Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/1CNGc7lyrM5mPV-B5wYlCcuA9uE.roa
File: 1CNGc7lyrM5mPV-B5wYlCcuA9uE.roa (raw, json)
Hash identifier: AOhHF/wHJlQq8OY5AvFhZ/iW6Mrvrk53BXCi1MWuS1M=
Subject key identifier: D4:23:46:73:B9:72:AC:CE:66:3D:5F:81:E7:06:25:09:CB:80:F6:E1
Certificate issuer: /CN=fcfc95f1b88011e6dc33d041b98b3130776c428f
Certificate serial: 0189F44D5F0F8232384CD6F4C4998DF57DE8
Authority key identifier: FC:FC:95:F1:B8:80:11:E6:DC:33:D0:41:B9:8B:31:30:77:6C:42:8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_PyV8biAEebcM9BBuYsxMHdsQo8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/1CNGc7lyrM5mPV-B5wYlCcuA9uE.roa
Signing time: Mon 14 Aug 2023 13:47:38 +0000
ROA not before: Mon 14 Aug 2023 13:47:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12843
IP address blocks: 91.208.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Dec 2023 08:45:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:f4:4d:5f:0f:82:32:38:4c:d6:f4:c4:99:8d:f5:7d:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcfc95f1b88011e6dc33d041b98b3130776c428f
Validity
Not Before: Aug 14 13:47:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4234673b972acce663d5f81e7062509cb80f6e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:11:53:5a:61:88:c7:2c:66:82:df:12:70:8a:
f4:67:56:d1:0c:04:56:d3:ae:a1:10:b2:64:f9:48:
63:54:04:d6:e4:01:ee:72:62:a3:1b:6d:14:d5:df:
ba:57:d1:f9:16:4c:b8:c4:88:5d:82:53:4e:b5:16:
a2:16:1a:dd:9f:45:8a:0e:58:06:7a:42:d2:de:55:
73:47:32:57:17:18:63:cd:bb:88:01:b5:78:fc:e8:
83:16:73:30:76:12:fd:9a:2c:b8:cb:2d:72:b7:ef:
e0:27:2a:dd:ed:e8:07:52:ab:e2:0a:eb:56:32:33:
b8:ba:6a:41:ea:70:b5:a8:ac:60:80:1e:69:73:07:
5f:d5:9a:2d:98:12:7e:6a:2a:19:07:4b:22:c7:61:
40:e2:31:82:c2:99:df:8b:88:c9:d9:df:4c:47:fd:
b5:e6:aa:fa:50:96:a1:dd:aa:d0:23:49:79:48:c2:
4d:4b:70:71:e8:0d:cc:04:5a:d1:b3:97:3e:ae:34:
b7:5e:fd:7d:0d:a0:f8:5b:7e:6a:d9:bd:b7:bd:7e:
d2:08:f0:e2:8e:b0:29:22:f9:a3:a4:22:db:d0:c7:
d4:5c:11:02:5d:2f:8d:d3:a4:3e:1c:b5:96:29:9b:
06:c1:4e:61:e2:b5:a9:31:14:cc:f1:fc:ba:d3:6a:
e6:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:23:46:73:B9:72:AC:CE:66:3D:5F:81:E7:06:25:09:CB:80:F6:E1
X509v3 Authority Key Identifier:
keyid:FC:FC:95:F1:B8:80:11:E6:DC:33:D0:41:B9:8B:31:30:77:6C:42:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_PyV8biAEebcM9BBuYsxMHdsQo8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/1CNGc7lyrM5mPV-B5wYlCcuA9uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/372d29-075e-47fa-9c8f-8f4b0645d604/1/_PyV8biAEebcM9BBuYsxMHdsQo8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.47.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b2:f1:56:bf:bd:97:b7:7e:3f:c6:2a:76:03:8b:15:d6:42:
47:58:14:a9:63:b5:38:f4:48:25:68:74:f4:72:bd:53:d9:a6:
ee:da:fe:c2:c9:e5:12:26:7b:18:d7:b1:ba:f2:5c:1a:e1:80:
68:3b:29:d8:e4:b9:d3:59:c5:c4:c1:e7:cb:ef:89:98:eb:db:
f2:36:9f:82:00:28:dc:12:d7:d4:b0:fd:50:7f:b1:a7:80:ee:
3b:90:ab:b5:4c:be:ce:d3:3e:48:cf:78:a1:de:c1:0a:c2:55:
a0:9a:f2:8d:f8:ac:81:18:8a:fd:37:c8:6f:c5:70:8b:de:df:
b3:aa:8d:36:57:da:6d:1d:f3:57:4a:4c:5b:13:43:0e:48:17:
be:e4:99:2d:c3:0b:f3:aa:30:ae:e0:ac:3d:8e:53:0c:d4:9b:
d9:f1:3e:2e:3a:e8:c8:bd:b0:1a:2f:e3:7c:30:6d:49:27:e7:
a3:36:6d:ec:17:60:a9:46:71:77:e4:cb:47:1f:ea:3d:b6:a4:
63:a6:a5:6f:83:6a:14:e0:1b:8a:fe:d3:77:d5:b2:82:9b:e6:
b6:ee:68:2c:0f:cb:87:45:ea:60:b0:2d:91:93:79:4e:83:fe:
cd:4a:c0:17:3e:dc:0c:58:db:c2:b6:81:da:c7:be:d7:f1:66:
e3:9b:50:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:25 2024 by rpki-client on console-ams.rpki-client.org