Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/Kw53phl9UkqS0vdyNJ1u7XKmoxU.roa
File: Kw53phl9UkqS0vdyNJ1u7XKmoxU.roa (raw, json)
Hash identifier: 2sY0Df9mKiUUf03Iv3w+bGfv0GrmXyI/VfUdZjyqkIc=
Subject key identifier: 2B:0E:77:A6:19:7D:52:4A:92:D2:F7:72:34:9D:6E:ED:72:A6:A3:15
Certificate issuer: /CN=a20cc67154b403145d139469886127ab629eb928
Certificate serial: 018A931436ACACA9E6E5019121749334A7B0
Authority key identifier: A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/Kw53phl9UkqS0vdyNJ1u7XKmoxU.roa
Signing time: Thu 14 Sep 2023 09:44:50 +0000
ROA not before: Thu 14 Sep 2023 09:44:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216306
IP address blocks: 91.208.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:93:14:36:ac:ac:a9:e6:e5:01:91:21:74:93:34:a7:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a20cc67154b403145d139469886127ab629eb928
Validity
Not Before: Sep 14 09:44:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b0e77a6197d524a92d2f772349d6eed72a6a315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:36:b4:0a:0b:2b:9d:c8:3c:c8:ee:8a:cf:8c:
ab:bd:ad:01:f0:56:22:45:fe:58:06:ce:1f:e4:c2:
0d:f4:9e:8c:a0:3e:9f:ca:37:4a:20:4b:d4:8d:a5:
bc:8f:b7:e9:78:75:1b:a3:c7:de:f0:bd:2a:fe:da:
b2:ad:45:51:63:81:5f:6f:47:93:13:c9:3a:6b:2a:
b4:6f:08:54:4a:9b:05:e8:93:c8:09:5e:a1:d9:fc:
aa:3b:2a:91:61:ea:61:4b:df:0f:56:4b:4a:b0:2a:
ce:37:c1:21:50:34:92:6c:9b:68:6a:c3:c6:fc:d3:
e6:86:5d:52:5e:63:4e:f8:7b:22:34:ce:1a:52:bd:
2b:23:86:2d:5d:35:3a:a9:19:e9:76:ff:cc:f0:e6:
f0:9a:8c:4e:6d:63:41:34:6b:61:28:0c:50:8d:e3:
22:35:22:64:14:e4:28:ea:4e:03:5e:f0:c4:e4:cb:
b4:7e:87:dc:f0:b7:6b:c3:6d:3f:af:24:57:ce:87:
dd:64:44:fd:ab:20:f8:b3:91:c8:6c:bf:e4:1e:7b:
67:f4:76:91:e2:63:bc:cb:2a:17:2c:11:b5:1f:9b:
30:9e:be:0e:3c:07:7e:e7:fe:24:f9:67:ab:8d:ac:
b6:c1:57:3b:75:99:1c:9b:b5:42:dd:f5:e8:fc:81:
79:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:0E:77:A6:19:7D:52:4A:92:D2:F7:72:34:9D:6E:ED:72:A6:A3:15
X509v3 Authority Key Identifier:
keyid:A2:0C:C6:71:54:B4:03:14:5D:13:94:69:88:61:27:AB:62:9E:B9:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ogzGcVS0AxRdE5RpiGEnq2KeuSg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/Kw53phl9UkqS0vdyNJ1u7XKmoxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/dd8878-2941-4c15-b204-8fc33737ceab/1/ogzGcVS0AxRdE5RpiGEnq2KeuSg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.118.0/24
Signature Algorithm: sha256WithRSAEncryption
61:6e:e9:54:a6:59:da:57:51:e8:41:81:c9:4c:fb:a5:bd:93:
86:18:55:09:85:0a:78:66:c3:2f:c5:6f:2c:2e:64:f9:7b:1f:
6a:08:7c:f1:61:c3:20:38:bf:96:a1:4b:6f:06:f8:13:85:24:
f3:68:28:ae:67:4b:96:50:97:41:05:88:0e:a5:fe:4f:74:e7:
b2:0d:cd:8b:06:13:0a:1e:f5:75:88:03:8d:db:a2:3d:5d:2d:
50:6c:00:6a:14:3d:21:87:0a:f8:e6:a7:1f:ea:cc:0d:66:16:
b4:8a:ac:16:72:0c:93:69:ee:17:55:b4:7c:42:16:26:b7:75:
fb:48:1e:2b:67:b9:7c:eb:e1:ff:0c:bf:66:e1:ea:d7:bf:0c:
0f:c4:c7:6e:ab:50:95:5f:22:45:11:37:44:d9:76:5a:22:3e:
1c:5b:de:96:1a:82:20:8c:bd:38:71:b9:ae:c4:55:cf:44:7d:
df:28:e2:cd:61:80:d9:98:a5:e3:6c:42:74:7a:55:01:20:4e:
e5:24:83:51:a4:7b:6b:ad:8c:5a:81:e0:37:3a:58:71:f8:f2:
51:48:19:95:04:1e:7c:c6:82:53:67:2b:74:b9:6f:e8:b9:f3:
ce:ac:c9:ea:d1:e8:96:11:a7:6b:ab:1a:78:a2:48:29:0a:c1:
41:7c:35:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:37 2024 by rpki-client on console-fra.rpki-client.org