Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/483a68-08e7-4f90-9fd9-ff4a2b85889c/1/CS3rrwWmFksdX2Frt9Swn7WJ6Qg.roa
File: CS3rrwWmFksdX2Frt9Swn7WJ6Qg.roa (raw, json)
Hash identifier: nTHn0OrtY6WTyG6YhKbi2HjT2XWrnQkqlBvpbIxRXAI=
Subject key identifier: 09:2D:EB:AF:05:A6:16:4B:1D:5F:61:6B:B7:D4:B0:9F:B5:89:E9:08
Certificate issuer: /CN=a90dc475029e1d793355978ba46bf873065564b1
Certificate serial: 01856ED4CE716BDDCAE3AFD8C9DA2881350A
Authority key identifier: A9:0D:C4:75:02:9E:1D:79:33:55:97:8B:A4:6B:F8:73:06:55:64:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qQ3EdQKeHXkzVZeLpGv4cwZVZLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/483a68-08e7-4f90-9fd9-ff4a2b85889c/1/CS3rrwWmFksdX2Frt9Swn7WJ6Qg.roa
Signing time: Sun 01 Jan 2023 19:35:18 +0000
ROA not before: Sun 01 Jan 2023 19:35:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41953
IP address blocks: 91.196.153.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Nov 2023 09:05:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:ce:71:6b:dd:ca:e3:af:d8:c9:da:28:81:35:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a90dc475029e1d793355978ba46bf873065564b1
Validity
Not Before: Jan 1 19:35:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=092debaf05a6164b1d5f616bb7d4b09fb589e908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:72:93:f9:70:4d:7a:04:89:fc:8c:df:c3:e9:
fd:d1:77:ed:37:d8:6c:33:02:20:55:09:d8:7f:9b:
07:08:34:53:fb:36:0a:07:2c:09:11:98:56:79:f3:
fe:8e:d5:27:e2:db:94:7d:0c:1c:f7:19:31:96:a4:
ac:d9:dc:af:ff:0a:18:04:6f:d6:e6:6f:3c:ef:66:
03:bd:66:e5:10:88:05:a8:93:ae:b9:31:7a:cd:26:
fc:a5:1c:56:15:a9:29:90:91:66:9f:88:d2:6b:ea:
dc:0f:41:b8:94:c4:5b:ad:31:5c:88:b4:04:90:b7:
63:af:66:37:6a:65:ea:17:da:04:49:ea:b7:8c:6a:
9d:eb:9c:9a:b4:bc:ab:83:5c:42:9e:6b:16:9d:8f:
f0:6a:ca:b2:6f:82:4c:f7:c3:f1:bc:1c:77:af:56:
1c:6b:36:b3:7e:03:e4:ee:f7:4a:8a:8e:e5:e8:18:
7c:5a:de:d5:3e:5b:e9:ab:47:68:a7:02:5e:17:4f:
aa:8f:07:8a:2b:0a:56:ba:62:14:da:44:ec:79:cf:
e8:52:33:e2:dc:83:5f:f2:21:d5:12:a2:46:67:35:
26:2e:10:71:5e:54:f7:7f:ef:11:42:96:6a:11:e8:
7c:ac:a0:0f:6d:05:5c:89:b7:75:b3:43:84:ae:bc:
de:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:2D:EB:AF:05:A6:16:4B:1D:5F:61:6B:B7:D4:B0:9F:B5:89:E9:08
X509v3 Authority Key Identifier:
keyid:A9:0D:C4:75:02:9E:1D:79:33:55:97:8B:A4:6B:F8:73:06:55:64:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qQ3EdQKeHXkzVZeLpGv4cwZVZLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/483a68-08e7-4f90-9fd9-ff4a2b85889c/1/CS3rrwWmFksdX2Frt9Swn7WJ6Qg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/483a68-08e7-4f90-9fd9-ff4a2b85889c/1/qQ3EdQKeHXkzVZeLpGv4cwZVZLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.153.0/24
Signature Algorithm: sha256WithRSAEncryption
27:24:67:6b:2b:39:3f:bb:f0:5d:d2:53:21:5a:20:80:51:af:
7f:5a:9f:89:52:75:21:f1:04:a7:3d:e6:36:bc:b4:40:09:ec:
c7:06:d1:74:f3:54:b9:eb:73:05:d0:42:61:0b:79:d0:fc:09:
87:69:d9:03:3f:aa:04:79:a3:92:c7:a1:78:3b:28:f2:e0:1b:
ad:3e:41:3b:61:e4:fc:d3:14:24:2c:92:2c:10:ab:ce:eb:1a:
fd:8c:e8:d4:47:fa:91:71:df:cd:e3:de:71:a4:52:5c:21:27:
ee:81:45:82:5a:71:65:49:b6:fb:c7:db:10:d6:f2:31:34:fc:
b4:ac:d4:20:fb:4c:1c:62:61:5c:6e:51:e8:0e:74:17:80:e0:
dc:f1:00:ec:98:04:70:fe:26:37:89:03:c3:5d:ef:01:57:cb:
85:4d:47:09:dc:45:61:d4:5c:48:56:93:d9:c2:c6:3c:5f:11:
33:b4:85:60:58:20:a4:b7:44:e7:04:5e:17:50:d0:7f:02:3e:
d2:95:aa:46:ce:25:9e:49:b9:a1:0d:0c:9b:8f:10:17:bc:0c:
33:ea:d3:22:d9:93:b5:b2:ec:1f:50:ab:35:af:e7:07:92:de:
4a:ee:91:90:71:27:b1:cb:83:5d:c7:17:e1:38:b3:6b:b0:f4:
89:00:8a:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:44 2024 by rpki-client on console-fra.rpki-client.org