Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/dAJHie6i2Cbkt3jHfAVFFx2lqLI.roa
File: dAJHie6i2Cbkt3jHfAVFFx2lqLI.roa (raw, json)
Hash identifier: 5hBysZks8hfgurHTnpvtGE2KB+C6gVPiQe35ldNCDpY=
Subject key identifier: 74:02:47:89:EE:A2:D8:26:E4:B7:78:C7:7C:05:45:17:1D:A5:A8:B2
Certificate issuer: /CN=7e04619ab0f1209b70f10598c69944bf34dbf232
Certificate serial: 01857002748BF3B6238EB3661818EA8F972D
Authority key identifier: 7E:04:61:9A:B0:F1:20:9B:70:F1:05:98:C6:99:44:BF:34:DB:F2:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fgRhmrDxIJtw8QWYxplEvzTb8jI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/dAJHie6i2Cbkt3jHfAVFFx2lqLI.roa
Signing time: Mon 02 Jan 2023 01:04:47 +0000
ROA not before: Mon 02 Jan 2023 01:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44395
IP address blocks: 91.210.40.0/22 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:02:74:8b:f3:b6:23:8e:b3:66:18:18:ea:8f:97:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e04619ab0f1209b70f10598c69944bf34dbf232
Validity
Not Before: Jan 2 01:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74024789eea2d826e4b778c77c0545171da5a8b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f8:a1:01:be:9c:03:8c:58:2e:c9:58:53:ff:
42:f3:85:25:d7:a9:92:a8:b2:21:9e:ad:09:3b:82:
07:ca:08:4e:c6:59:c2:23:c4:d1:c6:d0:e3:95:f4:
ef:7d:32:12:11:57:0e:98:46:b4:d3:70:b1:0b:60:
17:d3:95:26:67:9a:a4:b4:c5:3f:5b:4d:8c:c9:bc:
3d:6e:f7:e9:62:c9:33:01:f4:f9:d5:b9:de:eb:bb:
69:72:50:58:2e:80:3a:b8:3c:cc:e1:95:da:2b:e3:
6a:77:4b:d9:aa:12:e5:56:07:a9:04:b0:b8:e8:08:
00:65:a2:37:29:d0:5b:7f:92:b6:a8:2f:e2:f6:55:
85:60:26:c4:67:8e:9b:c9:dc:b1:02:13:e0:c6:43:
f5:aa:fc:41:5c:90:3a:65:da:21:2d:e8:21:d3:e5:
a4:dc:58:c5:45:10:4b:63:b8:87:cf:df:0c:c6:ef:
b8:68:6a:c7:5c:86:3e:cb:1c:a6:e2:a2:af:49:b0:
6d:5b:de:76:9e:6b:3e:b5:77:09:6f:dc:0b:e0:31:
81:3b:ea:9f:ad:d3:df:25:30:19:b0:f4:6c:2c:b6:
f5:30:d7:39:00:1a:85:fa:d5:24:1f:b8:39:3b:24:
2a:ad:d0:37:76:02:01:a9:0e:e1:a5:c3:81:1b:fe:
ca:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:02:47:89:EE:A2:D8:26:E4:B7:78:C7:7C:05:45:17:1D:A5:A8:B2
X509v3 Authority Key Identifier:
keyid:7E:04:61:9A:B0:F1:20:9B:70:F1:05:98:C6:99:44:BF:34:DB:F2:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fgRhmrDxIJtw8QWYxplEvzTb8jI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/dAJHie6i2Cbkt3jHfAVFFx2lqLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/453efc-f193-427b-a498-17903a302ec0/1/fgRhmrDxIJtw8QWYxplEvzTb8jI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.40.0/22
Signature Algorithm: sha256WithRSAEncryption
88:6f:0f:8e:74:e6:5c:76:28:90:2d:17:0c:30:b1:db:4a:66:
0c:c8:a2:d9:c8:8d:aa:9d:fc:60:5c:ac:dc:22:24:03:0a:fd:
cc:96:88:27:fb:d1:70:26:6a:aa:ee:ca:37:2d:7d:64:ae:bb:
b0:dc:26:44:8a:07:fc:cb:09:da:65:90:bb:f1:7c:bd:9a:6a:
dd:3c:04:2b:3f:70:91:fa:f2:be:40:f3:da:40:c3:a2:c4:43:
f5:86:47:e6:26:7f:d3:cd:7f:cf:fe:e2:14:a8:4f:c6:1a:9f:
8d:21:fb:61:79:f3:a8:67:2c:e6:3b:e1:e6:2d:a5:cc:7f:b1:
b8:55:91:9f:8d:bc:30:06:9e:a8:af:8f:10:26:9b:54:8c:5b:
36:aa:5f:1f:b1:dd:d2:d4:49:40:0c:ea:5e:bc:ee:54:0b:b4:
1b:d4:30:b5:c4:d5:47:01:8f:5c:ec:b9:73:0c:9b:ca:70:b7:
01:3f:e0:6b:94:1e:4a:da:cb:c3:3f:31:c8:19:19:55:42:28:
7f:8b:29:45:4e:8a:ce:c5:ff:5c:57:16:7f:9c:16:a6:cf:b7:
cf:79:82:74:b9:b4:82:b1:6e:d7:29:52:3b:1c:7c:15:c0:c1:
f8:9d:63:79:29:a2:e0:2c:93:e4:c8:cf:c7:a4:06:25:4c:a2:
e3:53:dc:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:00 2024 by rpki-client on console-fra.rpki-client.org