Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/AZYXdmC0oiZZCwJ1TARDrjiSQeM.roa
File: AZYXdmC0oiZZCwJ1TARDrjiSQeM.roa (raw, json)
Hash identifier: 46bSXtFKVC2Ai5z2Fy4C2nWWUKvgmsnaafYjSBraDuE=
Subject key identifier: 01:96:17:76:60:B4:A2:26:59:0B:02:75:4C:04:43:AE:38:92:41:E3
Certificate issuer: /CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Certificate serial: 018C20C181374BC14774BD3671D2B3F15B0A
Authority key identifier: 57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/AZYXdmC0oiZZCwJ1TARDrjiSQeM.roa
Signing time: Thu 30 Nov 2023 15:03:21 +0000
ROA not before: Thu 30 Nov 2023 15:03:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211261
IP address blocks: 91.210.126.0/24 maxlen: 24
185.204.201.0/24 maxlen: 24
185.204.200.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 06 Dec 2023 12:51:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:20:c1:81:37:4b:c1:47:74:bd:36:71:d2:b3:f1:5b:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=577021dcdf44b6afdd3810547c55a79bd1a9fa3b
Validity
Not Before: Nov 30 15:03:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0196177660b4a226590b02754c0443ae389241e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f6:24:05:e2:6e:6c:79:cc:f6:67:c3:83:6e:
2b:6a:21:aa:6c:4f:c2:bd:dc:c2:2f:ed:ad:80:a6:
df:61:fc:a4:64:b0:af:5c:be:14:d9:ba:39:a3:41:
2c:2a:e5:8f:a7:1a:b2:b0:aa:21:9b:4c:39:83:35:
66:da:54:65:7b:d5:19:26:c4:88:d5:d9:01:65:22:
82:24:f0:3b:40:34:11:21:c5:d2:1f:8c:6d:84:6c:
53:b3:6a:80:09:a6:bf:de:56:71:4d:7a:8e:3e:b0:
2c:4e:22:9a:f2:04:37:d9:4a:b9:03:f1:93:68:ee:
77:68:40:92:f2:97:20:41:0d:82:94:30:a4:e6:09:
b4:39:b1:71:6a:4d:9e:a2:f4:36:6a:86:f7:e7:5f:
9f:3c:fb:2e:3f:9b:f1:a0:f1:16:a5:26:76:a7:89:
9f:45:e4:0f:c6:ae:15:b4:f2:bc:1d:d7:b4:86:97:
3e:1d:80:8a:e4:3f:f6:44:2d:88:86:a2:74:1d:02:
b3:f0:d2:3b:0c:91:fb:76:98:2e:96:de:c6:bc:3e:
b5:e5:70:c6:2a:90:4f:ef:0a:0d:5d:92:95:d3:b2:
69:27:b2:dd:01:5c:41:1c:63:64:ea:72:81:35:e4:
c3:32:64:f3:de:44:8d:19:2f:31:ec:24:0e:35:75:
32:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:96:17:76:60:B4:A2:26:59:0B:02:75:4C:04:43:AE:38:92:41:E3
X509v3 Authority Key Identifier:
keyid:57:70:21:DC:DF:44:B6:AF:DD:38:10:54:7C:55:A7:9B:D1:A9:FA:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/AZYXdmC0oiZZCwJ1TARDrjiSQeM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/0ac27a-2159-48d7-8bfd-c907ae1c211e/1/V3Ah3N9Etq_dOBBUfFWnm9Gp-js.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.126.0/24
185.204.200.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:d6:ca:46:df:5c:a1:88:f8:9e:ca:75:57:d9:a3:1b:b7:c3:
98:c7:69:a9:d2:89:27:5a:a4:e5:c3:4a:97:99:66:91:05:58:
05:f5:50:2c:ab:f7:22:45:ee:99:c9:f9:a6:89:3a:f8:f6:54:
d0:06:53:54:1b:bf:1c:d7:5b:dc:78:10:04:f5:27:8e:ce:34:
f6:b8:f1:32:de:b4:43:99:4e:07:7a:19:b1:1c:1e:9c:39:6f:
34:54:77:30:4f:de:e9:21:9d:78:f9:cd:9b:8f:92:8f:7b:aa:
fa:4b:1f:33:70:77:dd:1f:fc:fb:a3:a5:1c:89:ed:d9:12:49:
fb:16:94:7b:44:fa:be:e0:3c:8d:a4:5a:bf:99:80:89:a5:42:
47:e4:af:3b:ff:18:36:96:93:a1:4d:e4:05:eb:32:e8:d4:16:
a2:ac:f0:f1:ad:f0:46:bc:3a:7d:c7:26:47:50:8c:79:dc:f8:
e1:0b:c6:37:a5:3a:31:fb:60:66:d7:e4:cb:5f:7b:53:4f:b9:
35:d8:73:6b:f2:90:5b:94:fa:16:08:2c:49:f2:e9:1c:b0:42:
06:92:97:4a:c8:81:d2:32:71:fe:0d:0b:64:f1:9a:e7:f8:ba:
a7:b4:01:41:94:71:84:f3:4e:a0:db:cb:83:f0:39:5f:58:bc:
42:d9:86:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:15 2024 by rpki-client on console-fra.rpki-client.org