Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/f08d9c-5ca9-4e53-97e3-9af2cb5dccf3/1/TWgqPYPLIJyP1ixo7F4cVE0a8Uw.roa
File: TWgqPYPLIJyP1ixo7F4cVE0a8Uw.roa (raw, json)
Hash identifier: ulg7tOF79gHQHKe88hwiTOWCA6pdQyWdpHobGJMLhLs=
Subject key identifier: 4D:68:2A:3D:83:CB:20:9C:8F:D6:2C:68:EC:5E:1C:54:4D:1A:F1:4C
Certificate issuer: /CN=c84758053a0c4c6d5e003f3c869a89e4f2a9e177
Certificate serial: 018AB1FC5A631930D0C0662B98A3C8DDF09E
Authority key identifier: C8:47:58:05:3A:0C:4C:6D:5E:00:3F:3C:86:9A:89:E4:F2:A9:E1:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yEdYBToMTG1eAD88hpqJ5PKp4Xc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/f08d9c-5ca9-4e53-97e3-9af2cb5dccf3/1/TWgqPYPLIJyP1ixo7F4cVE0a8Uw.roa
Signing time: Wed 20 Sep 2023 09:47:00 +0000
ROA not before: Wed 20 Sep 2023 09:47:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43040
IP address blocks: 91.194.44.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:30:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:b1:fc:5a:63:19:30:d0:c0:66:2b:98:a3:c8:dd:f0:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c84758053a0c4c6d5e003f3c869a89e4f2a9e177
Validity
Not Before: Sep 20 09:47:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d682a3d83cb209c8fd62c68ec5e1c544d1af14c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:95:75:66:f7:2a:5d:88:fd:66:f1:a4:ff:f2:
33:dd:89:93:68:e7:24:ff:ec:b3:6e:57:42:4f:17:
2f:22:a6:2f:0f:0d:e0:03:f3:af:2f:6d:ee:88:a1:
52:ee:a6:d1:be:1c:49:f4:75:d1:cc:2a:2c:76:e4:
2d:96:ab:2f:92:cf:17:f2:e5:b9:b8:67:db:66:4e:
a6:cf:26:58:54:e3:c1:0b:8b:88:0e:42:fe:27:6f:
e9:c1:4b:90:17:17:25:16:83:e2:e6:58:dd:8c:49:
66:75:d9:71:9f:d2:be:9c:93:2a:59:34:1d:d8:d8:
d0:c0:73:79:ec:77:e2:64:f2:a9:a5:d0:fd:ea:f3:
8f:c2:8e:14:e1:8a:ac:61:d3:b4:d3:69:63:c5:3d:
d3:87:e1:29:c6:4d:37:7d:d2:0a:a8:7d:c8:a9:0d:
3d:24:67:11:ac:ff:09:3b:48:e1:4d:73:f8:fc:cb:
ce:11:07:a6:5f:a2:d1:f1:e8:a2:ea:6a:87:e8:d9:
44:7e:dc:64:b1:cc:92:1f:c1:81:48:df:2d:b5:90:
a4:f1:e2:78:ed:b8:7f:46:a9:54:76:61:98:75:fd:
84:a9:57:ba:f7:c3:26:2e:fd:8b:9c:2b:f6:c8:ac:
cc:59:e2:fa:56:48:71:8c:df:da:44:7e:8a:b7:dd:
c4:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:68:2A:3D:83:CB:20:9C:8F:D6:2C:68:EC:5E:1C:54:4D:1A:F1:4C
X509v3 Authority Key Identifier:
keyid:C8:47:58:05:3A:0C:4C:6D:5E:00:3F:3C:86:9A:89:E4:F2:A9:E1:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yEdYBToMTG1eAD88hpqJ5PKp4Xc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f08d9c-5ca9-4e53-97e3-9af2cb5dccf3/1/TWgqPYPLIJyP1ixo7F4cVE0a8Uw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/f08d9c-5ca9-4e53-97e3-9af2cb5dccf3/1/yEdYBToMTG1eAD88hpqJ5PKp4Xc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.194.44.0/23
Signature Algorithm: sha256WithRSAEncryption
00:5d:bc:ff:ae:f3:f6:62:23:80:62:62:7d:6d:26:74:56:57:
77:5c:83:c7:ca:cf:d3:cc:1f:71:c2:93:79:ae:ff:61:c0:27:
02:be:e3:8c:67:a2:d5:0c:a7:0b:37:66:93:e4:dc:16:60:80:
2b:7d:59:5a:b1:8b:4b:43:dd:34:26:c1:f4:0a:67:b0:d2:04:
46:b8:fe:56:bc:58:70:49:e6:7d:d4:0b:5f:2b:40:92:27:6a:
39:c5:05:f7:63:ba:06:e1:65:cc:10:f4:1d:f2:cf:99:ca:b0:
96:4e:3c:7b:fe:d6:53:6a:dc:2e:77:a8:f4:a2:e8:4f:8f:a4:
c6:57:80:68:14:05:6c:0b:de:4a:8f:f9:75:ed:45:69:14:44:
7c:22:9f:7e:fe:43:23:a3:1c:8f:b8:6e:f7:2f:4f:58:fd:08:
3b:38:bb:8c:fe:f4:b8:2b:ef:7d:91:74:df:37:6c:7b:3e:8e:
e6:8c:d1:81:39:11:29:10:4e:74:10:31:ed:20:70:5d:10:ba:
c8:6a:18:87:d6:be:5d:1c:e1:96:2f:2c:6e:97:20:0e:c8:fa:
c8:05:c0:0f:01:34:7a:c4:a4:2c:95:5a:c7:c2:53:d5:87:9e:
a9:91:ad:af:ad:a4:e4:5f:9f:3b:85:4b:b1:ad:d3:0b:10:3b:
4d:5c:77:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:35 2024 by rpki-client on console-fra.rpki-client.org