Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/5VvMdqKDY-EDNGMIoBpjSge4cZM.roa
File: 5VvMdqKDY-EDNGMIoBpjSge4cZM.roa (raw, json)
Hash identifier: hN06qeZv1RX0XJJJRq0QsrO8H1nI3iiZSzmxcBkAtdg=
Subject key identifier: E5:5B:CC:76:A2:83:63:E1:03:34:63:08:A0:1A:63:4A:07:B8:71:93
Certificate issuer: /CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Certificate serial: 01857246A58E02D07E3A738F4DBEF2D5B9BC
Authority key identifier: 77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/5VvMdqKDY-EDNGMIoBpjSge4cZM.roa
Signing time: Mon 02 Jan 2023 11:38:30 +0000
ROA not before: Mon 02 Jan 2023 11:38:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48258
IP address blocks: 91.209.53.0/24 maxlen: 24
2001:67c:2488::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:a5:8e:02:d0:7e:3a:73:8f:4d:be:f2:d5:b9:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c071d989e5309ac3cb3c0b08d3acb2521112b6
Validity
Not Before: Jan 2 11:38:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e55bcc76a28363e103346308a01a634a07b87193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a0:c2:08:7a:b1:8f:fd:4b:7b:a5:72:40:d7:
8e:f2:d8:a8:b4:1f:ae:42:29:a7:1a:02:82:35:a7:
8b:ce:4a:70:58:70:d6:4b:da:79:0b:8c:1e:98:7b:
d0:45:d4:09:df:f1:04:79:e9:e1:dc:be:9e:ec:77:
07:a7:ce:63:ae:27:ed:79:49:8b:35:52:4f:c2:1a:
4b:40:08:76:2c:78:9d:b6:a5:41:0c:e7:a9:cb:3d:
b2:ba:18:61:9b:98:65:23:d4:91:d6:a0:2d:15:3e:
72:f0:65:64:02:ca:a4:20:59:f6:cf:61:c9:d6:3c:
23:64:79:d3:13:b8:3c:8c:e6:15:61:87:88:be:54:
f3:7e:e4:29:bf:10:07:86:72:0a:22:ed:41:6c:51:
8a:ca:96:9a:56:ab:ca:8b:a2:ae:02:c1:61:44:83:
4a:77:65:51:72:99:ca:dd:bc:e5:74:8c:d9:a6:11:
5e:9d:c6:10:a0:8c:82:93:6d:63:0d:e7:76:43:26:
96:96:d0:0d:1b:62:23:87:dd:3a:4d:66:b4:78:17:
cb:53:b0:74:45:da:5a:36:ed:41:fe:1c:23:fa:e8:
79:4f:43:aa:29:fb:c9:e0:49:a8:92:bf:84:bc:42:
e4:05:23:a4:a1:8f:3a:3e:65:90:5e:00:8a:da:b2:
56:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:5B:CC:76:A2:83:63:E1:03:34:63:08:A0:1A:63:4A:07:B8:71:93
X509v3 Authority Key Identifier:
keyid:77:C0:71:D9:89:E5:30:9A:C3:CB:3C:0B:08:D3:AC:B2:52:11:12:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8Bx2YnlMJrDyzwLCNOsslIRErY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/5VvMdqKDY-EDNGMIoBpjSge4cZM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/844bfe-ec18-417e-8f5a-5cc4ded9a7d2/1/d8Bx2YnlMJrDyzwLCNOsslIRErY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.53.0/24
IPv6:
2001:67c:2488::/48
Signature Algorithm: sha256WithRSAEncryption
23:ff:0f:22:0d:1d:5f:58:cc:6a:ef:f6:45:79:7d:ce:0d:c0:
e8:b6:f3:69:c4:20:7e:96:c8:87:7f:1a:31:c0:32:15:18:92:
fa:13:69:30:4f:b5:0f:50:8d:43:b9:c5:e5:b9:42:4d:36:bd:
fc:67:9b:d2:ae:b1:66:9c:56:82:18:db:fb:d6:95:bb:8d:a1:
2b:66:6d:12:83:ad:11:7d:8c:d5:7d:9f:9e:59:6f:de:4b:e1:
21:cc:d7:66:ea:29:13:6a:81:ac:10:99:b2:87:78:4c:a9:96:
ae:69:40:c5:b0:74:42:02:81:64:b8:d3:b6:23:93:66:3f:10:
a2:19:8e:9d:23:1d:7e:ac:e5:61:6b:ae:73:fc:99:f5:03:d3:
41:c6:a3:8c:c6:c3:fa:01:e8:c1:8a:32:24:9f:f4:70:ea:f6:
d4:f6:c9:e3:1f:c0:27:3e:ae:ba:58:ce:42:80:21:66:1e:53:
66:76:9c:c7:06:0b:28:f9:04:53:9d:e3:51:1c:19:e1:e9:bc:
79:88:9c:bb:00:67:76:b7:f8:f1:6f:29:c2:fc:5e:0f:99:0f:
52:da:5b:2f:bd:ab:8d:87:4f:46:b0:a8:dc:69:0d:a8:69:f5:
9d:63:d8:c5:c5:db:3a:b0:2e:a5:be:41:f7:17:fe:94:b3:fd:
99:7c:dc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:37 2024 by rpki-client on console-fra.rpki-client.org