Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/6470ac-1809-4d59-8714-73bdcb9de755/1/UJxVT_qt3Du1_hyCR0kJD3B9UHc.roa
File: UJxVT_qt3Du1_hyCR0kJD3B9UHc.roa (raw, json)
Hash identifier: cFYdXuzzCPVS3GioVKWmFxTlnFKo/iFKGEp9Fvm/mbo=
Subject key identifier: 50:9C:55:4F:FA:AD:DC:3B:B5:FE:1C:82:47:49:09:0F:70:7D:50:77
Certificate issuer: /CN=e62aba64108297582ccae8e7ba86f2cfc9e1d5aa
Certificate serial: 018CB572077F1DCD9D77883AA632F642B20F
Authority key identifier: E6:2A:BA:64:10:82:97:58:2C:CA:E8:E7:BA:86:F2:CF:C9:E1:D5:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iq6ZBCCl1gsyujnuobyz8nh1ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/6470ac-1809-4d59-8714-73bdcb9de755/1/UJxVT_qt3Du1_hyCR0kJD3B9UHc.roa
Signing time: Fri 29 Dec 2023 11:59:58 +0000
ROA not before: Fri 29 Dec 2023 11:59:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198216
IP address blocks: 91.198.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:b5:72:07:7f:1d:cd:9d:77:88:3a:a6:32:f6:42:b2:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e62aba64108297582ccae8e7ba86f2cfc9e1d5aa
Validity
Not Before: Dec 29 11:59:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=509c554ffaaddc3bb5fe1c824749090f707d5077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d6:ce:33:b3:ec:0e:40:96:63:53:f1:4b:72:
82:33:4d:cd:58:51:d2:e0:d8:40:f5:3e:2c:10:e3:
5d:79:ea:34:1c:84:32:11:64:5e:a4:b0:f8:90:12:
30:ab:73:fe:3a:fe:9a:c3:c6:ee:c1:9e:a5:92:f4:
26:8f:23:16:94:81:8d:9f:83:72:a3:4e:e6:81:36:
f5:0f:42:80:2e:e1:65:49:72:88:36:2a:1c:31:52:
fb:22:94:6b:a0:58:85:ee:b3:26:08:4f:58:b3:a9:
90:22:a0:ce:58:5f:23:93:31:27:96:ab:ea:25:7f:
6b:47:e3:00:ad:87:8f:30:16:4e:bf:b9:36:e9:cc:
94:da:ee:e6:56:3a:df:c4:80:b8:56:5d:a7:89:9b:
78:6f:dd:33:73:51:60:a9:7b:84:b1:df:99:53:11:
a1:ab:24:08:90:11:06:b5:43:4f:72:6a:2b:86:18:
7a:af:0b:af:80:ba:a7:1a:0c:b1:15:35:ce:f6:96:
04:4f:0e:00:a1:ba:05:8e:21:e8:a8:1c:df:ba:8e:
8b:c8:17:1a:ea:cd:ca:48:4a:0a:db:51:84:b2:0f:
73:0e:48:d5:c2:c6:d4:5f:eb:cf:6d:80:eb:41:4f:
49:17:76:3e:ed:ae:78:d3:96:24:61:ca:94:44:32:
0b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:9C:55:4F:FA:AD:DC:3B:B5:FE:1C:82:47:49:09:0F:70:7D:50:77
X509v3 Authority Key Identifier:
keyid:E6:2A:BA:64:10:82:97:58:2C:CA:E8:E7:BA:86:F2:CF:C9:E1:D5:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iq6ZBCCl1gsyujnuobyz8nh1ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/6470ac-1809-4d59-8714-73bdcb9de755/1/UJxVT_qt3Du1_hyCR0kJD3B9UHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/6470ac-1809-4d59-8714-73bdcb9de755/1/5iq6ZBCCl1gsyujnuobyz8nh1ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.217.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:23:2a:cd:8b:de:a9:a1:45:6c:76:94:47:68:94:86:6f:7c:
79:d9:71:03:54:4a:80:48:94:3f:10:49:56:ee:17:57:fe:42:
3d:5e:11:bc:ba:4d:f9:9a:fa:b7:af:a8:5c:7d:e1:87:32:b3:
a0:04:92:e6:75:49:57:28:9f:3d:a9:a9:28:74:61:83:88:cc:
98:df:2c:be:b1:11:66:de:04:73:58:dd:10:ac:b8:48:ee:9d:
30:48:d8:4f:f2:18:2b:5c:13:09:7a:9d:2a:8f:89:81:09:a5:
80:44:ee:91:3e:36:5a:aa:8e:f7:d3:17:22:a6:bd:4c:83:2d:
8f:71:e8:49:65:b9:40:8f:9c:4e:29:be:5a:62:73:59:b5:f3:
5f:ed:e9:1e:99:99:f9:e8:28:32:26:da:0d:b8:d4:a7:90:56:
61:fd:d4:af:d5:ef:f3:f7:70:0c:7f:df:04:48:ae:50:67:b3:
f8:d1:45:7e:6b:d6:77:cb:ff:ab:91:25:81:de:6f:73:ba:b2:
51:90:fe:23:b4:ca:9b:b4:82:50:6e:d6:05:10:d0:72:d7:01:
94:4d:3e:c5:b0:2c:3d:c6:53:cd:2a:cf:a1:50:65:8d:63:20:
14:4d:9d:94:d9:e5:41:ce:fa:c2:6a:29:db:c5:50:b2:3d:cb:
81:1b:b1:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:11 2024 by rpki-client on console-ams.rpki-client.org