Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/uMuW1IrAjwJZWG-fqkc8_TtVoKo.roa
File: uMuW1IrAjwJZWG-fqkc8_TtVoKo.roa (raw, json)
Hash identifier: pyZjy14c95WF6wjdTxrQ2g0KYcel5CrjHduH4uxp6R8=
Subject key identifier: B8:CB:96:D4:8A:C0:8F:02:59:58:6F:9F:AA:47:3C:FD:3B:55:A0:AA
Certificate issuer: /CN=1e5b334965788794d6f147a2f004d13be3257dc4
Certificate serial: 0189741122BE565733E566AEDAA62E8B1A35
Authority key identifier: 1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/uMuW1IrAjwJZWG-fqkc8_TtVoKo.roa
Signing time: Thu 20 Jul 2023 16:10:27 +0000
ROA not before: Thu 20 Jul 2023 16:10:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 91.220.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:35:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:74:11:22:be:56:57:33:e5:66:ae:da:a6:2e:8b:1a:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e5b334965788794d6f147a2f004d13be3257dc4
Validity
Not Before: Jul 20 16:10:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b8cb96d48ac08f0259586f9faa473cfd3b55a0aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e2:c2:92:22:f3:7a:39:e2:c3:47:c2:d9:3a:
c7:0a:7f:3a:9a:bf:0e:89:90:03:49:44:67:3e:00:
ff:97:85:f0:20:45:44:c3:51:a7:64:f1:54:b6:58:
1e:8b:85:37:88:ef:5b:38:34:0e:be:36:d0:8c:45:
92:32:43:09:c4:0e:fe:5d:9f:ba:fe:2d:f7:62:62:
72:37:5e:88:69:d2:2f:36:4a:f0:11:f7:0c:96:81:
86:e2:53:22:4d:49:37:43:c2:27:bc:be:e7:44:83:
3c:c2:9e:98:4f:2f:b7:3e:e1:f4:5f:27:cb:22:6f:
46:e8:5f:2a:37:29:a0:ff:97:17:06:cb:b5:60:43:
81:e0:aa:53:90:01:f4:3c:78:57:81:e8:d7:0d:97:
4a:58:dd:60:82:32:03:ca:f8:0a:fe:62:3b:a5:86:
73:8c:dc:de:39:57:4e:71:f6:eb:62:27:70:8a:8e:
1f:d2:9e:98:0c:96:36:39:06:d5:0a:2a:5c:9b:f3:
e4:58:19:61:55:80:1a:9c:48:5c:4f:de:de:34:0f:
fe:22:49:b1:48:3f:ca:29:5f:10:ce:d5:c7:a2:f9:
a9:ee:8d:05:af:8a:00:da:fe:eb:08:e7:fa:ab:f5:
32:c7:f8:da:bd:31:1f:43:93:7c:79:7d:70:f7:a2:
e3:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:CB:96:D4:8A:C0:8F:02:59:58:6F:9F:AA:47:3C:FD:3B:55:A0:AA
X509v3 Authority Key Identifier:
keyid:1E:5B:33:49:65:78:87:94:D6:F1:47:A2:F0:04:D1:3B:E3:25:7D:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HlszSWV4h5TW8Uei8ATRO-MlfcQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/uMuW1IrAjwJZWG-fqkc8_TtVoKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9ba38a-4852-413d-9cd2-9990e2d9eafe/1/HlszSWV4h5TW8Uei8ATRO-MlfcQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.249.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:c1:10:f1:04:04:22:a0:9e:98:37:9b:5d:5e:24:24:33:81:
d5:b0:69:d5:7e:53:c8:c0:ac:43:af:cb:48:e3:fb:c3:43:78:
db:13:9e:e7:ce:a2:d1:8f:88:50:db:a1:a9:f3:92:2a:02:6b:
6c:4a:59:e8:cb:c6:69:40:b6:6b:67:06:c2:95:30:74:22:e2:
95:d2:24:f1:e5:65:d0:28:a9:b7:44:60:a2:37:4a:c8:ca:6f:
80:33:b6:a2:c9:8e:eb:75:0f:50:e7:c7:a1:03:41:27:f2:df:
b9:a1:f1:d4:33:bd:26:68:8d:96:80:86:de:e0:51:36:6c:85:
29:a1:0b:ae:d3:a8:4f:10:3e:ab:32:cb:9b:c1:bc:1f:1e:f5:
a2:e3:35:a0:10:c8:ae:55:a1:9b:b4:6c:8a:db:96:0a:09:b7:
56:f6:f5:9b:16:4f:51:6b:b5:ea:af:80:3f:46:a1:9c:f8:44:
a2:93:d0:93:a7:b2:df:04:92:7c:50:64:4a:60:93:48:60:70:
50:52:d1:8d:ea:db:68:ac:9f:2a:a1:cf:ab:de:21:34:4e:c3:
c9:f1:1a:a5:28:82:30:f8:73:32:80:95:42:72:a2:55:fc:aa:
52:9b:5b:8a:c3:61:0e:d0:10:76:f6:75:53:06:5d:b6:26:b9:
9a:9d:1b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org