Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/3AzQEk4Gn6ornQAFGFv3Hk1klss.roa
File: 3AzQEk4Gn6ornQAFGFv3Hk1klss.roa (raw, json)
Hash identifier: N5OpA1lhIOEoxYV2EXLI6tWPvIMuLxUtPLuoT/Kn2v0=
Subject key identifier: DC:0C:D0:12:4E:06:9F:AA:2B:9D:00:05:18:5B:F7:1E:4D:64:96:CB
Certificate issuer: /CN=26e3fc79b638b123191dafa4e886d3a5acad487f
Certificate serial: 018572B435BFB5B1176947C37BFEEB23C17F
Authority key identifier: 26:E3:FC:79:B6:38:B1:23:19:1D:AF:A4:E8:86:D3:A5:AC:AD:48:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JuP8ebY4sSMZHa-k6IbTpaytSH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/3AzQEk4Gn6ornQAFGFv3Hk1klss.roa
Signing time: Mon 02 Jan 2023 13:38:10 +0000
ROA not before: Mon 02 Jan 2023 13:38:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211087
IP address blocks: 91.216.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 27 Jun 2023 06:44:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:35:bf:b5:b1:17:69:47:c3:7b:fe:eb:23:c1:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26e3fc79b638b123191dafa4e886d3a5acad487f
Validity
Not Before: Jan 2 13:38:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc0cd0124e069faa2b9d0005185bf71e4d6496cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:28:f9:f4:bc:dd:c5:a6:73:7a:7e:b9:cf:73:
43:1a:1a:06:53:5a:c4:92:9a:8a:40:8e:79:9a:b4:
9e:ad:60:e7:03:c3:10:38:7a:ef:91:b3:75:d7:82:
2d:2a:ca:5b:a4:df:04:9e:c0:db:9f:f2:e3:03:cd:
a8:5d:21:5b:3d:ad:9a:64:5b:d6:20:d5:49:fc:ad:
e6:a5:d7:24:dd:90:5b:d0:b3:2d:f4:8b:c4:4c:35:
2a:43:60:65:77:f6:d4:1b:aa:4c:aa:d8:73:2a:78:
d8:c1:01:97:01:f0:68:81:c4:8f:43:24:51:f8:0c:
76:86:7f:d2:d3:c5:4f:24:36:7a:db:60:d2:9d:78:
95:06:68:4f:46:0b:1b:2c:ed:04:21:b5:3c:ba:54:
3f:d2:ab:71:bb:62:0c:d9:67:20:aa:ab:a3:d5:0d:
e9:6b:46:75:17:22:72:6e:c0:44:aa:2c:9e:88:35:
55:05:5d:bb:7d:50:6b:9b:ac:78:b4:b4:21:70:35:
b7:66:1b:08:16:58:0c:6e:82:20:2d:2d:7a:b0:f8:
9f:7f:21:27:54:10:c4:8c:2f:1a:0b:20:8f:ee:e7:
ea:9f:77:39:6d:24:0f:11:3e:db:ea:54:37:25:b0:
4c:e3:17:a4:37:10:9b:80:67:b3:b7:36:f8:69:e7:
f9:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:0C:D0:12:4E:06:9F:AA:2B:9D:00:05:18:5B:F7:1E:4D:64:96:CB
X509v3 Authority Key Identifier:
keyid:26:E3:FC:79:B6:38:B1:23:19:1D:AF:A4:E8:86:D3:A5:AC:AD:48:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JuP8ebY4sSMZHa-k6IbTpaytSH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/3AzQEk4Gn6ornQAFGFv3Hk1klss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/JuP8ebY4sSMZHa-k6IbTpaytSH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.186.0/24
Signature Algorithm: sha256WithRSAEncryption
40:2c:a3:68:69:f3:72:d0:ed:36:45:b8:3d:1c:e7:b5:9e:9a:
54:92:b1:04:46:b6:e0:f0:06:89:3d:c4:45:1a:d9:f9:b8:b9:
e4:62:e2:be:f2:b1:e7:66:e3:4e:6c:93:5e:8b:3e:9b:1f:8d:
0b:42:1d:d0:25:0a:ed:d8:78:1c:9c:e4:ac:c2:63:a2:96:6f:
94:c5:e3:5f:f0:37:c8:c3:f9:e1:bd:55:21:e7:a0:23:84:9a:
a6:ce:71:40:3f:17:2f:68:7a:12:5b:0f:35:0d:51:8f:bb:eb:
7e:5d:ca:35:8d:10:9b:61:f9:fe:a4:17:3d:24:61:eb:a6:fb:
50:15:e8:a6:04:e9:67:9c:e8:68:92:cc:f3:65:f6:ab:db:15:
ca:c9:6e:10:4f:c1:d6:cf:1a:a9:b0:90:88:f0:68:5e:9c:c3:
cf:8b:34:6e:0d:bd:af:36:e8:0a:ca:b0:be:ef:21:d7:0d:8c:
b3:bc:90:65:5a:51:47:40:09:93:75:13:d4:ea:a0:6d:c4:d4:
2f:53:ed:c4:4c:06:30:eb:f4:94:2c:2a:f3:cf:3a:1f:48:16:
65:56:c6:63:ea:9a:ad:0c:c4:32:c7:98:13:82:73:41:c9:95:
9a:00:33:2a:f7:8f:42:9f:35:18:dc:9b:39:73:b3:6b:90:c7:
6a:54:fd:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:44 2024 by rpki-client on console-ams.rpki-client.org