b0:99:ea:2b:34:ef:91:b6:5d:
1b:be:9a:25:bd:d6:2e:18:cc:c3:0e:2e:a7:e9:d4:31:1b:10:
3e:3e:cd:e2:71:bd:aa:97:a2:dd:72:75:99:c5:fa:7d:73:15:
85:db:ef:bf:fb:15:f0:e9:e9:8a:28:67:7f:99:0e:b0:17:a2:
0a:28:83:6e:9e:2e:cd:bc:d7:42:51:fd:af:ec:7e:74:85:80:
4d:1a:9e:39:f4:8f:7b:98:3b:80:c3:cd:5c:ae:fe:bb:a4:d3:
ff:d0:f6:64:72:c7:66:5d:ce:4d:d4:ce:b5:18:78:28:d4:84:
b6:7c:99:c8:4e:39:97:17:69:d1:fa:bf:b2:63:1e:52:88:28:
49:47:05:3e:fc:24:cc:c1:09:c0:2e:e7:e2:54:43:18:67:78:
20:e5:e3:c8:76:70:64:af:82:c0:30:07:79:1b:ff:3f:e4:15:
5e:b3:d7:f4:7d:b4:b4:ee:e4:60:8c:3b:3a:2b:75:aa:97:f8:
c7:c8:92:86:29:6f:39:a1:8c:a1:9d:e9:ea:48:ff:02:18:ac:
fe:d1:a9:76:96:c4:ae:8a:b5:6a:95:bb:5d:3d:77:7c:e7:e1:
5b:cf:7d:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:40:21 2024 by rpki-client on console-ams.rpki-client.org