Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS212477.roa
File: AS212477.roa (raw, json)
Hash identifier: 1OCJ855TqUqHNVxL15ido3Rk9Wk3zlhq1t4kCX2KSfk=
Subject key identifier: 4C:22:51:F6:98:2A:E8:22:4A:F5:D7:26:62:4D:42:56:B8:51:87:FC
Certificate issuer: /CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Certificate serial: 45F1FCAFEA106F3C56808B34B0269D564680AC3F
Authority key identifier: 9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS212477.roa
Signing time: Sat 24 Feb 2024 21:05:48 +0000
ROA not before: Sat 24 Feb 2024 21:00:48 +0000
ROA not after: Sat 22 Feb 2025 21:05:48 +0000
asID: 212477
IP address blocks: 91.124.8.0/23 maxlen: 23
91.124.10.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 26 Feb 2024 14:15:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:f1:fc:af:ea:10:6f:3c:56:80:8b:34:b0:26:9d:56:46:80:ac:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bd813391e4af2ae3103c1891b2272d4d5c13b5f
Validity
Not Before: Feb 24 21:00:48 2024 GMT
Not After : Feb 22 21:05:48 2025 GMT
Subject: CN=4C2251F6982AE8224AF5D726624D4256B85187FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:07:05:b6:2f:3e:76:72:d4:4c:07:85:9c:7d:
b1:aa:70:d3:45:27:19:50:49:d6:66:12:f6:69:eb:
90:a3:e6:55:a2:95:b7:71:d6:9d:0f:ba:d8:34:aa:
f9:03:29:b8:13:70:33:79:71:bd:d1:fa:9d:10:e1:
ec:ed:8b:1c:1e:56:02:a2:d8:31:ec:81:0e:1b:e9:
d0:35:52:7d:34:d6:b2:4f:f3:48:68:83:a5:33:66:
e7:ed:43:6e:71:df:d1:48:01:54:7d:c0:ec:d4:8c:
19:11:db:96:c7:94:12:b3:5b:7d:1a:ef:d0:a2:4b:
cf:45:b4:47:2d:d6:bb:33:c3:2f:7b:15:e8:15:f8:
6b:da:22:59:f8:ed:8e:18:95:39:73:87:fd:a0:66:
86:e9:c8:54:da:f7:98:47:71:a3:18:02:63:f9:03:
75:24:55:0b:3f:fb:3c:01:cc:b3:4f:c8:ad:86:28:
7d:f5:c8:2e:8a:89:11:95:e2:d9:c9:60:51:24:4c:
61:3c:f6:40:04:e0:4f:14:1c:6c:00:72:83:b6:61:
8e:50:15:13:f1:13:f3:7b:0e:b3:9d:75:77:57:77:
44:f7:d2:3e:ca:ad:0b:3c:4e:c0:d3:b7:09:60:ab:
6f:84:e1:d2:40:dc:80:f1:f8:64:51:1f:05:03:b8:
42:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:22:51:F6:98:2A:E8:22:4A:F5:D7:26:62:4D:42:56:B8:51:87:FC
X509v3 Authority Key Identifier:
keyid:9B:D8:13:39:1E:4A:F2:AE:31:03:C1:89:1B:22:72:D4:D5:C1:3B:5F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/9BD813391E4AF2AE3103C1891B2272D4D5C13B5F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m9gTOR5K8q4xA8GJGyJy1NXBO18.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/c478f6f5-449a-4827-99d5-bf6b93a8f6b4/0/AS212477.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.124.8.0/22
Signature Algorithm: sha256WithRSAEncryption
87:34:5c:10:ae:2d:1f:43:ea:0a:90:8a:71:cc:72:eb:99:f0:
5d:94:35:76:ee:82:c7:88:ed:00:38:a0:87:da:ad:5a:97:43:
62:b8:d3:5f:2f:c9:58:96:80:50:c9:cd:1c:3e:23:89:7d:da:
78:56:f4:79:07:3a:b5:73:29:00:6d:f5:3b:76:c0:91:81:95:
fc:ca:33:e2:0d:ac:5b:6a:50:f9:f6:13:a5:54:68:1c:bc:80:
a4:45:36:5d:e2:00:c7:2b:97:6b:8f:50:38:79:09:54:28:c8:
68:d3:10:a2:6d:0e:b7:f4:ed:a8:c7:3f:6f:44:22:f9:37:8c:
f6:c1:2d:49:1b:dd:e0:a0:93:b8:45:f6:68:29:67:f4:d5:3d:
41:9a:75:9f:3e:aa:02:0b:96:03:05:53:2d:1d:7f:01:87:5a:
d7:ef:b8:19:eb:05:d6:1e:61:2d:9e:6a:6e:a5:be:6b:f6:d7:
67:9a:60:c0:89:c7:55:10:07:09:fc:93:a1:cc:29:f2:94:47:
4d:d9:3e:56:13:cd:c8:09:dd:65:19:57:f1:f8:56:0d:92:c3:
cd:6b:2e:5e:d8:97:43:a6:cc:92:5a:ac:6f:29:aa:3d:81:8a:
60:00:41:3f:d9:65:00:bc:67:1a:2f:90:67:27:4d:37:a6:a4:
87:30:b9:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:19 2024 by rpki-client on console-fra.rpki-client.org