Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/b8d2a8-53a9-42c0-b7c9-dd862774a092/1/XcytNGQOJ5dfaJbmev2dzaWJrWU.roa
File: XcytNGQOJ5dfaJbmev2dzaWJrWU.roa (raw, json)
Hash identifier: M14HznsyNr7WGlkbhWXDaMKhKTbqdLifEDswynZl2pI=
Subject key identifier: 5D:CC:AD:34:64:0E:27:97:5F:68:96:E6:7A:FD:9D:CD:A5:89:AD:65
Certificate issuer: /CN=571cb51cba68eb7ef9867a75d17ab28018196aa1
Certificate serial: 01856E81F3BA5A15260DCB3C1BD6304FCBF5
Authority key identifier: 57:1C:B5:1C:BA:68:EB:7E:F9:86:7A:75:D1:7A:B2:80:18:19:6A:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vxy1HLpo6375hnp10XqygBgZaqE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/b8d2a8-53a9-42c0-b7c9-dd862774a092/1/XcytNGQOJ5dfaJbmev2dzaWJrWU.roa
Signing time: Sun 01 Jan 2023 18:04:48 +0000
ROA not before: Sun 01 Jan 2023 18:04:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57844
IP address blocks: 91.210.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:81:f3:ba:5a:15:26:0d:cb:3c:1b:d6:30:4f:cb:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=571cb51cba68eb7ef9867a75d17ab28018196aa1
Validity
Not Before: Jan 1 18:04:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dccad34640e27975f6896e67afd9dcda589ad65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:e5:d4:c7:36:06:9e:1e:f6:f6:75:28:34:a0:
ff:56:1a:bd:57:7f:72:67:ac:19:e3:ca:14:c3:f5:
28:f0:e8:71:fa:cf:c6:02:ea:8d:35:57:58:0f:70:
22:f6:d5:7b:85:84:e2:02:66:94:67:04:5a:1a:e5:
ba:74:57:4e:09:64:4c:77:d7:18:d0:b9:97:a6:73:
a7:cb:56:61:4a:a7:be:71:9d:e7:fa:b8:e9:49:9a:
1e:46:94:c8:a3:66:43:41:cc:26:2d:35:e9:31:a2:
36:ed:0f:1d:c0:49:f7:e8:d0:ba:11:ce:d7:1b:d0:
e8:af:a7:e7:3b:8d:1a:71:24:dd:27:71:c2:1d:2f:
85:d0:84:be:dd:88:d1:70:1a:05:57:d0:68:4c:a0:
09:4e:8a:97:92:0b:51:9a:09:e5:7b:8c:18:30:c5:
24:8b:4f:22:07:2b:d9:d7:40:93:f1:26:07:63:0d:
0f:8c:64:5e:d8:fc:37:1e:51:64:eb:cd:11:22:f6:
00:c5:43:77:58:63:d5:af:eb:f8:f3:4b:82:90:42:
30:2f:57:3c:d3:5f:5a:48:55:82:39:28:d2:17:60:
98:8f:86:8b:d8:90:28:1f:d9:b0:0e:21:fd:61:f6:
fa:e7:c9:02:dc:03:5d:d5:6f:7e:dd:76:88:f3:f9:
00:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:CC:AD:34:64:0E:27:97:5F:68:96:E6:7A:FD:9D:CD:A5:89:AD:65
X509v3 Authority Key Identifier:
keyid:57:1C:B5:1C:BA:68:EB:7E:F9:86:7A:75:D1:7A:B2:80:18:19:6A:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vxy1HLpo6375hnp10XqygBgZaqE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b8d2a8-53a9-42c0-b7c9-dd862774a092/1/XcytNGQOJ5dfaJbmev2dzaWJrWU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/b8d2a8-53a9-42c0-b7c9-dd862774a092/1/Vxy1HLpo6375hnp10XqygBgZaqE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.120.0/22
Signature Algorithm: sha256WithRSAEncryption
50:db:21:b6:03:76:68:76:76:67:2e:1b:65:4a:da:81:ce:2f:
94:dc:15:3d:cd:a1:7c:e6:65:15:4c:0c:32:1d:bf:3b:00:f1:
58:a6:53:e2:96:ad:4c:a0:7a:9e:40:39:b5:7a:5b:a6:e8:3e:
fc:1c:d7:f7:ab:63:e0:0d:67:a5:c1:a5:a1:3f:39:0c:30:74:
50:10:c8:8b:4a:8f:79:5f:db:79:e8:b7:49:fb:eb:bf:20:43:
a2:51:ac:19:15:88:1c:ef:ef:47:0f:f3:3e:26:53:9d:88:dd:
73:e7:a4:36:33:51:1c:2d:16:31:64:1e:d9:82:37:9d:8b:db:
bb:aa:82:02:f8:4c:93:76:ca:e5:7b:b9:60:f3:23:f5:37:53:
46:7a:c2:5f:19:24:e1:f4:2b:4c:76:6c:dc:bd:a8:24:cc:cc:
0f:59:15:56:f4:99:4e:39:e5:5c:af:e7:70:1c:c7:16:5c:69:
64:e9:09:21:be:7c:9f:90:49:32:00:e0:94:fd:07:27:22:ba:
cd:c6:d5:5e:40:9b:bf:2f:93:13:7b:b6:4d:a1:f1:c6:26:11:
44:bd:3b:67:d5:8d:55:8c:02:9c:12:96:93:26:b7:22:b8:a3:
39:ce:60:59:fb:94:cf:cb:a0:85:11:42:e5:8c:c1:4e:2b:46:
a5:11:9d:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org