Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/rPArnvOPNQRcHklDjeCBXAaBHjo.roa
File: rPArnvOPNQRcHklDjeCBXAaBHjo.roa (raw, json)
Hash identifier: srpxMRG0IviEc8nDlHWywQD8pLbPyX9OipL24TNolXI=
Subject key identifier: AC:F0:2B:9E:F3:8F:35:04:5C:1E:49:43:8D:E0:81:5C:06:81:1E:3A
Certificate issuer: /CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Certificate serial: 01872378EEA9615B29A020BD5791E4D3E728
Authority key identifier: 0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/rPArnvOPNQRcHklDjeCBXAaBHjo.roa
Signing time: Mon 27 Mar 2023 14:29:00 +0000
ROA not before: Mon 27 Mar 2023 14:29:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199062
IP address blocks: 91.103.58.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:23:78:ee:a9:61:5b:29:a0:20:bd:57:91:e4:d3:e7:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e75fb4f52a829d136e29a9a025c636d19ae328e
Validity
Not Before: Mar 27 14:29:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acf02b9ef38f35045c1e49438de0815c06811e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:45:19:e9:2a:05:f1:5a:50:9c:d6:84:94:7d:
83:5f:f7:c5:d6:e1:70:c4:a7:d0:7c:11:66:d3:ea:
f2:97:86:d5:53:97:c0:88:27:c7:c5:e2:95:91:11:
c4:24:35:d1:7a:7d:59:d9:ef:0e:ed:65:f0:74:39:
d6:d1:ae:bd:da:06:6b:c8:d2:52:ac:77:23:22:b4:
6d:db:b7:d3:7b:81:5a:19:a9:53:89:13:9e:99:c5:
a3:eb:ee:d4:ac:e2:05:8e:39:44:80:13:17:e8:3d:
6c:fd:77:79:dc:1d:a7:80:dd:aa:7e:88:1a:b6:03:
d6:7f:4a:6d:f9:bd:7b:44:ea:71:1a:ae:91:e9:b9:
2f:c7:c4:b3:93:6b:5e:f2:b4:78:6b:b4:8f:83:b2:
b2:80:28:4c:09:e9:17:73:c4:15:89:a4:ba:ce:ba:
95:fd:dd:43:97:14:ed:b8:f0:88:7c:95:76:45:08:
f0:f9:0b:51:3c:75:db:f5:0c:a9:3a:75:f6:1a:1d:
6a:ad:46:74:54:10:3d:c2:23:7c:d1:b4:0e:4e:a8:
ee:12:49:cd:7d:a3:3c:7b:b1:1d:38:f7:57:17:a7:
cb:e1:4e:f8:4e:3d:b5:8a:ac:ce:0f:e2:16:5e:39:
4a:88:fa:1a:a6:55:fc:7f:ec:e8:f2:e0:26:68:1f:
3e:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F0:2B:9E:F3:8F:35:04:5C:1E:49:43:8D:E0:81:5C:06:81:1E:3A
X509v3 Authority Key Identifier:
keyid:0E:75:FB:4F:52:A8:29:D1:36:E2:9A:9A:02:5C:63:6D:19:AE:32:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DnX7T1KoKdE24pqaAlxjbRmuMo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/rPArnvOPNQRcHklDjeCBXAaBHjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/5759f6-93e2-4029-a49f-35ba267ded3b/1/DnX7T1KoKdE24pqaAlxjbRmuMo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.103.58.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:23:0b:d7:38:01:b5:77:a2:10:e0:7d:ee:fe:28:50:77:79:
ad:52:f1:19:f5:da:69:ce:82:24:e4:0a:2f:32:84:98:c3:31:
d6:8f:9f:98:56:c5:06:8b:51:3a:a1:ae:3c:64:8c:75:a1:32:
5a:f5:ef:99:f4:8c:07:64:fa:88:b3:af:57:a0:8f:fd:e3:03:
f5:b4:04:4b:d1:34:3f:51:68:11:c8:59:42:5b:1d:b2:07:ff:
51:a5:35:dc:d1:ff:40:06:1d:89:1a:87:90:5f:14:61:e0:16:
21:68:fe:d4:df:59:f0:6c:ab:5f:f1:75:b8:7b:4c:f7:75:a9:
4b:d2:3c:f6:26:0c:d4:6d:77:c0:a0:bb:a7:2c:13:5b:2c:a8:
75:42:92:1f:63:60:07:66:70:c4:24:ee:62:20:b1:56:00:d7:
05:45:e9:a6:78:f2:a4:85:93:21:f5:31:b0:b9:0d:4c:e6:02:
f5:59:11:c2:81:85:c8:de:6b:52:6a:27:88:c5:bd:9c:09:ab:
ff:ee:19:68:7e:cb:57:fd:f0:1c:c6:72:de:6b:4f:36:26:ea:
ff:24:99:1a:1e:bd:8c:e8:ed:9b:49:30:2a:c5:f1:cd:33:5a:
7a:70:38:2b:6c:46:93:5c:98:66:2f:1a:0c:d9:d3:8c:94:c2:
51:c9:bd:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:45 2024 by rpki-client on console-ams.rpki-client.org