Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/XbrK4b2HTcB8UPwK6_ifzjnSA_A.roa
File: XbrK4b2HTcB8UPwK6_ifzjnSA_A.roa (raw, json)
Hash identifier: d8DNHIHY1NGSNBP00A+cHaoiaUmCZUt0np5decdatns=
Subject key identifier: 5D:BA:CA:E1:BD:87:4D:C0:7C:50:FC:0A:EB:F8:9F:CE:39:D2:03:F0
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 018B81E870F3BF3FD9926A2CC89B86ACAFE3
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/XbrK4b2HTcB8UPwK6_ifzjnSA_A.roa
Signing time: Mon 30 Oct 2023 18:46:15 +0000
ROA not before: Mon 30 Oct 2023 18:46:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47821
IP address blocks: 91.242.242.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:81:e8:70:f3:bf:3f:d9:92:6a:2c:c8:9b:86:ac:af:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Oct 30 18:46:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dbacae1bd874dc07c50fc0aebf89fce39d203f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:6e:1c:ba:e9:cf:24:e9:13:49:76:05:71:30:
9d:81:c6:fa:2e:3d:08:5f:23:61:12:b2:fc:a4:50:
a5:0a:2f:ea:6f:4b:8b:1c:58:60:22:2e:8a:c9:0a:
c2:9b:77:a6:22:03:8d:d1:5d:42:00:32:f4:28:59:
52:f7:bf:20:4e:7a:fc:e9:78:bb:79:0a:e3:86:55:
4c:a2:a8:a8:40:c4:76:0e:23:5a:c9:ab:ab:4c:2c:
2f:9b:cb:fb:96:47:85:d6:c8:86:53:e0:6a:0d:ba:
2b:98:7d:1a:1c:05:59:92:eb:ae:8a:86:e8:e0:6a:
31:95:17:7f:83:6d:eb:ac:a1:7e:ed:48:3f:43:48:
27:f0:4d:91:17:21:2b:25:6a:4d:a3:1a:d1:4a:a0:
d7:23:a6:49:4d:b2:3c:37:f3:6b:d8:5f:aa:4e:9b:
61:f5:71:74:04:3e:0d:ec:f8:3b:50:1a:ef:88:be:
5b:fd:eb:22:69:87:eb:22:b9:0d:3e:1d:81:4f:8a:
aa:2e:0c:5c:89:f9:66:31:3b:ff:64:3c:13:65:02:
82:1b:1c:e3:8c:89:00:ab:7f:2b:10:5d:f1:06:96:
2c:ad:fb:0e:84:fe:14:b6:3e:04:7b:42:b9:07:4c:
6b:a3:75:c5:cc:bd:a1:08:52:d4:76:e3:fc:eb:d1:
88:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:BA:CA:E1:BD:87:4D:C0:7C:50:FC:0A:EB:F8:9F:CE:39:D2:03:F0
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/XbrK4b2HTcB8UPwK6_ifzjnSA_A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.242.0/24
Signature Algorithm: sha256WithRSAEncryption
97:86:60:2c:e2:51:4b:c2:c0:35:eb:01:14:55:53:40:51:6c:
39:af:e8:c7:64:5c:6c:39:e8:5c:ce:08:4f:a3:f0:c6:88:f2:
2e:83:20:94:6b:f2:2c:e5:df:29:80:bd:47:57:99:c7:a9:bf:
69:d9:70:e8:55:d5:45:ed:90:79:98:9a:93:b1:fc:23:3e:dc:
83:f2:6e:f3:d4:88:0c:43:14:c3:a7:ef:6a:36:af:33:75:9f:
e0:6c:47:b6:d0:03:bf:a6:94:02:c4:35:91:32:b4:d7:5e:33:
d9:7a:10:cf:0c:05:b1:99:51:fc:a3:e2:91:34:0d:60:11:dd:
f1:e1:3e:ac:9e:ee:ac:c7:7a:b2:3e:44:79:a6:1c:a1:3b:b5:
4c:ea:b5:2d:09:38:76:8a:61:33:1d:8c:17:35:d7:9f:89:53:
f3:88:ff:7c:b5:c3:8c:b0:4f:d7:99:84:52:6b:16:13:63:3e:
77:67:79:49:56:80:c5:e8:3f:ea:3e:a8:60:18:85:a5:f5:d9:
b9:04:6d:ea:a0:03:37:de:ea:35:83:8b:a6:89:79:f1:f5:38:
5b:36:6c:49:30:4b:df:37:ef:0f:a3:3a:89:26:75:27:cc:cc:
73:75:5d:1b:bb:0b:61:4d:d2:ae:f3:04:30:89:1b:3b:55:14:
c7:7d:cf:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:14 2024 by rpki-client on console-fra.rpki-client.org