Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/2a4561-f2d3-46d2-a4f2-3f6868b2de98/1/G-XFLw-HnR13FmbMA1UaFv8p0YE.roa
File: G-XFLw-HnR13FmbMA1UaFv8p0YE.roa (raw, json)
Hash identifier: t8W/gRmte2BhR8iv0rGJ+or/I/uYXdbh8YFCvtAnFDY=
Subject key identifier: 1B:E5:C5:2F:0F:87:9D:1D:77:16:66:CC:03:55:1A:16:FF:29:D1:81
Certificate issuer: /CN=336f977dc3d5ac63bdbd6f0f8ad5e6baa7c54d86
Certificate serial: 01856DC1F0BF694ADE6139D34750285F8372
Authority key identifier: 33:6F:97:7D:C3:D5:AC:63:BD:BD:6F:0F:8A:D5:E6:BA:A7:C5:4D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M2-XfcPVrGO9vW8PitXmuqfFTYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/2a4561-f2d3-46d2-a4f2-3f6868b2de98/1/G-XFLw-HnR13FmbMA1UaFv8p0YE.roa
Signing time: Sun 01 Jan 2023 14:35:04 +0000
ROA not before: Sun 01 Jan 2023 14:35:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57538
IP address blocks: 91.232.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:f0:bf:69:4a:de:61:39:d3:47:50:28:5f:83:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=336f977dc3d5ac63bdbd6f0f8ad5e6baa7c54d86
Validity
Not Before: Jan 1 14:35:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1be5c52f0f879d1d771666cc03551a16ff29d181
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:80:fb:51:64:7a:c2:64:95:c7:9b:81:6f:d8:
5b:60:e6:29:16:9b:33:82:9f:47:a8:21:b2:14:0c:
dc:89:d0:0b:0f:a2:85:f4:27:c0:96:27:51:9d:5a:
98:32:4b:f3:5b:c8:a5:df:5b:71:f3:96:2a:99:17:
e1:37:47:81:a6:5f:0a:be:df:c3:17:44:34:d1:b3:
1f:07:40:9a:bf:48:c7:29:9b:e3:37:ac:79:77:75:
51:02:3f:d1:1d:0f:3e:9a:6f:66:df:a2:a2:16:82:
5f:e6:13:be:d1:f1:05:46:13:35:bd:6a:da:fd:0c:
5e:b2:86:46:fb:69:99:c5:fc:e8:92:66:d4:13:d2:
d5:4e:0d:c4:41:0b:be:30:0c:6c:33:a8:90:d6:54:
db:21:6c:ea:d2:00:50:b7:ac:8b:c6:ea:a8:37:83:
ce:26:d5:b7:46:c0:cf:91:fb:2c:9f:36:3f:d9:e0:
6f:4c:8e:dc:64:37:97:09:71:20:6b:ff:a2:88:b8:
7f:2e:c1:94:cc:9b:64:4a:3e:82:a2:2c:7e:1a:4f:
77:b4:ea:8a:4b:90:8b:17:cd:3e:e3:05:81:6e:a6:
b8:cc:ef:bf:24:a6:d2:46:82:7a:a2:b6:f7:85:17:
16:79:ff:1e:7f:e1:d2:f8:ac:82:42:b4:3d:72:f7:
2c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:E5:C5:2F:0F:87:9D:1D:77:16:66:CC:03:55:1A:16:FF:29:D1:81
X509v3 Authority Key Identifier:
keyid:33:6F:97:7D:C3:D5:AC:63:BD:BD:6F:0F:8A:D5:E6:BA:A7:C5:4D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M2-XfcPVrGO9vW8PitXmuqfFTYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2a4561-f2d3-46d2-a4f2-3f6868b2de98/1/G-XFLw-HnR13FmbMA1UaFv8p0YE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2a4561-f2d3-46d2-a4f2-3f6868b2de98/1/M2-XfcPVrGO9vW8PitXmuqfFTYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.209.0/24
Signature Algorithm: sha256WithRSAEncryption
df:52:28:6f:5c:ca:92:4b:ea:4a:1d:29:be:b2:a3:3f:1c:23:
ee:1c:9c:8c:8c:5b:bf:25:81:a5:e4:05:3d:a4:8e:79:de:33:
bf:17:d4:46:ff:b6:a9:9a:8b:29:1b:a7:8c:e6:b4:8b:28:3f:
b7:77:60:a0:71:c0:3c:22:b4:d5:c4:f7:a8:01:8e:50:01:85:
39:47:b4:91:71:fa:e8:8e:55:af:19:1d:8e:79:fb:6d:fa:eb:
55:84:48:ee:c3:6c:c4:78:15:5d:62:20:7a:f3:11:00:58:0c:
2e:9a:99:47:d0:73:dd:db:53:c2:0d:7f:a9:d1:a9:e3:42:77:
95:57:3b:a9:c4:8c:70:cd:29:13:03:2c:f4:89:b0:9f:50:df:
b8:23:4b:56:cf:1b:c6:33:1b:ff:a1:c0:62:e0:61:fc:61:fc:
10:57:7c:db:78:55:89:10:b1:83:0b:d7:90:0b:62:15:53:d4:
a6:55:ec:6f:f1:8c:f6:bc:49:4d:3b:20:d1:46:09:98:f2:19:
44:a1:cd:04:aa:05:5a:b5:bd:fb:5f:47:eb:2b:36:ad:77:b1:
37:93:49:01:2e:97:65:46:07:00:17:b8:cd:4b:a2:67:02:64:
4e:11:47:09:e0:16:f4:34:7d:b1:1c:bd:d9:cf:fc:ae:ef:b8:
0e:aa:69:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:03 2024 by rpki-client on console-fra.rpki-client.org