Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/lsDoDg0dXUtmpGMeFjuRmsf_etE.roa
File: lsDoDg0dXUtmpGMeFjuRmsf_etE.roa (raw, json)
Hash identifier: 8JxaSA0GaGaFcqoTtgF1JKqIJFCXCWb3BlvWymUy+UI=
Subject key identifier: 96:C0:E8:0E:0D:1D:5D:4B:66:A4:63:1E:16:3B:91:9A:C7:FF:7A:D1
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018A045A0DFBC6492F05D13E5D7F429FF2F9
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/lsDoDg0dXUtmpGMeFjuRmsf_etE.roa
Signing time: Thu 17 Aug 2023 16:35:25 +0000
ROA not before: Thu 17 Aug 2023 16:35:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399073
IP address blocks: 91.186.208.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Aug 2023 14:25:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:04:5a:0d:fb:c6:49:2f:05:d1:3e:5d:7f:42:9f:f2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 17 16:35:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=96c0e80e0d1d5d4b66a4631e163b919ac7ff7ad1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:20:ee:cc:4d:71:7a:f2:1f:74:c3:8a:e4:a9:
3f:a6:c3:69:a8:b2:a6:bc:16:8c:bd:ad:95:e5:e4:
50:11:aa:71:2f:c7:59:3f:0c:6f:fa:a7:3b:99:f2:
21:e6:3c:8d:30:40:44:2e:5b:b6:b7:2b:6f:cc:22:
5e:b3:e3:96:90:b9:a2:cf:5c:0d:89:90:f0:b3:02:
4d:61:21:24:14:92:8c:1d:d9:1a:1c:1f:fc:6e:7e:
fa:32:65:fa:03:9e:6c:9f:21:e3:29:39:bc:de:26:
ad:05:57:e2:1e:16:dd:2f:bb:ec:ba:48:aa:0a:2d:
db:1e:ba:b5:7d:b4:c2:c9:b0:19:36:0c:85:96:dd:
9f:87:21:7d:03:3d:e4:fd:e1:12:d3:9d:8b:94:9a:
de:4f:c0:5c:d9:2f:8c:c7:65:b7:f6:dd:7a:03:86:
ec:98:08:b4:c7:21:b5:d8:45:4f:a2:e2:01:fc:b5:
94:05:77:aa:70:ec:8f:72:7f:b9:2a:06:ba:df:2c:
45:3d:7e:1f:99:27:68:b4:87:ed:52:c4:93:e0:8a:
9a:ec:eb:0e:59:c1:29:88:e7:11:30:87:20:72:ba:
a0:d7:38:c0:43:83:c0:b0:55:d6:b2:d7:d4:83:e8:
53:f4:b8:57:f1:39:37:4c:bd:8c:d3:fb:81:cb:04:
cc:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:C0:E8:0E:0D:1D:5D:4B:66:A4:63:1E:16:3B:91:9A:C7:FF:7A:D1
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/lsDoDg0dXUtmpGMeFjuRmsf_etE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.208.0/22
Signature Algorithm: sha256WithRSAEncryption
17:9f:f3:e2:a5:51:51:b1:ae:ec:0a:ca:cd:f3:8d:1c:6a:8a:
a2:26:88:0c:db:ca:32:fc:76:82:bd:13:49:54:2c:ef:0a:84:
36:20:f0:15:0a:de:97:a0:4e:3f:6a:01:28:bd:cb:29:ea:21:
fb:5a:fb:14:19:b9:d1:93:26:47:25:8c:86:fa:dc:c7:90:d7:
81:2c:a9:17:ef:84:66:0b:45:94:96:aa:17:47:4a:61:ed:d1:
70:06:e4:41:6d:5e:65:10:9c:93:fd:9c:68:b1:e3:e2:53:68:
72:01:37:7d:0d:d7:bc:a2:d7:7b:10:1d:40:89:e4:32:de:f9:
36:36:ff:a0:57:9b:52:a2:bb:87:9e:31:39:ef:bc:ca:c1:79:
d1:bb:17:5b:f5:79:38:1a:a9:1a:9d:a4:29:ef:d6:38:7b:3d:
b3:82:b9:fa:15:e4:b8:45:bd:79:d3:f0:0c:db:f7:e3:5c:32:
77:c6:4b:83:9a:a9:6e:68:2d:49:1b:20:c1:4b:39:5b:ea:69:
0a:6c:c9:53:e5:86:75:8c:12:c4:a0:d7:2a:1a:81:5c:de:3c:
b4:18:ed:fa:e6:5b:2a:09:49:2d:17:c2:b9:a5:71:2d:7a:eb:
90:0b:33:1d:03:6a:e4:ce:a5:4e:75:df:2e:29:56:18:91:7b:
0b:32:26:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:19 2024 by rpki-client on console-ams.rpki-client.org