Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/OH3j6n55FWRmEen5YhY1JgAZCvg.roa
File: OH3j6n55FWRmEen5YhY1JgAZCvg.roa (raw, json)
Hash identifier: LngaJOzaCQZyn31HSp+PSeayyq4+ovfRrKeclYU7U7c=
Subject key identifier: 38:7D:E3:EA:7E:79:15:64:66:11:E9:F9:62:16:35:26:00:19:0A:F8
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 018687F65BCA552531FF2A5173C5639B9048
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/OH3j6n55FWRmEen5YhY1JgAZCvg.roa
Signing time: Sat 25 Feb 2023 09:45:14 +0000
ROA not before: Sat 25 Feb 2023 09:45:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.232.103.0/24 maxlen: 24
91.231.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Apr 2023 17:51:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:87:f6:5b:ca:55:25:31:ff:2a:51:73:c5:63:9b:90:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Feb 25 09:45:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=387de3ea7e7915646611e9f96216352600190af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:ae:c9:ec:1a:95:8a:72:ea:cc:85:e7:44:ba:
7b:65:09:fb:a4:36:d4:6b:0c:ce:90:f7:6a:47:b9:
6e:c7:d6:8b:73:dc:ee:24:df:28:fa:cc:7e:8b:b7:
fe:78:cf:b4:e0:a8:e6:c1:a9:d4:bd:8b:dd:53:47:
03:c6:26:d8:f4:67:39:3c:de:c5:26:7c:a2:f9:bd:
84:07:6d:da:2a:96:21:7f:45:e4:f1:dd:8f:0a:54:
2b:f4:db:e3:de:bc:81:2b:eb:cf:08:f9:c3:26:19:
9b:35:40:c3:cb:48:76:74:81:0d:d6:ec:e9:87:f5:
38:91:cc:23:88:80:1c:c0:07:c7:59:a9:68:23:1a:
9a:c7:ca:4f:18:b0:ec:b2:01:96:ad:dc:64:4a:8d:
0f:aa:d5:4a:b4:cd:2e:65:d0:54:14:49:a0:5b:a3:
b4:67:18:24:6c:ca:e3:c0:ee:ca:e8:d6:c5:2d:c2:
69:15:fa:bc:05:a8:f8:4d:e0:c9:8e:26:3e:0b:47:
cd:1f:11:7a:a6:e6:68:ce:47:88:25:d5:e0:d6:bf:
9b:77:e6:87:29:05:0c:3d:fd:5c:e2:39:03:fb:8e:
f8:ac:53:59:72:cc:5f:6c:3a:b3:56:04:a4:70:1e:
92:d4:85:22:35:02:e0:47:77:ad:9f:03:4d:18:34:
9b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7D:E3:EA:7E:79:15:64:66:11:E9:F9:62:16:35:26:00:19:0A:F8
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/OH3j6n55FWRmEen5YhY1JgAZCvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
50:c5:50:3a:c4:26:c3:c4:17:6d:2b:b6:48:e4:a8:0e:17:a0:
4f:2f:87:15:51:f4:4e:1d:ac:8d:7a:75:0e:de:89:75:07:8c:
64:69:10:5c:f5:14:bb:30:3a:fc:7f:1f:98:ac:bb:ce:d7:62:
67:94:7c:50:6f:8c:1f:5f:59:ae:53:c8:43:48:a8:39:03:7a:
9f:e7:16:5b:1f:0b:4a:20:86:3f:dc:cc:ec:e9:eb:6f:73:97:
bd:8d:50:12:4b:63:86:96:8f:1a:e8:ce:05:e0:73:b1:b0:cc:
09:9f:8d:71:35:34:92:4a:ee:66:62:29:9b:fd:45:36:21:e5:
81:64:b1:f2:c8:e2:80:2e:64:ba:cb:47:ee:eb:97:a7:39:86:
32:fb:99:07:c3:d9:64:55:a8:eb:21:07:99:35:94:6d:8b:a7:
ed:44:b0:df:9b:58:c4:19:53:52:ac:27:b6:ef:c7:70:c8:41:
75:e1:3d:de:fd:bb:a6:a9:a5:2f:b8:4b:18:18:16:43:b2:06:
56:6e:f3:d7:a3:81:5d:39:f7:4b:cc:79:05:16:72:14:e4:0c:
3d:a8:cc:ac:64:63:61:25:75:8c:b7:05:cd:0c:e5:67:67:aa:
cd:de:5b:b8:a8:28:33:2f:74:1c:60:ff:90:7c:0a:4b:4a:f0:
1c:86:70:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org