Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3e8e42-dffb-435d-bd2b-eb8b1ecc4741/1/_lgsRnPxy5yn2JF4QP-sFEOJlzM.roa
File: _lgsRnPxy5yn2JF4QP-sFEOJlzM.roa (raw, json)
Hash identifier: JL3SEaK5HO26cVpBC/ZA667tnAc8UZyMRqtz9FYswTc=
Subject key identifier: FE:58:2C:46:73:F1:CB:9C:A7:D8:91:78:40:FF:AC:14:43:89:97:33
Certificate issuer: /CN=4dd2fc4d23fd9c2420c40491871808ec5424a670
Certificate serial: 01857142D9E82F33E541FCF09798B16AF42E
Authority key identifier: 4D:D2:FC:4D:23:FD:9C:24:20:C4:04:91:87:18:08:EC:54:24:A6:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdL8TSP9nCQgxASRhxgI7FQkpnA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3e8e42-dffb-435d-bd2b-eb8b1ecc4741/1/_lgsRnPxy5yn2JF4QP-sFEOJlzM.roa
Signing time: Mon 02 Jan 2023 06:54:44 +0000
ROA not before: Mon 02 Jan 2023 06:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8998
IP address blocks: 91.203.38.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:d9:e8:2f:33:e5:41:fc:f0:97:98:b1:6a:f4:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd2fc4d23fd9c2420c40491871808ec5424a670
Validity
Not Before: Jan 2 06:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe582c4673f1cb9ca7d8917840ffac1443899733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:c7:5f:17:ff:7b:7c:1a:03:d1:4e:4a:1e:f4:
a4:66:aa:4b:1b:85:9e:71:72:ab:4c:6a:8a:7c:35:
00:92:4a:38:88:45:42:fe:ac:4a:12:cf:46:6c:7c:
af:69:28:f0:5b:69:4f:9b:01:9d:15:bb:66:2a:6e:
b0:50:09:3b:b2:72:c3:97:fd:80:96:45:4a:55:43:
bc:b6:70:4b:bb:84:5b:0c:7b:5d:9b:b4:c4:81:fa:
35:df:b7:4d:d3:07:1e:b2:03:1f:c8:40:7f:bf:1e:
84:2c:8c:1c:48:d6:2c:ed:ef:60:0d:60:4a:38:67:
da:9c:f0:e1:00:01:8e:30:9b:2c:61:fa:28:0d:2d:
03:c7:a5:50:11:b3:d1:e5:b0:83:35:ff:46:57:bf:
4f:11:89:64:ef:c8:2a:a6:08:d8:cb:72:d1:1d:ae:
69:6e:05:b7:2c:8a:43:3b:2b:a0:02:53:25:ab:b2:
91:d0:54:56:69:46:be:9b:13:82:89:30:ce:92:8a:
a4:95:69:c5:ec:7b:92:a7:2b:c5:e2:48:f6:97:06:
8f:14:d2:2e:b7:19:53:c7:d6:71:58:1a:54:92:56:
08:20:a9:05:6a:b0:5a:6d:bf:7e:91:57:98:f3:c1:
8c:24:79:8a:f8:b1:da:a1:a7:0e:04:fa:8d:b3:4a:
de:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:58:2C:46:73:F1:CB:9C:A7:D8:91:78:40:FF:AC:14:43:89:97:33
X509v3 Authority Key Identifier:
keyid:4D:D2:FC:4D:23:FD:9C:24:20:C4:04:91:87:18:08:EC:54:24:A6:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdL8TSP9nCQgxASRhxgI7FQkpnA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3e8e42-dffb-435d-bd2b-eb8b1ecc4741/1/_lgsRnPxy5yn2JF4QP-sFEOJlzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3e8e42-dffb-435d-bd2b-eb8b1ecc4741/1/TdL8TSP9nCQgxASRhxgI7FQkpnA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.38.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:7e:a3:fe:30:e5:28:d0:73:36:ec:53:c9:be:29:2d:ad:72:
0c:07:e7:60:ac:31:e3:77:32:c8:52:16:4c:d4:3b:94:f4:5f:
0f:b2:ae:94:10:cf:7c:09:8f:4b:a1:de:37:ec:e9:60:9a:6d:
5e:ae:2b:24:3f:f0:bb:49:81:62:4a:96:19:bb:76:05:4d:e4:
5e:c4:d4:7b:25:91:4a:d5:26:4d:02:c3:84:33:67:f4:07:0d:
59:9c:d2:83:c6:47:14:80:f8:40:d9:ae:3a:da:2c:29:72:92:
0b:24:06:10:7c:13:7d:28:cf:0f:37:3b:96:25:57:da:b1:80:
61:75:bd:6d:fd:bf:c6:a0:5a:69:dd:ac:de:d9:bc:12:34:ca:
3d:f9:90:bf:dc:02:38:1b:fe:ad:2c:96:69:7c:df:fa:5e:13:
27:ac:7c:45:4f:90:ab:2a:9f:db:41:42:32:49:67:a5:95:ef:
a2:fc:58:a1:09:48:66:67:bc:ea:b1:76:b8:78:a0:17:6f:24:
ce:aa:c2:4b:c4:8f:d3:c1:26:2e:1c:4b:2b:62:39:54:fb:d3:
dd:c4:06:01:36:b1:4a:e6:36:e1:54:1d:75:49:77:8e:f6:1e:
ec:c0:aa:4f:e3:e4:2d:e3:92:bd:09:65:27:4d:6c:75:20:45:
69:49:ee:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:09 2024 by rpki-client on console-ams.rpki-client.org