Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/3rUKQFntzkzTBoMvSZVtE75ObhY.roa
File: 3rUKQFntzkzTBoMvSZVtE75ObhY.roa (raw, json)
Hash identifier: SLc22XsP5aDFuyZRKotjcR/i+fqosTyt0OrVhNV6hwU=
Subject key identifier: DE:B5:0A:40:59:ED:CE:4C:D3:06:83:2F:49:95:6D:13:BE:4E:6E:16
Certificate issuer: /CN=abe0a8a462d0de1f4d3012c3e39e5cda603e8f91
Certificate serial: 0185710BF355431C12181C01A2C325313607
Authority key identifier: AB:E0:A8:A4:62:D0:DE:1F:4D:30:12:C3:E3:9E:5C:DA:60:3E:8F:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q-CopGLQ3h9NMBLD455c2mA-j5E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/3rUKQFntzkzTBoMvSZVtE75ObhY.roa
Signing time: Mon 02 Jan 2023 05:54:46 +0000
ROA not before: Mon 02 Jan 2023 05:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58125
IP address blocks: 91.239.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0b:f3:55:43:1c:12:18:1c:01:a2:c3:25:31:36:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=abe0a8a462d0de1f4d3012c3e39e5cda603e8f91
Validity
Not Before: Jan 2 05:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=deb50a4059edce4cd306832f49956d13be4e6e16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5a:33:d8:7c:4c:46:b2:b0:53:f9:29:24:08:
0c:aa:c6:a0:d5:6c:ae:01:59:4c:0c:03:58:3a:2c:
95:e4:f2:af:8b:19:10:ca:32:bd:c8:10:82:a9:74:
4c:28:78:53:a9:3f:61:7f:60:18:0e:a3:1f:8f:d9:
d7:cb:fc:9e:99:c5:87:5d:b0:06:d9:1b:3d:c3:c4:
8d:eb:cf:e6:83:35:c1:a4:45:ff:ce:0f:4f:9a:73:
5c:0a:b0:48:66:75:1d:41:dc:37:54:44:8c:d9:50:
f1:7a:96:54:29:a2:5c:07:5d:7c:f1:6d:be:7b:04:
38:a4:94:8c:88:60:68:d0:0f:c9:fb:fb:d5:0f:dc:
ba:db:cb:59:4a:7e:ce:ff:93:9e:82:df:9a:e6:be:
8b:17:0d:c2:e5:ce:66:08:1f:59:ea:04:9c:d2:9d:
f1:40:e1:75:96:2a:14:fa:e7:cb:4b:13:13:5e:46:
9a:94:12:3a:11:1a:c5:8c:9c:10:cf:3f:ce:ee:27:
8d:4a:a9:65:2d:3f:1c:e8:9c:74:9b:f7:f2:d3:2c:
f8:66:e7:96:50:f9:c7:6f:01:4e:25:87:3b:02:54:
12:a8:29:e0:48:6b:f6:5b:e5:1f:de:48:d9:3d:3a:
67:27:66:9c:6a:29:e8:4e:73:b6:81:a9:b4:6b:96:
4d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:B5:0A:40:59:ED:CE:4C:D3:06:83:2F:49:95:6D:13:BE:4E:6E:16
X509v3 Authority Key Identifier:
keyid:AB:E0:A8:A4:62:D0:DE:1F:4D:30:12:C3:E3:9E:5C:DA:60:3E:8F:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q-CopGLQ3h9NMBLD455c2mA-j5E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/3rUKQFntzkzTBoMvSZVtE75ObhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/dec31c-dcd4-4da7-9dda-c4a07d61689d/1/q-CopGLQ3h9NMBLD455c2mA-j5E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.14.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:de:fb:b2:81:0b:d5:a4:79:e4:b4:39:d6:79:73:b4:cf:88:
84:e3:bf:4e:b8:a0:4b:60:f5:66:2c:ba:26:83:c3:64:e8:7f:
7a:88:dc:7e:5a:4e:ed:fa:88:3a:75:1a:70:d9:e0:1d:8f:92:
33:05:14:0e:76:86:51:04:09:13:87:0b:fd:d5:0f:f8:42:15:
f2:9c:16:a2:56:71:5a:83:fd:02:5f:86:17:15:bc:ad:72:7a:
fd:99:36:3f:b8:0a:9e:05:76:cf:bc:23:34:4a:81:0b:36:14:
4d:d8:6e:4d:9c:8d:a4:cb:cc:b1:96:a3:d3:4e:4d:95:e6:97:
9a:27:4d:eb:fd:76:29:ef:19:e8:9c:72:2c:23:c6:29:79:f4:
09:9f:1a:ab:2f:e7:7f:dd:71:7a:a3:fa:23:d6:59:d8:42:c2:
21:6e:f5:51:c5:42:33:24:86:5d:75:be:5e:22:be:d4:65:01:
4b:34:6c:b9:e8:db:ac:b6:66:18:b3:d7:cb:bf:70:19:ca:64:
5a:c6:31:68:47:f1:72:0c:f7:c0:71:8b:8b:8d:5b:c2:68:65:
72:65:ef:64:e9:ef:f5:6e:0a:9f:1e:35:f2:8f:6c:b9:43:7f:
4c:52:fe:64:2f:97:0f:3a:5b:ba:9e:f6:ee:89:67:01:c6:fa:
3f:ec:db:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:53 2024 by rpki-client on console-fra.rpki-client.org