Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/034095-91e5-41b2-a6bc-34fcc4187144/1/44QgDTMp8NcNuq3W41owosH9_AQ.roa
File: 44QgDTMp8NcNuq3W41owosH9_AQ.roa (raw, json)
Hash identifier: VGjDPUtpP9kz87Tvj2jdi2vmenN5+5BOibmhxoogKro=
Subject key identifier: E3:84:20:0D:33:29:F0:D7:0D:BA:AD:D6:E3:5A:30:A2:C1:FD:FC:04
Certificate issuer: /CN=eb67a840e41ac66f8f359ccbd65354c917042bbf
Certificate serial: 018D4AEFB3D1227B6D1015CB086070C05684
Authority key identifier: EB:67:A8:40:E4:1A:C6:6F:8F:35:9C:CB:D6:53:54:C9:17:04:2B:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/62eoQOQaxm-PNZzL1lNUyRcEK78.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/034095-91e5-41b2-a6bc-34fcc4187144/1/44QgDTMp8NcNuq3W41owosH9_AQ.roa
Signing time: Sat 27 Jan 2024 12:40:39 +0000
ROA not before: Sat 27 Jan 2024 12:40:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57457
IP address blocks: 91.108.188.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 Apr 2024 06:05:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:4a:ef:b3:d1:22:7b:6d:10:15:cb:08:60:70:c0:56:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb67a840e41ac66f8f359ccbd65354c917042bbf
Validity
Not Before: Jan 27 12:40:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e384200d3329f0d70dbaadd6e35a30a2c1fdfc04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:9a:9b:40:a5:b9:d0:5d:9b:8d:b5:e0:e9:b2:
85:92:ff:5b:15:00:45:a9:a8:38:2b:d0:a1:33:1a:
79:ce:3a:cc:32:10:b5:6f:c8:5f:41:65:50:40:31:
ed:93:13:64:e9:e9:95:85:a7:a6:51:9a:83:83:f2:
b6:cf:1f:3b:6b:93:ee:e9:d1:13:8c:b4:7c:36:90:
eb:2e:a9:fd:52:f2:19:c0:bb:c3:7f:b2:03:ac:cb:
ad:bd:50:a7:25:ae:f5:32:64:b0:c2:51:ed:ae:fd:
e3:4b:66:82:2b:86:4f:2f:ab:3a:54:02:7b:30:d2:
05:7c:a3:bc:75:48:5a:d3:48:3b:17:41:0f:67:c1:
70:92:ab:eb:f7:be:85:5f:6a:32:6e:52:9e:9d:ee:
b6:18:ce:7d:65:a6:00:1e:71:99:52:d6:aa:33:7c:
49:db:bc:25:b5:6f:56:89:42:e1:9e:91:b7:cd:3a:
d8:c3:33:d2:1f:63:57:43:51:3f:03:c3:c2:c6:64:
51:71:d1:aa:af:71:aa:1a:09:bf:3b:4b:2b:a0:23:
5e:63:fb:5d:fb:4e:43:ee:79:6f:79:69:a3:0e:31:
f8:ef:85:4d:d7:e8:57:05:81:f7:eb:a8:35:21:17:
8f:94:c5:7d:d7:84:f9:17:27:5f:9d:c2:06:25:68:
b2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:84:20:0D:33:29:F0:D7:0D:BA:AD:D6:E3:5A:30:A2:C1:FD:FC:04
X509v3 Authority Key Identifier:
keyid:EB:67:A8:40:E4:1A:C6:6F:8F:35:9C:CB:D6:53:54:C9:17:04:2B:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/62eoQOQaxm-PNZzL1lNUyRcEK78.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/034095-91e5-41b2-a6bc-34fcc4187144/1/44QgDTMp8NcNuq3W41owosH9_AQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/034095-91e5-41b2-a6bc-34fcc4187144/1/62eoQOQaxm-PNZzL1lNUyRcEK78.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.188.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:2a:91:c7:49:0b:a0:38:b9:db:8c:bf:e8:75:dc:65:2b:94:
09:59:6c:e5:71:5f:75:64:58:50:ea:cd:fa:65:9a:e9:78:dc:
05:86:52:67:80:bb:60:11:a3:b9:71:b1:71:29:13:19:b2:ce:
ba:79:14:b0:78:2b:79:f5:08:c5:b6:3e:2b:2d:00:b1:ee:1b:
f6:fc:49:3a:5b:cd:09:16:21:3b:24:86:50:52:b4:32:8b:df:
b2:fb:4c:10:07:43:38:82:c3:21:99:65:a7:e1:9a:3e:c5:95:
35:8d:82:1c:e4:c2:e8:f6:fb:f5:a0:c5:e5:17:ac:7d:95:b7:
8a:bc:bf:b7:49:d9:2f:d0:a3:c0:82:b5:a9:76:e7:95:cf:b4:
9e:2c:85:b7:a9:9f:29:28:44:8b:21:82:7c:a4:ad:e3:f4:85:
31:f8:71:74:7e:da:4d:14:3a:a7:b7:f4:cd:66:f5:3d:b0:72:
e1:90:f7:76:92:b8:a9:32:3c:8c:2a:85:49:5a:d3:57:fe:de:
c0:8d:ff:22:7d:9c:56:a6:84:68:d2:8e:c3:43:39:48:94:ff:
d4:c4:38:6d:c9:17:ac:ab:84:df:d7:ae:3b:7b:33:c5:78:fd:
dc:43:fa:90:33:d7:47:9b:44:56:b7:f7:ec:10:60:b8:cf:c0:
38:1a:61:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:02 2024 by rpki-client on console-ams.rpki-client.org