Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/Xst8GGi9QF4lAlcxo3ymYujpK3A.roa
File: Xst8GGi9QF4lAlcxo3ymYujpK3A.roa (raw, json)
Hash identifier: dzwTRZsvGeuZmq4KgggVuMNiaZDvtDEmfdtivEfvgDc=
Subject key identifier: 5E:CB:7C:18:68:BD:40:5E:25:02:57:31:A3:7C:A6:62:E8:E9:2B:70
Certificate issuer: /CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Certificate serial: 018BB9AA25E4EBD73739A6063E30A2853E4B
Authority key identifier: AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/Xst8GGi9QF4lAlcxo3ymYujpK3A.roa
Signing time: Fri 10 Nov 2023 14:36:57 +0000
ROA not before: Fri 10 Nov 2023 14:36:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47721
IP address blocks: 91.247.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:b9:aa:25:e4:eb:d7:37:39:a6:06:3e:30:a2:85:3e:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aace6725a0a0ddd1680480a83785d2cd57bf6ab0
Validity
Not Before: Nov 10 14:36:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ecb7c1868bd405e25025731a37ca662e8e92b70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:50:20:d9:4b:87:65:8c:15:eb:65:bb:70:65:
a9:04:0f:41:95:3d:c7:69:62:77:aa:28:72:28:22:
86:33:0a:68:76:a3:6b:f9:f9:5f:ee:45:95:73:d0:
75:1a:ce:a1:1c:3e:6d:77:86:c8:ca:b9:81:6c:41:
15:a5:79:37:ed:27:82:9d:59:87:ff:86:1c:90:6c:
e3:a5:ee:01:d3:69:a9:a7:25:75:4c:05:09:73:90:
5c:25:38:14:09:f6:52:5b:18:bf:59:e8:94:7b:cb:
a1:ed:e2:a9:0a:3b:70:59:94:f0:d1:ab:e1:ea:6d:
49:fb:aa:76:0b:5a:af:2f:cb:94:9d:0e:b6:4e:52:
47:86:a4:4c:0a:2e:8c:25:5a:75:2e:b4:61:71:b5:
ea:86:4a:5d:1e:d4:dc:4f:14:4c:e8:75:7b:b3:72:
7c:c0:45:ed:24:37:36:0d:06:7f:a1:66:9a:66:f5:
88:dc:4e:41:03:75:12:37:d7:3e:8a:22:c3:81:60:
0f:4c:b8:ce:1d:c4:0f:54:ed:7b:fa:f6:dc:7d:91:
4b:fe:37:6a:5a:a5:a2:c1:e8:cb:c6:62:cc:f6:a1:
a8:c8:44:06:3e:6e:1d:de:35:5b:cc:93:3d:e5:29:
5b:6b:6f:1b:77:ea:c9:93:4a:10:24:e1:36:97:73:
62:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:CB:7C:18:68:BD:40:5E:25:02:57:31:A3:7C:A6:62:E8:E9:2B:70
X509v3 Authority Key Identifier:
keyid:AA:CE:67:25:A0:A0:DD:D1:68:04:80:A8:37:85:D2:CD:57:BF:6A:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qs5nJaCg3dFoBICoN4XSzVe_arA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/Xst8GGi9QF4lAlcxo3ymYujpK3A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8112ff-b216-406f-8f59-72a082cdb182/1/qs5nJaCg3dFoBICoN4XSzVe_arA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.247.164.0/24
Signature Algorithm: sha256WithRSAEncryption
34:3a:01:1b:e6:af:c5:2a:ea:a7:ae:d1:96:97:70:b9:a1:ec:
0c:51:be:f1:ac:9a:9f:00:04:c1:5d:4e:b2:e8:bf:22:0b:b9:
3c:95:96:7b:2c:78:36:d8:40:2b:68:82:00:24:e2:ca:08:46:
f7:ad:fd:a4:a2:c9:47:ef:45:db:a2:92:ac:a8:72:6e:dd:5d:
6d:b3:8f:9e:30:97:be:7a:9c:41:42:56:a9:4d:c0:a0:76:bf:
6b:31:bb:23:ea:14:ec:fd:1f:5b:f2:b8:e7:35:be:13:e6:23:
d9:fb:aa:31:1a:d0:ce:9d:36:41:70:8d:b9:d6:8f:3b:e7:4c:
22:9d:3a:c3:bb:fd:6c:74:1e:06:0a:4f:27:f7:fe:64:7d:6d:
0a:43:28:04:30:47:e5:25:8c:2b:90:77:f7:be:08:72:73:5e:
94:76:6d:1d:74:b4:97:39:40:3a:13:fc:f6:78:e0:f4:4b:3a:
06:a8:8d:10:92:a2:05:4f:7c:50:4b:31:a9:6a:d1:25:d2:d8:
d4:19:00:cd:63:21:a7:1e:f3:07:b7:39:e6:f9:a7:3b:3f:02:
4e:e0:74:d4:53:dd:6d:c2:a6:b1:5e:27:30:16:56:fe:79:e6:
da:c5:df:3b:2f:a2:3c:33:21:67:d4:66:49:2f:fc:e2:2f:96:
ca:68:a4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org