Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/e212d6-b81b-4e8a-8e05-f986551a707d/1/5xVuygBdWV_QXu3LzB6NUurTtG4.roa
File: 5xVuygBdWV_QXu3LzB6NUurTtG4.roa (raw, json)
Hash identifier: aHbuHHfaXaUKelc9Xtw4NogTobvVGX62OHHmPtWfT6o=
Subject key identifier: E7:15:6E:CA:00:5D:59:5F:D0:5E:ED:CB:CC:1E:8D:52:EA:D3:B4:6E
Certificate issuer: /CN=8923d70224b7bd3c2a7ce7dc7a87c92ad5aff269
Certificate serial: 01856C010C22401503D625C62DB8C52440E7
Authority key identifier: 89:23:D7:02:24:B7:BD:3C:2A:7C:E7:DC:7A:87:C9:2A:D5:AF:F2:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iSPXAiS3vTwqfOfceofJKtWv8mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/e212d6-b81b-4e8a-8e05-f986551a707d/1/5xVuygBdWV_QXu3LzB6NUurTtG4.roa
Signing time: Sun 01 Jan 2023 06:24:45 +0000
ROA not before: Sun 01 Jan 2023 06:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47800
IP address blocks: 91.208.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 02 Sep 2023 18:04:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:01:0c:22:40:15:03:d6:25:c6:2d:b8:c5:24:40:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8923d70224b7bd3c2a7ce7dc7a87c92ad5aff269
Validity
Not Before: Jan 1 06:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e7156eca005d595fd05eedcbcc1e8d52ead3b46e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:74:ef:6e:f4:f8:cf:5b:ba:15:d5:e9:6b:7c:
5e:40:5c:25:07:c5:f5:36:74:db:0b:b9:9a:2e:d2:
dd:6f:28:60:6b:d2:24:aa:5a:9b:f3:f1:64:f0:f0:
47:69:9a:70:9d:a8:5a:5c:fd:65:d3:3d:72:50:92:
0c:95:18:95:f3:05:3e:6a:55:12:14:10:09:a9:01:
83:16:dd:dc:b3:c6:15:6b:c5:f8:07:f8:2f:45:b0:
96:07:32:93:4f:db:cc:ff:51:af:e9:64:27:8a:b6:
27:5d:9c:96:84:6b:48:a4:f4:ae:72:73:37:41:15:
c4:75:2f:9d:98:d5:3f:7e:ad:bc:d3:1f:e3:1e:22:
d7:bc:f3:07:4c:e3:62:56:61:1d:3c:5b:38:23:a3:
45:5c:22:a2:eb:6b:e1:8e:f4:00:15:33:25:4a:7f:
59:da:3c:bf:d0:6b:69:32:c1:0c:a3:16:ab:71:b3:
78:bb:35:c8:aa:ba:26:02:c0:10:9f:db:38:e5:71:
c4:69:bd:02:9c:a5:26:f6:72:11:bb:2a:3c:cd:f0:
f4:8a:4d:20:21:59:e5:ce:f2:58:60:2f:c2:9e:32:
04:dd:bc:6a:db:7c:64:af:a5:c0:b2:83:5d:00:06:
2e:81:c5:37:33:77:01:14:23:0a:04:aa:2a:ff:6d:
72:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:15:6E:CA:00:5D:59:5F:D0:5E:ED:CB:CC:1E:8D:52:EA:D3:B4:6E
X509v3 Authority Key Identifier:
keyid:89:23:D7:02:24:B7:BD:3C:2A:7C:E7:DC:7A:87:C9:2A:D5:AF:F2:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iSPXAiS3vTwqfOfceofJKtWv8mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/e212d6-b81b-4e8a-8e05-f986551a707d/1/5xVuygBdWV_QXu3LzB6NUurTtG4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/e212d6-b81b-4e8a-8e05-f986551a707d/1/iSPXAiS3vTwqfOfceofJKtWv8mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.116.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:f0:5b:79:97:4d:e2:84:5b:d6:1e:32:f3:39:35:d5:e1:05:
de:42:b5:f9:1d:53:92:79:d3:3d:cc:e4:59:eb:14:fa:14:43:
bc:cf:58:16:7d:1c:9f:e2:b7:8b:4e:6e:06:86:53:dd:f2:d1:
94:21:e6:59:02:b9:4d:17:86:75:11:94:be:e2:fc:06:9a:13:
8a:5f:fe:e7:f7:c6:0c:c8:f5:81:f3:83:ac:82:57:d1:ee:b2:
5f:87:85:81:dc:71:3f:da:63:ff:92:ec:38:14:b0:3b:42:a6:
be:5d:8f:02:4a:09:1e:e5:4a:8e:59:49:bf:cf:b1:7f:d1:84:
53:77:dd:ef:88:ff:c3:53:b3:32:13:bf:1e:df:29:0a:22:7b:
e2:c7:06:05:f1:ba:46:75:77:d4:f6:81:5d:db:26:d2:e5:72:
32:52:f3:20:46:33:35:43:00:f3:6b:1b:57:7e:a4:99:1e:f8:
73:96:39:47:05:d1:31:33:ca:8a:9d:61:a5:e2:8d:b8:fd:96:
85:f6:46:33:85:83:1b:ce:0b:54:80:97:36:98:2c:15:66:db:
f9:56:21:73:10:e8:cb:b6:79:5c:59:43:ab:a9:a9:a6:e1:de:
0b:56:df:fd:b5:ea:85:9e:52:62:66:6b:36:f6:b6:c5:e3:d5:
80:5a:f0:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:04 2024 by rpki-client on console-ams.rpki-client.org