Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/qQGo25hLHVsZo2S_9PYXO2btF6c.roa
File: qQGo25hLHVsZo2S_9PYXO2btF6c.roa (raw, json)
Hash identifier: 2msKsARav67TwxrGllv3IY6IfI1zEUQXC/2fVQ5MXrM=
Subject key identifier: A9:01:A8:DB:98:4B:1D:5B:19:A3:64:BF:F4:F6:17:3B:66:ED:17:A7
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 018F300DE5ED109DA3B3D20591B351D02DE2
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/qQGo25hLHVsZo2S_9PYXO2btF6c.roa
Signing time: Tue 30 Apr 2024 17:29:28 +0000
ROA not before: Tue 30 Apr 2024 17:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214998
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 May 2024 12:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:30:0d:e5:ed:10:9d:a3:b3:d2:05:91:b3:51:d0:2d:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Apr 30 17:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a901a8db984b1d5b19a364bff4f6173b66ed17a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:4f:97:92:92:7f:b1:5a:64:02:b8:56:59:ac:
dd:70:c2:90:ec:7b:1a:48:86:07:58:74:29:78:94:
00:dc:b1:6f:20:b2:75:86:e4:98:6e:46:c1:de:ff:
c9:95:9d:0c:b3:99:97:75:d4:d1:81:4b:27:55:c3:
aa:37:51:83:df:a1:c2:08:b4:4d:66:78:54:22:df:
2d:f2:32:81:94:69:3f:9b:07:e8:29:8d:09:5f:e0:
8e:00:55:57:b4:e1:4f:b9:43:94:a1:54:45:0e:0c:
a4:b6:f1:f1:62:8e:32:46:dd:d8:c0:ba:0d:90:71:
73:f0:9a:93:a0:f6:37:2e:54:0b:8d:82:12:3a:9a:
c8:b4:e0:f3:ae:27:da:fe:e6:5c:58:3d:d8:d3:1d:
e8:f9:d2:42:9f:b9:d5:48:46:d0:ff:84:05:52:d2:
c8:9a:e7:01:d6:27:9f:ae:4a:2a:10:ab:d9:47:08:
1a:ba:ac:c4:14:df:8e:3c:15:2f:1b:5f:94:3e:bf:
36:d6:5e:e5:bb:d5:02:2f:07:d1:f6:82:c3:94:ed:
b3:52:51:cf:73:71:41:23:20:01:e2:a0:e3:75:f1:
e7:52:e0:be:c7:58:fa:63:6d:6b:5d:1e:1c:4d:7a:
e5:92:4f:9a:11:d9:ef:5b:d1:0a:36:d0:3f:c9:2b:
f2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:01:A8:DB:98:4B:1D:5B:19:A3:64:BF:F4:F6:17:3B:66:ED:17:A7
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/qQGo25hLHVsZo2S_9PYXO2btF6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
15:50:fa:f4:10:1e:09:40:de:9d:1a:f7:2b:f3:fb:bb:b4:a3:
bc:69:97:e0:88:8a:c4:8b:96:57:72:92:e7:85:fb:fa:a1:f8:
03:a2:62:1b:ab:d0:63:06:ad:7a:28:d8:36:c1:f4:a2:96:72:
9e:cb:70:a0:88:9f:b8:1f:97:ca:62:56:07:fd:b3:7b:04:34:
75:dd:a6:a7:27:7c:51:58:d8:1c:9e:d6:b9:a0:03:83:20:34:
33:f3:17:46:f9:35:03:e5:4d:fe:12:5f:2f:6e:31:f8:2e:39:
75:d1:2b:9c:ec:cd:0c:c9:75:a4:c3:44:76:73:21:10:ec:3b:
65:02:43:11:26:3a:ec:bb:dc:7e:12:c2:8b:be:11:57:25:5b:
40:eb:3d:a6:d6:10:ac:97:00:d9:93:bf:df:2c:fe:28:cd:b3:
7b:50:02:a7:b7:51:8c:10:50:2f:cf:ba:9a:42:33:73:88:25:
17:f2:94:94:86:c8:87:87:50:9e:60:ae:f5:a9:f4:b5:7d:d5:
33:02:ad:1d:55:64:3d:fc:74:8e:91:ea:f7:e0:1a:46:ac:aa:
ad:10:d8:fd:dc:fd:98:6c:14:66:40:cd:c4:fc:91:62:84:5b:
6f:c2:26:28:2a:fe:67:08:d4:10:53:bf:0d:da:cf:6c:bb:63:
6f:e2:e0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:00 2024 by rpki-client on console-fra.rpki-client.org