Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/A91ad-R3zb0R3YleWVtOjKYxRX0.roa
File: A91ad-R3zb0R3YleWVtOjKYxRX0.roa (raw, json)
Hash identifier: 0TmI6qSnqByf7eU07uzq7ML170j/KCPCCAMam6eW4r0=
Subject key identifier: 03:DD:5A:77:E4:77:CD:BD:11:DD:89:5E:59:5B:4E:8C:A6:31:45:7D
Certificate issuer: /CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Certificate serial: 018B3788FDBD26AC90EFA39E51BD3E66B9C5
Authority key identifier: 84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/A91ad-R3zb0R3YleWVtOjKYxRX0.roa
Signing time: Mon 16 Oct 2023 08:10:06 +0000
ROA not before: Mon 16 Oct 2023 08:10:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197304
IP address blocks: 213.91.136.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 00:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:37:88:fd:bd:26:ac:90:ef:a3:9e:51:bd:3e:66:b9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84b2f4fa5163af96168e88fbf9cb4ed1ed8fb4c4
Validity
Not Before: Oct 16 08:10:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=03dd5a77e477cdbd11dd895e595b4e8ca631457d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:49:76:1c:8c:f4:3b:55:5b:58:80:0d:3c:a7:
73:b6:64:47:02:fb:82:4c:cb:e8:22:b3:6f:d8:5f:
80:d8:06:b4:25:1b:34:ae:d7:f1:87:0b:49:62:91:
47:cb:bf:44:38:20:91:2d:61:cf:ea:3e:6e:b5:c9:
ec:da:da:70:63:93:72:68:2b:70:db:bd:dc:d7:6f:
f6:62:f5:62:a7:49:e7:f3:19:4b:3b:85:cd:e7:7a:
93:9b:d4:36:b9:06:a6:f8:0c:24:74:1e:55:fa:da:
2b:a5:2d:de:37:8e:f3:4c:24:bb:1d:92:db:80:9f:
4f:01:c0:2d:ca:15:f8:03:3e:08:3d:4c:3f:e2:d3:
92:17:cd:33:c0:d2:29:73:f8:7a:8f:ca:0c:d2:41:
61:e9:eb:ff:75:a6:8b:18:ab:e6:53:e1:ec:52:31:
5e:0e:41:79:f3:2b:15:35:f4:d6:04:d8:de:9f:e9:
b7:74:fc:8d:26:5a:7d:4f:0a:27:2c:a0:b8:15:5b:
12:f5:18:19:ab:e8:87:49:34:fd:5a:26:89:38:31:
e3:3b:76:0e:16:f7:81:76:d1:33:b1:2a:58:50:b8:
8c:00:5a:e6:c5:95:51:29:dc:e9:51:fe:db:c7:aa:
59:fd:9c:28:88:0a:4a:2a:7c:27:87:f8:4d:66:f3:
7c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:DD:5A:77:E4:77:CD:BD:11:DD:89:5E:59:5B:4E:8C:A6:31:45:7D
X509v3 Authority Key Identifier:
keyid:84:B2:F4:FA:51:63:AF:96:16:8E:88:FB:F9:CB:4E:D1:ED:8F:B4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/A91ad-R3zb0R3YleWVtOjKYxRX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/4aa789-878b-472b-b847-872ba2d9f44c/1/hLL0-lFjr5YWjoj7-ctO0e2PtMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.91.136.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:df:f1:0c:df:aa:8c:46:3d:37:83:d3:2e:90:7f:0f:37:e0:
0d:74:89:35:b5:bf:e9:91:a4:55:f7:e5:89:38:10:06:cb:53:
80:d9:a5:28:8b:17:ae:e1:1a:a3:6b:78:eb:9d:1b:22:91:bd:
d1:fe:c3:76:4b:f4:f2:92:70:b4:ab:fd:ae:ae:23:78:0c:27:
95:26:15:f8:e5:ee:4d:1b:15:a9:eb:8f:f8:69:f5:f3:42:2a:
4b:9b:e1:6f:dc:19:e6:19:6c:e0:f9:0b:f5:f3:bf:93:f3:3e:
22:92:06:b8:81:02:21:83:18:09:93:8f:72:a0:8f:e6:9b:4b:
37:fd:1e:d7:f0:79:d1:93:91:ed:de:49:7e:5e:b2:1e:01:6e:
4c:19:c1:9a:08:2a:0d:83:0c:19:0f:68:2f:3d:12:d9:d5:c6:
51:34:8e:16:5d:cf:ad:50:7b:b6:10:eb:93:cc:d7:82:8a:f5:
a3:4c:2d:7c:93:d7:44:a6:db:ce:59:c1:6d:22:6f:35:57:1d:
06:77:32:ef:b1:18:88:2d:f4:26:b1:13:c0:49:72:b6:4f:5c:
45:bb:a2:1e:b2:3e:e7:72:8a:9b:50:48:fe:c2:c8:3f:64:a2:
55:f1:66:d0:76:29:3a:85:e8:06:eb:82:b3:3a:fe:35:fb:20:
30:ff:24:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:53 2024 by rpki-client on console-ams.rpki-client.org