Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/6QwH1Xr0ah-l9zVKELVR_xwRrB0.roa
File: 6QwH1Xr0ah-l9zVKELVR_xwRrB0.roa (raw, json)
Hash identifier: 3swyt+zb8FN4vcfqcBAdQfSHJnfanv7hLZojRzCFHac=
Subject key identifier: E9:0C:07:D5:7A:F4:6A:1F:A5:F7:35:4A:10:B5:51:FF:1C:11:AC:1D
Certificate issuer: /CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Certificate serial: 018CC3B6CF43590D27C0C0969CA0DAC674DA
Authority key identifier: 73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/6QwH1Xr0ah-l9zVKELVR_xwRrB0.roa
Signing time: Mon 01 Jan 2024 06:29:46 +0000
ROA not before: Mon 01 Jan 2024 06:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15870
IP address blocks: 91.216.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Feb 2024 04:12:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:cf:43:59:0d:27:c0:c0:96:9c:a0:da:c6:74:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7380c759f558f9c6be88dd226a439d99c9eacf0c
Validity
Not Before: Jan 1 06:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e90c07d57af46a1fa5f7354a10b551ff1c11ac1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a3:7c:8f:dc:f0:de:f6:6c:ca:32:04:13:27:
b2:0b:86:bd:31:ec:80:dc:34:e3:6e:42:40:ab:96:
5e:fa:88:6c:19:52:cd:b7:ba:0e:0f:db:54:7e:3e:
59:87:a2:06:56:b5:df:a4:74:fc:99:99:ac:49:de:
28:22:9c:88:a4:96:0d:38:98:73:0e:75:56:bf:d5:
1d:3f:e9:ac:77:94:c2:b1:38:2a:d2:0b:4a:3d:03:
68:9e:ef:72:a5:27:ef:61:18:cc:e3:ea:a5:d1:f3:
fb:69:a4:bc:ec:6e:9b:14:ce:63:c1:5e:a0:ab:0f:
b4:71:21:9e:67:61:d5:04:1d:f8:8b:a4:0d:66:1f:
b1:1c:24:bf:d0:fe:62:9f:24:e4:3c:2a:31:ca:98:
51:d2:70:af:65:3e:48:dc:ec:30:5e:fd:67:03:aa:
26:a3:2f:ff:b8:94:85:f4:d2:60:be:2b:e9:4a:a5:
24:b3:da:cf:2f:96:46:7f:2a:f4:bf:4a:00:b3:31:
01:63:3f:77:4c:72:c3:6a:87:15:b0:67:9f:43:f2:
3e:6a:41:28:9c:c7:42:c4:62:2b:1c:00:a5:b7:c7:
03:18:88:51:fc:86:95:91:6c:92:89:03:48:5c:59:
73:d9:fd:ce:ff:ea:3f:0e:ce:16:be:f6:33:13:9c:
67:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0C:07:D5:7A:F4:6A:1F:A5:F7:35:4A:10:B5:51:FF:1C:11:AC:1D
X509v3 Authority Key Identifier:
keyid:73:80:C7:59:F5:58:F9:C6:BE:88:DD:22:6A:43:9D:99:C9:EA:CF:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4DHWfVY-ca-iN0iakOdmcnqzww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/6QwH1Xr0ah-l9zVKELVR_xwRrB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/b80000-0609-488f-a34a-2ca626cfed45/1/c4DHWfVY-ca-iN0iakOdmcnqzww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.46.0/24
Signature Algorithm: sha256WithRSAEncryption
77:93:16:8b:4e:0a:8c:b3:8f:5e:67:2b:63:39:4a:c8:b8:89:
43:bf:84:9b:a7:22:00:90:7a:15:29:03:cd:40:ef:75:fc:a5:
22:e6:04:67:56:22:cc:63:30:f5:81:d0:fb:d0:c3:71:61:82:
0e:73:ed:24:0d:b7:14:26:ae:b4:01:28:2a:67:50:84:d6:7c:
93:99:9c:67:0c:73:d6:2c:05:65:8c:88:a5:aa:c6:b1:bd:4b:
61:57:df:96:77:c3:48:df:1f:81:7a:2c:c1:07:6a:1b:58:58:
74:87:86:a5:3f:39:17:4c:77:5c:8a:00:0c:d5:09:35:33:90:
56:79:4f:db:b6:95:28:7e:5d:e4:97:cf:9e:71:8f:41:7a:dc:
5a:be:4c:7d:6a:2d:0e:25:d5:e1:0c:f0:8d:c7:44:d3:2d:1a:
60:81:35:af:29:52:b0:4c:ed:29:4e:8b:b6:4a:90:64:f8:cb:
99:a3:44:ca:21:fa:fc:1a:9b:0a:12:1d:fa:0f:d4:6f:49:aa:
3b:bd:85:40:53:9a:d2:ca:69:f8:77:4b:60:f5:08:fb:6e:78:
4e:84:23:d3:83:4a:c9:97:ee:88:da:0b:06:b1:40:38:18:a0:
0d:a3:75:99:85:2e:30:b0:06:b9:e1:bc:c6:a6:ff:3e:c8:0f:
57:ab:ed:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:11 2024 by rpki-client on console-ams.rpki-client.org