Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/wqGC5x1AtnrCbPqOjo1lYQ9sBnY.roa
File: wqGC5x1AtnrCbPqOjo1lYQ9sBnY.roa (raw, json)
Hash identifier: qi7tfVV7xlyK9bbvn+XPYsnF2TkVehUFsSXuiKjjUCI=
Subject key identifier: C2:A1:82:E7:1D:40:B6:7A:C2:6C:FA:8E:8E:8D:65:61:0F:6C:06:76
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0190EE44E7D90130E385023C611B7F630E12
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/wqGC5x1AtnrCbPqOjo1lYQ9sBnY.roa
Signing time: Fri 26 Jul 2024 09:00:11 +0000
ROA not before: Fri 26 Jul 2024 09:00:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214463
IP address blocks: 91.235.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ee:44:e7:d9:01:30:e3:85:02:3c:61:1b:7f:63:0e:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jul 26 09:00:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c2a182e71d40b67ac26cfa8e8e8d65610f6c0676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:5f:56:f6:bb:fa:0b:62:96:5d:71:b8:74:53:
35:b4:d2:9c:38:ae:42:d8:8a:44:b0:9a:85:dc:4f:
7b:93:fd:34:7f:93:3d:2b:53:db:0f:3a:23:63:c5:
19:8d:2d:66:6a:af:57:49:17:fb:bd:b4:39:97:38:
fd:42:a4:da:0a:4a:f9:0e:6d:36:64:2f:fe:63:e0:
58:c1:a1:af:36:29:5f:4d:33:40:0a:48:23:98:dc:
52:18:35:73:c8:9f:c1:22:c3:f8:b8:87:01:32:f0:
d1:ae:91:00:40:29:18:c6:6a:df:f5:66:00:20:29:
e6:2f:64:18:8f:80:ec:61:1a:41:12:0e:52:1f:4b:
5e:d1:c6:11:a0:2f:33:bd:c3:d8:a5:71:0e:50:26:
78:12:51:88:ba:d3:12:cc:90:eb:f6:e8:8c:58:2d:
7e:6d:cf:91:2a:cd:bd:c5:ae:10:f9:4b:5d:8d:f2:
44:56:d4:5a:35:cc:fa:57:59:fa:e8:29:11:9e:62:
03:11:12:70:bf:b8:73:46:da:bf:29:cb:ed:b2:74:
c0:76:1f:49:77:1b:47:ac:0b:83:68:76:26:89:15:
2a:9c:84:5c:00:73:80:87:23:04:3d:35:cc:a1:76:
72:32:fa:63:a7:55:87:8f:d6:53:d2:0f:fa:13:54:
22:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:A1:82:E7:1D:40:B6:7A:C2:6C:FA:8E:8E:8D:65:61:0F:6C:06:76
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/wqGC5x1AtnrCbPqOjo1lYQ9sBnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.235.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:99:68:91:78:9d:db:01:ae:d3:28:a9:2c:4e:30:0d:1d:aa:
c2:47:32:24:a9:ef:4f:ef:7b:d8:b1:ce:16:3c:66:d5:fb:45:
7c:bc:fc:34:d0:5e:32:ee:c8:07:ea:29:33:f1:e8:14:42:68:
40:57:ab:70:6e:14:a5:7f:00:d2:5c:5a:b1:52:00:2d:a8:2b:
50:a4:0a:0b:58:eb:39:c9:87:0e:49:bd:e5:fc:47:a1:33:3f:
5f:f2:7e:83:8a:2d:b7:e8:f7:2e:de:db:86:95:50:b4:54:ab:
c6:e5:08:16:f8:a7:0d:b5:9a:3a:5f:19:93:9d:8f:76:01:7b:
c4:a5:84:05:b8:12:ac:16:80:07:45:79:ae:ef:ce:8d:5c:f1:
f5:97:cc:53:c3:46:bd:93:11:98:dd:9d:a3:a0:3f:5e:2b:77:
ec:a1:9f:52:d9:4c:22:bc:ad:6e:b6:4c:9a:69:d3:3c:6d:6b:
20:8b:70:4d:1e:2b:8d:5c:3f:9d:f4:9e:f3:82:80:d3:c0:78:
5f:84:65:02:3f:7a:41:96:df:21:64:79:27:49:f2:57:52:95:
6c:cd:4c:95:a6:1f:ae:a5:7a:24:b0:af:ad:0d:31:6a:44:9c:
7c:ab:72:c1:36:bd:6d:04:a9:db:29:09:5c:47:c7:fe:97:b9:
46:fe:b9:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:13:20 2025 by rpki-client