Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/whVba6gadz5OGDrzooey1QIBxxk.roa
File: whVba6gadz5OGDrzooey1QIBxxk.roa (raw, json)
Hash identifier: Xp9YNxTgCkeZHRaOCAQlylPZiw1oQ0z+6Slr4YZfrVU=
Subject key identifier: C2:15:5B:6B:A8:1A:77:3E:4E:18:3A:F3:A2:87:B2:D5:02:01:C7:19
Certificate issuer: /CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Certificate serial: 0185728C6584CD9C337C7D79A3CEEF24D5DD
Authority key identifier: 70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/whVba6gadz5OGDrzooey1QIBxxk.roa
Signing time: Mon 02 Jan 2023 12:54:41 +0000
ROA not before: Mon 02 Jan 2023 12:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51915
IP address blocks: 91.220.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:65:84:cd:9c:33:7c:7d:79:a3:ce:ef:24:d5:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cf5e697c6094adb6bc97156b35e005fd4cf2e2
Validity
Not Before: Jan 2 12:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c2155b6ba81a773e4e183af3a287b2d50201c719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:8f:0c:01:30:40:d6:a3:8a:44:bd:af:d7:
ea:ce:c5:e0:99:5b:a4:c7:d8:ef:a6:0e:cd:84:e0:
13:44:9a:67:b7:af:bb:bf:bd:8c:bd:eb:88:91:f4:
2b:ac:6f:fc:75:53:01:e3:f8:38:a2:f2:b4:e6:84:
14:bf:79:bf:1c:c8:87:f2:f8:05:f6:f9:c1:ac:1b:
c3:07:51:31:20:80:f4:a1:b8:9e:6d:61:40:28:cc:
89:b6:bc:c6:22:b5:cc:25:2f:49:73:5e:14:da:f0:
83:50:5c:79:22:81:07:64:03:1c:a9:79:ee:35:9c:
93:62:68:8a:c5:30:17:96:c4:ee:a0:c1:a3:ab:31:
45:86:7d:ac:2a:ff:e4:cc:91:ac:db:16:ba:9f:b8:
37:94:03:5f:58:e3:9e:f5:74:3e:28:9c:01:48:bd:
08:94:06:98:fe:17:e7:b8:d9:89:7c:42:c6:d2:ce:
35:4b:d3:95:c9:99:ff:a0:ff:fe:51:a6:e1:80:0c:
df:6a:25:52:24:63:8a:2e:b8:b9:df:ba:15:c6:58:
b5:4f:b9:0c:3b:12:ac:f3:99:65:6b:cb:15:d2:7b:
ad:60:2a:53:7e:4b:76:27:36:4a:33:83:b2:b1:7d:
05:79:ea:ae:97:7e:97:e7:cb:17:34:e0:83:bf:a0:
6a:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:15:5B:6B:A8:1A:77:3E:4E:18:3A:F3:A2:87:B2:D5:02:01:C7:19
X509v3 Authority Key Identifier:
keyid:70:CF:5E:69:7C:60:94:AD:B6:BC:97:15:6B:35:E0:05:FD:4C:F2:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cM9eaXxglK22vJcVazXgBf1M8uI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/whVba6gadz5OGDrzooey1QIBxxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/4d5295-f8f2-4e05-add0-519795a22502/1/cM9eaXxglK22vJcVazXgBf1M8uI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.182.0/24
Signature Algorithm: sha256WithRSAEncryption
37:04:38:77:62:2e:d7:1c:61:76:06:27:ce:a8:5c:cf:55:97:
e8:30:4f:25:e4:9a:ce:14:d0:96:db:8a:80:2c:9e:5c:3f:8e:
30:e6:65:74:a7:f6:84:21:d5:d3:13:13:57:b2:cc:1f:50:e9:
6b:56:29:0c:62:af:00:98:27:10:27:1a:ab:a3:c4:47:c3:32:
8c:c2:1a:3e:91:80:30:da:14:8d:3a:ca:d1:4c:5f:3b:36:c9:
ea:d6:21:4d:cc:31:68:cd:bf:6e:16:ae:fe:fb:84:e8:11:e3:
31:6b:41:e4:c7:b6:d9:b5:1e:69:76:01:76:02:9b:d7:95:9a:
5d:40:3e:d3:2e:26:eb:49:ca:6a:bf:4b:40:79:ca:31:c6:34:
c2:58:82:3d:e4:d8:2e:0b:6c:dc:c7:1f:e4:be:ca:b6:85:61:
4f:5d:7b:94:4f:a1:5b:70:33:8a:cf:4c:9d:cf:73:ab:36:69:
7b:1a:28:99:6d:38:be:4c:f6:4a:16:7d:5b:21:77:f6:9d:ba:
f8:09:3a:00:eb:35:64:d8:96:70:e2:84:4e:eb:29:81:05:6e:
4e:e1:05:b4:bc:df:dd:60:d2:6c:38:fc:08:2d:21:06:8d:f9:
47:34:1f:0e:1a:fe:78:45:e9:f5:69:89:7d:a8:6e:62:dd:9a:
bc:fe:e2:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:31 2024 by rpki-client on console-fra.rpki-client.org