Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/0qSlKI7n5Gg9jE8kkeQa1KN4uIY.roa
File: 0qSlKI7n5Gg9jE8kkeQa1KN4uIY.roa (raw, json)
Hash identifier: nuo7fMoo+krq0ZlAmTk1gdmEsz3y6jz8dE6bLlYK5ow=
Subject key identifier: D2:A4:A5:28:8E:E7:E4:68:3D:8C:4F:24:91:E4:1A:D4:A3:78:B8:86
Certificate issuer: /CN=d4459dd6f7ccecfebeb434fc08db8e22d4569c23
Certificate serial: 018E1286B1CF6E44FE5783E8C6E9EDE9EF12
Authority key identifier: D4:45:9D:D6:F7:CC:EC:FE:BE:B4:34:FC:08:DB:8E:22:D4:56:9C:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1EWd1vfM7P6-tDT8CNuOItRWnCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/0qSlKI7n5Gg9jE8kkeQa1KN4uIY.roa
Signing time: Wed 06 Mar 2024 06:50:00 +0000
ROA not before: Wed 06 Mar 2024 06:50:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.223.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Mar 2024 07:35:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:12:86:b1:cf:6e:44:fe:57:83:e8:c6:e9:ed:e9:ef:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4459dd6f7ccecfebeb434fc08db8e22d4569c23
Validity
Not Before: Mar 6 06:50:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2a4a5288ee7e4683d8c4f2491e41ad4a378b886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:72:1e:28:7f:23:cb:b4:38:1b:57:2b:e8:83:
ba:38:1f:18:db:74:27:b7:b7:19:9b:ee:80:fb:67:
8b:cd:fd:2b:f5:81:06:da:b4:5f:32:57:8b:f4:c0:
57:c0:24:45:92:60:02:1c:af:71:e1:ef:78:b3:e1:
fe:07:84:b3:59:1a:5a:c4:f8:c2:09:8d:12:85:f2:
62:3d:a5:dc:06:91:66:f3:b2:c9:b8:e5:aa:3f:9e:
c8:30:72:8c:5e:27:e8:d1:fd:11:c2:3b:34:d5:5d:
e1:cb:91:a1:6c:c2:c3:60:92:fc:70:1d:01:f7:d4:
12:9b:7d:2b:ec:e9:32:30:cf:39:2f:82:d3:ef:3f:
d5:a0:89:fb:d3:ef:0f:07:ca:f2:6c:27:c2:e5:43:
75:cd:4c:89:84:b9:f8:31:a2:0c:f8:7c:06:e3:87:
3d:46:2e:fd:b1:03:74:d1:b4:53:fd:0f:ae:d1:ae:
6d:17:b8:eb:12:04:87:00:ec:d9:d8:6f:04:69:db:
fa:47:eb:83:3f:d4:18:6c:9a:fc:d6:f7:0b:de:aa:
96:bc:5a:c9:b2:df:97:9c:15:af:da:ee:a8:45:41:
f1:c3:12:cb:96:fa:97:e5:8f:66:3a:9d:ab:2f:4d:
32:d2:01:06:a3:61:4e:69:72:8d:95:64:09:6e:09:
d5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:A4:A5:28:8E:E7:E4:68:3D:8C:4F:24:91:E4:1A:D4:A3:78:B8:86
X509v3 Authority Key Identifier:
keyid:D4:45:9D:D6:F7:CC:EC:FE:BE:B4:34:FC:08:DB:8E:22:D4:56:9C:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1EWd1vfM7P6-tDT8CNuOItRWnCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/0qSlKI7n5Gg9jE8kkeQa1KN4uIY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/0aeda7-6d3a-418e-96d5-1ca2d55e2061/1/1EWd1vfM7P6-tDT8CNuOItRWnCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.67.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:5d:3c:fb:49:ce:c9:f3:7c:56:d1:19:cf:87:17:e6:bf:53:
b6:57:27:06:7f:9f:f1:10:bc:67:f0:4f:99:d8:c6:8f:09:49:
c0:bb:86:5f:c4:b2:65:79:14:24:b8:3f:51:77:40:d2:35:dc:
7e:1f:8f:8a:d0:59:7b:5e:db:3e:71:35:af:aa:97:04:7c:34:
99:6b:dc:d0:0b:8e:75:6d:78:98:68:e9:36:7b:ef:0e:f7:30:
b2:e2:7e:ee:ba:f8:5b:fb:22:f5:f6:a1:37:cb:95:28:77:a1:
b8:eb:8f:d7:ea:86:28:52:c6:15:45:a5:19:1e:ea:b8:c2:a2:
18:cc:51:08:cc:ca:9c:46:fd:2a:ab:30:37:e8:a2:26:bd:38:
18:b9:5e:17:7b:1d:e6:4d:99:a7:50:56:5a:b9:f7:a7:b8:87:
77:ec:63:9f:a7:06:d5:23:72:d5:1d:c7:e5:c2:56:83:98:84:
85:4e:3d:da:b0:d2:11:32:19:13:9a:4c:08:f1:95:7e:58:48:
40:82:1c:60:ff:cd:45:16:4a:13:35:4a:c6:a0:93:d6:e5:56:
a3:64:4b:5f:13:44:28:e1:28:81:a9:5f:59:4c:a6:97:07:17:
94:c8:bc:58:9c:cd:17:e4:4c:cb:8f:8e:3a:da:1c:ea:c4:61:
71:14:1b:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:03 2024 by rpki-client on console-ams.rpki-client.org