Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/05CUB3g-fI_CJ1vp4CXU67D3IBQ.roa
File: 05CUB3g-fI_CJ1vp4CXU67D3IBQ.roa (raw, json)
Hash identifier: MEFhNXsTEh8gnaqOaGJbGYAoqHlmvLLG93AoBXGsSiA=
Subject key identifier: D3:90:94:07:78:3E:7C:8F:C2:27:5B:E9:E0:25:D4:EB:B0:F7:20:14
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 018A2D5FFB5A2857CD332DF1945D6F0081CC
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/05CUB3g-fI_CJ1vp4CXU67D3IBQ.roa
Signing time: Fri 25 Aug 2023 15:46:19 +0000
ROA not before: Fri 25 Aug 2023 15:46:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41801
IP address blocks: 91.102.160.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 09 Oct 2023 11:43:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2d:5f:fb:5a:28:57:cd:33:2d:f1:94:5d:6f:00:81:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Aug 25 15:46:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3909407783e7c8fc2275be9e025d4ebb0f72014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4f:db:f6:86:35:e6:14:b4:14:6d:d2:fd:76:
87:9e:0f:77:f7:b3:57:41:47:fa:63:0a:56:36:d1:
b7:8a:b7:4b:29:82:f2:69:13:7c:c3:66:b4:e0:a6:
fd:59:1c:03:f7:c5:25:29:ac:c6:21:d3:2a:c2:51:
9e:2a:70:8b:18:cd:a1:9e:9d:e3:84:13:8f:bc:ee:
3a:1f:8d:33:9f:8b:f6:bb:3a:69:7b:f5:02:28:02:
2d:51:09:fc:18:d5:23:23:2d:18:38:1f:bd:45:3c:
a9:4a:39:c0:c9:44:d0:a0:fd:5d:e5:fd:17:b8:87:
ce:05:60:1c:ed:20:25:f2:a5:5c:a8:0c:1c:4a:22:
89:53:c7:2d:d4:a5:8d:87:6b:5a:00:73:43:3a:b3:
f4:e9:15:7a:71:1b:41:e9:c3:8e:d0:6f:2a:33:b2:
e9:29:72:5f:4f:23:c3:b4:03:91:0d:88:1c:87:da:
96:c1:be:e8:aa:bc:0e:a6:a3:fa:6e:d9:62:8b:6e:
bb:9e:93:db:61:c6:0e:c8:e0:d6:eb:3b:c9:4f:19:
60:9d:81:4b:4d:e0:6d:19:68:c3:eb:56:db:f3:12:
d8:a1:6b:83:7a:1e:f6:04:a0:41:98:f6:97:ff:24:
fc:05:aa:9b:0b:a1:84:03:b3:96:30:cd:9f:c1:e4:
48:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:90:94:07:78:3E:7C:8F:C2:27:5B:E9:E0:25:D4:EB:B0:F7:20:14
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/05CUB3g-fI_CJ1vp4CXU67D3IBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.160.0/22
Signature Algorithm: sha256WithRSAEncryption
05:5b:56:c8:ee:f9:65:a9:e3:b7:ae:01:df:5b:cc:b9:b9:a3:
be:b3:7d:1b:6e:dc:01:59:07:54:82:56:d0:48:eb:53:ba:cc:
c9:b1:b1:32:32:49:db:b4:ca:90:82:3b:db:f2:28:ad:a9:85:
05:5b:bd:01:44:61:59:d8:88:c5:27:10:52:47:ad:e3:68:40:
6d:31:d3:7d:0a:e1:15:6f:b9:d9:e3:49:61:3a:5b:b2:d2:c1:
85:21:5c:f7:5e:3c:9f:64:e8:7f:98:e9:9d:e1:46:e7:37:5d:
45:10:22:d3:76:75:a0:47:4c:78:f9:13:11:aa:df:93:b1:64:
fe:76:70:0e:d1:84:fe:07:3d:2e:84:2d:ad:e4:e1:9f:a2:a1:
91:1d:c9:f6:52:ea:46:41:5e:43:07:25:fa:1e:44:6e:fd:86:
ea:90:b1:94:a3:d9:f3:71:84:b5:35:07:34:ac:c4:b0:41:54:
60:fc:42:dd:3c:2d:30:b7:ba:99:4f:8f:ba:20:7a:9e:46:02:
63:b0:d4:19:02:ed:4d:d2:51:a1:5d:e0:0f:82:c1:a3:ef:32:
f9:63:37:87:be:fc:ed:66:4d:16:02:05:78:62:ec:9a:ed:64:
5e:eb:2d:ee:71:fb:11:e9:07:5a:8d:53:03:fd:0f:7d:06:b2:
69:04:d3:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:14 2024 by rpki-client on console-fra.rpki-client.org