Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/VO70cCAr9TpwIpwSsObtWmYOZ2g.roa
File: VO70cCAr9TpwIpwSsObtWmYOZ2g.roa (raw, json)
Hash identifier: Pm5mDH950311/pm96mJGQQ6HorX9vx9m1kAKCjZdaL8=
Subject key identifier: 54:EE:F4:70:20:2B:F5:3A:70:22:9C:12:B0:E6:ED:5A:66:0E:67:68
Certificate issuer: /CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Certificate serial: 018CC9BB0953B2B915A02FFDD3F4B04C21D9
Authority key identifier: E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/VO70cCAr9TpwIpwSsObtWmYOZ2g.roa
Signing time: Tue 02 Jan 2024 10:32:07 +0000
ROA not before: Tue 02 Jan 2024 10:32:07 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396948
IP address blocks: 91.202.170.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 14 Apr 2024 06:54:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bb:09:53:b2:b9:15:a0:2f:fd:d3:f4:b0:4c:21:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5bd7923afdbae87d07b2308dd389d9cf082ed6d
Validity
Not Before: Jan 2 10:32:07 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54eef470202bf53a70229c12b0e6ed5a660e6768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:0d:9c:61:73:a0:92:b5:dd:c1:66:a6:ae:89:
08:7e:26:49:af:ad:51:72:d2:79:97:45:6b:33:15:
84:bf:f3:7a:80:a8:36:dd:26:c0:52:eb:8b:fa:60:
79:1e:1b:ec:e7:8f:3d:54:3e:aa:34:06:f4:76:0e:
43:55:f6:85:71:f9:ea:bd:a0:a6:5c:2e:f3:32:cb:
cc:cd:96:b4:44:00:79:a5:0b:7a:9f:24:2c:7b:da:
a6:c5:6b:84:e0:a0:84:52:b1:92:f9:d2:e4:23:75:
65:cf:87:39:47:6c:c0:02:f3:ca:10:80:e3:a4:90:
29:1c:b8:5b:b5:71:11:49:4c:65:af:c9:0d:d7:df:
09:c8:6b:2e:a2:53:61:97:e2:26:73:93:7e:c2:bb:
c2:9a:30:32:69:0b:0b:52:ce:68:cd:58:7e:29:db:
20:40:94:7c:f0:34:4f:ee:db:5d:7a:67:a5:60:bf:
05:c6:a3:32:d0:71:91:0a:ad:8e:62:99:9b:4e:07:
07:95:6d:76:94:fc:51:f4:30:d0:b9:42:12:c8:14:
24:b4:fb:fa:13:59:6a:a9:42:4d:ea:b1:d9:86:88:
0c:54:da:cc:b2:5c:81:80:c4:40:e0:1f:5a:f5:8b:
bd:7c:0a:6b:34:ed:60:b7:11:8d:6f:fb:1d:e3:e2:
a3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:EE:F4:70:20:2B:F5:3A:70:22:9C:12:B0:E6:ED:5A:66:0E:67:68
X509v3 Authority Key Identifier:
keyid:E5:BD:79:23:AF:DB:AE:87:D0:7B:23:08:DD:38:9D:9C:F0:82:ED:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b15I6_brofQeyMI3TidnPCC7W0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/VO70cCAr9TpwIpwSsObtWmYOZ2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/269229-20eb-4f1c-a13e-26d1e54578f1/1/5b15I6_brofQeyMI3TidnPCC7W0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.202.170.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:c0:b9:2b:3b:56:ab:9c:15:81:74:4d:36:d5:71:cc:19:d4:
7d:b6:f2:0e:9c:4c:5c:11:f5:e7:27:74:28:8f:b7:5f:79:67:
06:66:1a:d0:b5:97:1f:d9:bd:e3:61:75:1a:09:eb:65:59:d4:
fb:31:27:10:49:2c:f8:f2:fb:94:9c:60:fb:49:42:50:c9:82:
cf:37:2b:86:74:69:ec:b1:67:be:e2:d9:c9:a5:9e:26:5f:e2:
91:ab:f6:1f:f2:64:8e:c4:89:43:9a:fc:3b:2f:c9:e7:01:7e:
4e:a8:31:76:6e:98:18:f8:9c:ce:f8:28:c0:b3:90:80:18:00:
ed:1d:3c:fe:f2:56:89:c1:30:19:07:d6:f5:86:5b:c5:b2:44:
cc:67:50:09:68:78:cc:08:59:5d:71:63:09:33:93:9b:26:74:
35:e6:15:a8:55:92:21:39:70:50:6a:b2:ea:20:3d:f7:8e:ea:
6c:fa:8c:4b:83:f2:02:a0:53:f2:fb:be:6d:f8:a1:70:3f:69:
c8:fe:f9:22:ea:fe:ae:49:ec:4c:91:84:14:9a:2b:33:05:f0:
ec:a6:05:bb:fd:96:e1:32:41:a1:98:c3:90:ba:3b:68:2f:c5:
69:36:73:6e:09:98:e9:2e:4e:da:29:e0:69:99:7c:d2:8b:9a:
84:cd:bd:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 14 07:21:07 2024 by rpki-client on console-fra.rpki-client.org