Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/pR5bTuskk28vYBLhnaWeec94DSM.roa
File: pR5bTuskk28vYBLhnaWeec94DSM.roa (raw, json)
Hash identifier: 6YA3gCtPbdCCUjUfLrmYPv9SV67nVPz6LY985Ebb+yU=
Subject key identifier: A5:1E:5B:4E:EB:24:93:6F:2F:60:12:E1:9D:A5:9E:79:CF:78:0D:23
Certificate issuer: /CN=36b100e1f6f3ffe6e35e987e0d0195b7993a8d33
Certificate serial: 018570C2B320C77F73B8B3A4C59CFF2E9E6B
Authority key identifier: 36:B1:00:E1:F6:F3:FF:E6:E3:5E:98:7E:0D:01:95:B7:99:3A:8D:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NrEA4fbz_-bjXph-DQGVt5k6jTM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/pR5bTuskk28vYBLhnaWeec94DSM.roa
Signing time: Mon 02 Jan 2023 04:34:46 +0000
ROA not before: Mon 02 Jan 2023 04:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 6716
IP address blocks: 194.1.183.0/24 maxlen: 24
91.208.51.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:b3:20:c7:7f:73:b8:b3:a4:c5:9c:ff:2e:9e:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36b100e1f6f3ffe6e35e987e0d0195b7993a8d33
Validity
Not Before: Jan 2 04:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a51e5b4eeb24936f2f6012e19da59e79cf780d23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:0e:f6:e3:f6:67:6e:88:fe:b5:24:a7:ef:a9:
1b:c1:42:3e:a3:ae:86:76:bc:f1:f9:4f:f5:84:f0:
9c:5e:eb:e4:5c:d5:67:6b:d7:8b:5b:76:e4:f5:84:
ad:61:09:1e:46:4e:12:8e:22:e3:ad:cb:9c:7d:d8:
c1:bc:66:8d:cb:53:4b:81:51:0d:83:b2:ec:91:1d:
36:0e:3b:57:55:45:30:f7:ab:a8:54:7e:f3:6c:87:
0c:10:e0:29:35:36:55:1f:4f:8a:14:43:36:b6:af:
c2:3c:36:f9:a6:33:20:dd:72:8e:52:43:77:fd:51:
88:6f:fd:6d:7b:21:77:af:6b:de:07:ff:50:7c:5b:
23:f2:40:b5:ac:2f:76:51:54:a7:56:1a:37:e6:cb:
f4:79:0a:00:8d:cd:c9:25:27:8c:56:f6:81:0f:37:
c3:0d:fa:6a:29:3b:7c:46:d0:e4:d9:56:5b:85:dc:
e2:1c:6b:cc:4f:dd:50:58:76:60:20:a3:b0:95:57:
86:b4:fa:18:4c:ff:3b:38:99:a4:e8:df:6d:44:af:
b5:3c:88:ed:9f:be:bd:13:a9:3e:77:54:f5:76:03:
c3:6b:c8:2e:df:08:e7:3c:dd:ba:b4:20:9e:06:dc:
9b:43:7c:6e:1d:7c:1b:c0:ef:4b:3d:b1:27:e6:b4:
69:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1E:5B:4E:EB:24:93:6F:2F:60:12:E1:9D:A5:9E:79:CF:78:0D:23
X509v3 Authority Key Identifier:
keyid:36:B1:00:E1:F6:F3:FF:E6:E3:5E:98:7E:0D:01:95:B7:99:3A:8D:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NrEA4fbz_-bjXph-DQGVt5k6jTM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/pR5bTuskk28vYBLhnaWeec94DSM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/71338d-e603-4926-a0f4-e22c6ed78485/1/NrEA4fbz_-bjXph-DQGVt5k6jTM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.51.0/24
194.1.183.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:fe:70:23:42:40:a9:f6:71:62:80:f1:57:01:18:e0:16:ba:
3d:89:a1:20:39:f9:02:16:ae:4b:02:e5:0c:54:69:83:4d:d8:
81:78:68:24:51:b4:6e:1b:4e:71:7c:97:cf:a5:b3:11:15:cc:
06:ff:76:53:78:c8:be:4a:f5:f1:7e:90:f0:0e:19:64:65:65:
0b:fe:0c:da:5a:27:2f:4d:90:84:c6:9a:cc:6b:80:c1:8b:39:
59:49:f8:2e:1e:17:56:6f:1d:cd:3d:a9:1a:2e:74:8b:5b:e4:
5e:3f:6a:7f:1b:9a:c0:6b:9e:94:12:7d:52:22:00:a5:e0:98:
40:2c:e3:b6:9f:39:c7:0c:75:54:85:55:69:0c:b9:94:e9:9b:
6f:72:2c:ca:b6:7a:b4:40:57:33:e1:fc:59:57:e0:3f:02:a7:
f1:fb:b6:6b:78:d7:bc:2b:ed:98:fe:06:6f:ca:6d:f1:77:56:
72:d2:12:73:00:d8:3c:a4:9b:c2:96:9e:6b:28:31:38:25:9d:
31:79:f1:0b:f0:b2:26:bb:ac:f6:f5:48:22:a6:33:a6:02:05:
ab:f3:85:25:79:11:26:bd:cb:db:69:2e:92:85:22:81:03:a0:
64:12:48:31:54:1e:05:bd:4d:cf:d5:f0:fb:0b:19:68:2c:60:
d1:68:f5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:05 2024 by rpki-client on console-ams.rpki-client.org