Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Sch2GF6HUIZeQqthSOjb-gtwXbk.roa
File: Sch2GF6HUIZeQqthSOjb-gtwXbk.roa (raw, json)
Hash identifier: KWH9oef37400FJv6GGmXBUw2P3wfnreEnbgy7ZP8sSk=
Subject key identifier: 49:C8:76:18:5E:87:50:86:5E:42:AB:61:48:E8:DB:FA:0B:70:5D:B9
Certificate issuer: /CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Certificate serial: 018A8F93B6C84AB811316C7BF89FA6AFA913
Authority key identifier: 64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Sch2GF6HUIZeQqthSOjb-gtwXbk.roa
Signing time: Wed 13 Sep 2023 17:25:36 +0000
ROA not before: Wed 13 Sep 2023 17:25:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60539
IP address blocks: 91.190.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Dec 2023 08:13:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:8f:93:b6:c8:4a:b8:11:31:6c:7b:f8:9f:a6:af:a9:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=641975583b250362c8150f63adb30a0f6a0c6fc3
Validity
Not Before: Sep 13 17:25:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=49c876185e8750865e42ab6148e8dbfa0b705db9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:71:5d:24:83:95:33:78:ea:96:08:ff:b6:60:
0f:8b:71:bd:f0:59:d5:f6:82:4b:b0:9c:1d:b9:38:
9d:ce:72:22:e9:af:58:2b:89:a5:57:fb:83:aa:fc:
bb:1e:d2:fe:7c:f4:d6:68:cf:13:1d:b7:d7:b2:f3:
b4:51:f8:98:56:56:1b:b9:6e:b5:68:3d:ed:2a:92:
87:43:f9:ac:da:40:d0:ac:3f:4d:8c:14:8f:ef:a1:
2b:0d:5b:57:a9:2a:2f:e0:c8:3c:d7:25:3a:fb:c1:
c6:26:e9:07:c7:7e:58:b7:6f:de:36:86:d0:dd:38:
ad:ef:53:18:70:ad:75:47:98:7b:d9:c3:b3:04:2a:
3f:2b:2f:0f:98:1e:d7:81:ec:32:b9:e5:d6:d3:2c:
aa:01:39:5e:e8:fc:95:88:41:12:4d:97:07:84:29:
4a:68:77:09:5c:2b:fe:4e:97:6a:4c:51:78:64:1f:
d7:f1:06:0b:6e:fc:8f:da:57:39:28:56:03:d9:71:
0b:76:2d:34:46:1a:2b:12:5e:b0:8d:51:ee:c1:f4:
a8:4c:18:07:ec:11:7b:0c:5c:eb:ee:52:9e:df:ee:
15:7a:69:b9:d3:07:75:ea:23:45:a1:63:96:bb:22:
82:23:17:90:cb:98:96:84:8a:3d:cf:6a:10:26:67:
2b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:C8:76:18:5E:87:50:86:5E:42:AB:61:48:E8:DB:FA:0B:70:5D:B9
X509v3 Authority Key Identifier:
keyid:64:19:75:58:3B:25:03:62:C8:15:0F:63:AD:B3:0A:0F:6A:0C:6F:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/Sch2GF6HUIZeQqthSOjb-gtwXbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/98a5ed-905e-4bfa-9154-f1c33aa2fd50/1/ZBl1WDslA2LIFQ9jrbMKD2oMb8M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.190.190.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a2:57:14:51:30:66:d0:80:b0:d7:b1:f4:df:e0:af:4e:48:
87:24:08:84:bc:94:d0:e0:2f:e1:d5:f4:44:8b:17:62:a7:82:
f6:ea:aa:f8:86:b2:d5:e3:e0:57:1f:7c:b3:b4:04:c0:7a:5b:
aa:88:6a:cc:65:3d:cb:a8:fc:8f:a5:56:9b:de:63:71:41:5e:
65:68:29:55:f7:05:c1:cb:a2:3f:5e:a3:75:03:df:cf:31:0e:
60:cc:ac:38:5d:23:1d:34:a5:e9:34:47:fd:28:e1:83:02:e3:
a3:ea:e6:d2:c4:1a:31:bf:67:b6:c1:51:0f:a8:6c:52:51:7d:
b0:a1:75:80:3f:d9:f2:ac:02:5b:75:7d:8a:fd:38:24:49:ce:
b0:ad:1f:19:75:b8:35:93:26:f3:11:10:69:3c:3f:29:93:3d:
50:d9:8b:5c:77:a2:83:09:ee:2c:e4:e6:15:13:21:9a:a4:8e:
57:91:90:23:d9:ac:e2:23:b0:0f:0d:0e:dd:98:b7:48:86:58:
d4:b1:63:b2:3e:4e:26:3f:60:60:f5:9c:64:f8:c7:57:ba:8f:
1b:8a:11:2d:27:03:c9:1c:6a:48:7d:3c:96:17:91:8d:5e:2f:
50:b3:98:31:4b:44:4e:47:c6:ad:84:c1:02:51:d7:25:69:1c:
1e:b0:ea:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:21 2024 by rpki-client on console-fra.rpki-client.org