Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/qYNMMMpcoF3ylyS9UAagqtpnJ5g.roa
File: qYNMMMpcoF3ylyS9UAagqtpnJ5g.roa (raw, json)
Hash identifier: 2aKp/9btMr3UW1qBVtzvvoE5ejW1gqUDB4twT6tWlRs=
Subject key identifier: A9:83:4C:30:CA:5C:A0:5D:F2:97:24:BD:50:06:A0:AA:DA:67:27:98
Certificate issuer: /CN=3a48c2701735cd5d2317d10ac63d7f2ec6618ce0
Certificate serial: 01856FCBBFCDE91BCFBB5125EF5951C8D32A
Authority key identifier: 3A:48:C2:70:17:35:CD:5D:23:17:D1:0A:C6:3D:7F:2E:C6:61:8C:E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OkjCcBc1zV0jF9EKxj1_LsZhjOA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/qYNMMMpcoF3ylyS9UAagqtpnJ5g.roa
Signing time: Mon 02 Jan 2023 00:05:01 +0000
ROA not before: Mon 02 Jan 2023 00:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 396982
IP address blocks: 91.199.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:cb:bf:cd:e9:1b:cf:bb:51:25:ef:59:51:c8:d3:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a48c2701735cd5d2317d10ac63d7f2ec6618ce0
Validity
Not Before: Jan 2 00:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9834c30ca5ca05df29724bd5006a0aada672798
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:95:7c:c4:c7:b6:ac:77:30:3c:9d:7f:84:41:
c7:ff:2f:86:3b:a1:67:f7:3a:3b:06:2f:96:75:38:
ec:87:80:a3:cf:11:48:bf:3a:d6:57:10:0b:d7:9a:
4f:60:dc:7d:33:33:cc:73:07:96:80:27:4f:6c:98:
7b:3a:e4:ba:0a:6d:4b:47:0f:9e:30:03:fd:56:74:
10:46:ed:e4:34:b7:7f:ba:53:76:5a:8c:fc:1e:9f:
14:71:e2:ac:b1:f5:01:8f:01:32:f2:77:9d:78:af:
a6:9d:5c:7a:84:6a:eb:48:35:79:c2:54:a5:11:12:
2d:0f:c1:15:ad:b0:03:1c:a0:93:ba:68:b7:1f:3c:
c6:be:a5:bd:87:aa:7e:f9:da:e5:c5:17:c6:23:76:
eb:bb:52:b7:2a:ff:06:3c:2d:57:3e:48:4c:ed:e0:
be:46:77:67:af:d1:0a:92:da:f0:8d:e5:d7:22:0a:
f8:cd:1b:7c:c9:35:47:66:c8:0b:45:d0:a8:75:ae:
40:da:52:82:35:8b:9e:72:12:1b:f7:1d:44:75:ce:
0b:1d:11:3f:b8:a5:a4:f9:1e:c5:f8:8d:3b:c4:18:
cb:01:75:6e:1e:e3:68:32:8a:40:36:17:8c:aa:79:
69:5b:93:65:73:df:f8:ef:1e:75:78:f6:41:29:3a:
f1:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:83:4C:30:CA:5C:A0:5D:F2:97:24:BD:50:06:A0:AA:DA:67:27:98
X509v3 Authority Key Identifier:
keyid:3A:48:C2:70:17:35:CD:5D:23:17:D1:0A:C6:3D:7F:2E:C6:61:8C:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OkjCcBc1zV0jF9EKxj1_LsZhjOA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/qYNMMMpcoF3ylyS9UAagqtpnJ5g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/e74595-d657-4ab4-8309-0d57c9410127/1/OkjCcBc1zV0jF9EKxj1_LsZhjOA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.199.181.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:9e:c5:cb:f3:1d:59:95:2c:b6:5d:5e:75:4c:ea:07:6c:74:
26:ee:94:c9:a6:f1:27:8c:02:f1:18:3f:3d:2e:87:c8:38:d3:
4b:5c:2a:d6:a5:63:d5:50:1d:92:84:91:ab:38:10:49:e7:6d:
ae:54:64:8e:4c:1c:12:0b:da:17:96:58:3d:b0:49:53:12:67:
d2:c5:45:75:30:f1:27:a5:db:98:b9:1e:ea:12:1b:73:91:fc:
26:67:fa:2a:74:f9:1b:9f:39:52:b3:c5:20:61:98:55:30:aa:
43:a9:13:bc:fd:01:65:2a:80:b4:04:b0:97:71:35:d0:28:90:
3b:70:2c:cf:c0:d5:9b:ab:d6:e9:69:fd:22:e1:12:bd:e5:ef:
b1:bf:91:53:17:fb:bc:78:4f:95:b1:b2:36:97:9e:3c:6e:93:
6a:fb:f8:e2:08:f5:0b:25:5c:0a:bd:1a:1e:d8:7a:d7:89:b6:
60:25:1f:7e:7b:79:76:5f:10:f7:74:d9:eb:6a:93:f0:3d:9b:
6c:5e:80:24:90:a7:35:37:8e:f4:29:cf:21:64:bd:08:dc:62:
77:99:34:0d:e8:82:47:f5:70:08:3e:9e:ed:84:3c:9a:92:53:
10:2c:8d:4f:e9:52:db:c6:cf:e9:76:c1:a2:a4:45:8a:f4:af:
21:41:5d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:11 2024 by rpki-client on console-ams.rpki-client.org