Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/cNX7PSlg0dtS8IHxTsrqGtnzrRE.roa
File: cNX7PSlg0dtS8IHxTsrqGtnzrRE.roa (raw, json)
Hash identifier: fpmQWdAiY1wg6rx8l+5GatFM3BlFgBcOvg6PDWN1hJ8=
Subject key identifier: 70:D5:FB:3D:29:60:D1:DB:52:F0:81:F1:4E:CA:EA:1A:D9:F3:AD:11
Certificate issuer: /CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Certificate serial: 01856DD3E753CE107FC43C240EC73AF0E6A6
Authority key identifier: 05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/cNX7PSlg0dtS8IHxTsrqGtnzrRE.roa
Signing time: Sun 01 Jan 2023 14:54:41 +0000
ROA not before: Sun 01 Jan 2023 14:54:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48384
IP address blocks: 91.227.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d3:e7:53:ce:10:7f:c4:3c:24:0e:c7:3a:f0:e6:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05e1d07de6f128f469c4c3b3028adf8d4d37e2d9
Validity
Not Before: Jan 1 14:54:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=70d5fb3d2960d1db52f081f14ecaea1ad9f3ad11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:f8:cd:e2:49:ca:de:7e:b2:c1:cf:7a:b8:
c3:da:39:81:03:4a:f5:67:55:72:96:b6:39:57:13:
9a:82:30:7f:cd:3a:a2:c7:c8:b4:d5:ab:bc:ee:8c:
2a:c6:e3:f5:bd:f6:e2:3e:02:85:7b:ac:e2:aa:f5:
de:79:39:9a:ea:9c:57:39:78:1c:3f:80:21:de:dc:
42:27:f0:bf:13:33:ea:1e:bf:89:7c:10:d2:74:ec:
23:c4:1a:23:52:6b:ce:fc:8e:f9:de:e8:75:43:fd:
d5:f4:69:a9:ba:fe:28:c8:6a:00:f6:5b:70:6c:15:
e0:94:26:a4:e8:91:1a:1f:23:26:98:d9:d2:4d:76:
96:9f:3f:b2:25:70:2a:73:9a:e5:5d:ab:1c:b6:fd:
4a:8e:31:75:96:6c:c5:08:4a:e2:02:76:53:a8:99:
7d:a5:69:1b:80:8f:f2:7f:74:48:b7:a3:4c:60:5c:
3e:ba:50:6e:ea:32:e3:4d:55:91:11:96:20:f7:61:
e2:8e:e4:33:00:33:3a:86:fd:90:10:90:67:e8:33:
62:4d:30:36:b6:e6:03:a3:99:d0:10:86:02:2e:39:
1f:5b:ae:14:cd:c1:2f:d0:2e:93:6f:f5:e6:92:79:
fa:a0:cb:df:23:35:d9:c7:65:f1:28:ac:f1:52:fa:
c7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D5:FB:3D:29:60:D1:DB:52:F0:81:F1:4E:CA:EA:1A:D9:F3:AD:11
X509v3 Authority Key Identifier:
keyid:05:E1:D0:7D:E6:F1:28:F4:69:C4:C3:B3:02:8A:DF:8D:4D:37:E2:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BeHQfebxKPRpxMOzAorfjU034tk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/cNX7PSlg0dtS8IHxTsrqGtnzrRE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/9ce8f5-fed2-47ea-83b3-8d13f7b3f142/1/BeHQfebxKPRpxMOzAorfjU034tk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.55.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ac:bd:2b:ea:e8:d9:2e:22:df:5f:38:f2:18:48:c0:e9:7d:
1f:de:cd:36:28:16:82:e5:ac:d6:ec:37:8e:bd:9f:f4:89:55:
84:ae:fa:d3:ab:9e:16:c1:e6:a5:a5:92:23:02:3c:ae:89:ac:
29:0a:d9:47:f9:3c:00:06:89:3c:68:3d:2e:13:43:97:d9:a0:
bd:ec:10:ee:bc:d3:c7:4d:bb:0c:e3:af:74:bf:18:bb:82:b8:
7a:65:f7:2d:1c:c7:49:80:fd:65:e1:a7:a4:a5:11:df:e5:ab:
96:64:5f:4b:1c:d8:59:94:ff:01:07:1f:14:92:6a:97:8d:7c:
9e:bc:06:55:e5:11:88:c8:39:8e:c3:70:05:6a:53:3f:3e:f0:
e8:b7:49:7b:12:f1:68:3c:ff:b8:d6:75:91:ce:82:83:4f:07:
71:01:45:4f:3b:6b:dc:67:6b:92:4e:96:ca:78:cf:1a:04:32:
2a:aa:a7:3d:5a:d2:5f:9f:0a:b5:63:91:f2:d9:15:cd:7c:9e:
66:b2:66:7d:c0:1a:ce:74:31:e2:bd:ef:7f:7a:85:31:b0:96:
62:53:be:86:f5:cb:52:e5:f9:20:b0:25:75:e0:75:dd:53:ea:
37:27:47:00:1d:f5:31:8f:ab:2a:66:32:51:61:0c:87:e5:8e:
44:c6:02:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:54 2024 by rpki-client on console-ams.rpki-client.org