Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/XP5fA_Ue8vBcxoO3Ankhas-LPhU.roa
File: XP5fA_Ue8vBcxoO3Ankhas-LPhU.roa (raw, json)
Hash identifier: TE3z+zrhxht3nmR7t8v+zkw+0k4oEo8Cm7gO1S2IXXo=
Subject key identifier: 5C:FE:5F:03:F5:1E:F2:F0:5C:C6:83:B7:02:79:21:6A:CF:8B:3E:15
Certificate issuer: /CN=8f137200c9ea1560a3f42fd7e100ed28411416bc
Certificate serial: 01856FF94A86F6160957D29BBE2B454F4C65
Authority key identifier: 8F:13:72:00:C9:EA:15:60:A3:F4:2F:D7:E1:00:ED:28:41:14:16:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jxNyAMnqFWCj9C_X4QDtKEEUFrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/XP5fA_Ue8vBcxoO3Ankhas-LPhU.roa
Signing time: Mon 02 Jan 2023 00:54:46 +0000
ROA not before: Mon 02 Jan 2023 00:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199114
IP address blocks: 91.198.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 10 Oct 2023 06:21:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:4a:86:f6:16:09:57:d2:9b:be:2b:45:4f:4c:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f137200c9ea1560a3f42fd7e100ed28411416bc
Validity
Not Before: Jan 2 00:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5cfe5f03f51ef2f05cc683b70279216acf8b3e15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:b3:18:a6:41:8c:d5:2b:fa:0f:aa:c1:01:51:
bb:1a:df:cf:25:f2:45:1f:ce:fa:2c:49:96:77:90:
ab:81:64:5f:0c:95:87:79:31:3b:fc:81:18:d8:eb:
0d:67:48:97:b3:e4:d2:20:b0:47:10:48:3b:70:83:
a5:d6:61:63:11:08:11:fe:66:23:c2:8d:f3:1b:6e:
63:f4:28:9f:61:93:90:62:e1:08:f0:e3:e6:8f:1d:
ae:7b:d7:c0:91:ee:8e:72:19:2c:fa:52:06:b1:a0:
6a:a2:8a:8f:15:23:62:5e:6a:c2:23:60:4d:7a:03:
1b:cb:12:ec:6f:c9:91:eb:98:da:f1:75:fc:86:a4:
f4:c1:0b:d5:48:f5:dc:85:a5:42:3f:31:05:fb:a7:
1b:d4:53:6a:28:dc:b5:c2:b6:0f:13:87:93:6b:ac:
92:d8:b8:a3:4b:30:57:65:dd:ed:b3:c0:fc:ef:6d:
59:1e:44:dd:0f:da:cd:aa:0e:d1:58:2d:0c:32:99:
9b:bb:d7:06:c5:68:2e:d8:b0:d0:83:04:0d:d7:f5:
2d:89:c3:cf:1e:a0:e1:9e:02:58:72:eb:5d:7c:62:
b8:bd:7d:7d:cf:ad:ce:7f:31:0e:b0:45:71:e9:da:
7d:52:1e:96:e6:fe:18:32:37:00:ff:0e:0e:9b:2e:
f8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:FE:5F:03:F5:1E:F2:F0:5C:C6:83:B7:02:79:21:6A:CF:8B:3E:15
X509v3 Authority Key Identifier:
keyid:8F:13:72:00:C9:EA:15:60:A3:F4:2F:D7:E1:00:ED:28:41:14:16:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jxNyAMnqFWCj9C_X4QDtKEEUFrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/XP5fA_Ue8vBcxoO3Ankhas-LPhU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/ddbbab-5edc-4a14-b0e7-eb80221e538d/1/jxNyAMnqFWCj9C_X4QDtKEEUFrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.18.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:2a:09:08:1b:d5:1a:da:79:6b:41:35:9a:e7:c0:92:fe:d6:
10:4e:fb:3b:12:66:07:d8:a8:20:b2:d4:56:08:5d:70:7f:c6:
00:53:b7:39:92:c7:77:53:cb:19:1a:3f:56:c7:ae:8b:43:c3:
3b:7b:1b:5a:c8:2e:ef:98:46:19:40:a4:67:c9:39:b5:8b:d5:
24:a9:3a:63:c9:c0:92:2c:b8:4d:58:43:57:29:f6:a9:81:37:
d3:d4:8a:c4:52:aa:b1:dd:5b:08:48:af:e6:1a:99:25:67:21:
d7:3d:85:fd:c4:5e:3d:1f:35:f1:13:a8:6a:03:ad:99:53:bf:
d2:19:6b:8c:3c:76:99:7e:6a:1a:3a:6f:c8:39:bd:d1:f5:d3:
e2:28:51:7c:da:3d:10:63:7e:99:62:a0:b7:78:67:01:d4:a9:
9d:96:66:df:58:b3:ef:5f:4e:b3:cc:bc:73:6f:52:35:94:ef:
73:ec:15:4a:02:e2:48:c9:76:3f:76:2d:ac:0f:ee:4d:a8:9d:
4d:ef:85:2b:d2:50:61:6c:4d:1e:b8:a5:49:b6:af:e7:49:ff:
52:0c:2f:a2:72:47:8e:14:16:cf:14:a2:7f:88:2b:16:b9:8f:
08:a8:08:b8:a8:8f:89:f4:a4:04:82:73:7b:30:e6:02:6a:8e:
93:3d:50:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:09:59 2024 by rpki-client on console-ams.rpki-client.org