Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/pP75ETq_7SS78zJAWWD8IQNSiC0.roa
File: pP75ETq_7SS78zJAWWD8IQNSiC0.roa (raw, json)
Hash identifier: oNwGTwS9sDKkz2XFfrkn7ExmPWQe5PCKsZkXGN6iCew=
Subject key identifier: A4:FE:F9:11:3A:BF:ED:24:BB:F3:32:40:59:60:FC:21:03:52:88:2D
Certificate issuer: /CN=cb5e6fd624fec0692fe7069e379231e524d80fbc
Certificate serial: 01856D5CF101C733644D4527357C3CE7C8CC
Authority key identifier: CB:5E:6F:D6:24:FE:C0:69:2F:E7:06:9E:37:92:31:E5:24:D8:0F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y15v1iT-wGkv5waeN5Ix5STYD7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/pP75ETq_7SS78zJAWWD8IQNSiC0.roa
Signing time: Sun 01 Jan 2023 12:44:45 +0000
ROA not before: Sun 01 Jan 2023 12:44:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64413
IP address blocks: 91.209.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5c:f1:01:c7:33:64:4d:45:27:35:7c:3c:e7:c8:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb5e6fd624fec0692fe7069e379231e524d80fbc
Validity
Not Before: Jan 1 12:44:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a4fef9113abfed24bbf332405960fc210352882d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:e1:5c:e9:37:ba:83:31:62:39:f0:63:c9:5c:
65:6f:19:67:d9:f4:11:16:c0:69:c9:e0:db:0c:e0:
f8:f9:7e:be:00:b8:17:35:a5:81:66:1c:e0:cc:00:
96:bd:f4:a5:da:c5:1a:41:74:65:e6:e5:4f:1c:92:
33:82:20:eb:89:ca:b3:c2:db:81:d8:4b:75:f0:00:
b9:7d:2d:48:ea:7b:20:ec:0d:5e:d1:cc:51:2a:9d:
97:6e:2e:53:57:55:1c:e1:2d:bf:db:4f:6d:e0:62:
58:bc:1a:cc:0d:b4:f7:7b:9f:9e:36:e0:e6:9c:32:
89:af:bb:6d:85:04:39:16:a6:de:3e:fe:8e:dd:98:
53:ed:56:64:50:df:14:1e:31:59:f5:7d:b3:51:27:
34:58:e4:25:b1:b1:d1:c5:a2:20:62:66:7e:4e:d6:
da:4f:e1:77:91:00:b3:6d:a2:8b:dc:8c:f7:d8:11:
f0:54:bf:89:16:9e:61:ae:c1:d3:8c:b5:ad:34:14:
d2:cd:9a:bd:8e:7d:71:85:0b:c2:1e:b0:d8:53:ff:
73:e7:80:5a:c6:88:c8:44:df:13:71:36:82:82:41:
cc:a6:e7:fe:4c:15:07:a8:49:c2:15:aa:63:83:7e:
3a:f5:3f:94:83:a5:1a:39:29:72:ba:d5:38:81:76:
22:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:FE:F9:11:3A:BF:ED:24:BB:F3:32:40:59:60:FC:21:03:52:88:2D
X509v3 Authority Key Identifier:
keyid:CB:5E:6F:D6:24:FE:C0:69:2F:E7:06:9E:37:92:31:E5:24:D8:0F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y15v1iT-wGkv5waeN5Ix5STYD7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/pP75ETq_7SS78zJAWWD8IQNSiC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6ba656-e25e-49ab-a4bf-6826e25b807f/1/y15v1iT-wGkv5waeN5Ix5STYD7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.96.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:10:00:e6:ed:1e:47:32:00:1a:14:63:9d:a7:2f:bc:7b:47:
8d:06:9c:da:cb:b2:00:91:03:8e:76:c1:e8:b9:07:ab:08:bf:
0d:40:2d:90:fa:f7:48:ab:df:77:cb:97:31:9a:63:47:89:70:
76:5f:14:94:3c:46:c9:e1:59:f3:15:7b:5e:61:99:0b:f6:c3:
e1:18:92:e1:3d:cd:1a:ff:84:5f:1a:e0:8e:a2:bf:fe:3f:ff:
72:d5:b6:47:12:72:3d:5b:fb:ee:88:0e:bb:6e:4b:be:43:3b:
2f:33:b6:82:23:52:87:79:12:3a:86:61:df:d1:00:e1:1c:c1:
16:54:6a:b1:a4:55:35:58:f3:ca:9a:2e:01:0b:93:16:80:64:
99:24:35:8e:d4:72:ce:0f:31:7e:c6:c9:06:c5:6c:18:ef:9c:
ae:60:a5:d3:14:28:e7:67:ea:b3:2c:c8:fa:9f:ad:29:57:cd:
a9:7c:b8:8d:87:82:fb:c7:e3:9a:9b:67:3c:82:92:8f:56:91:
36:98:db:93:6b:6c:6a:d2:93:8f:da:0b:03:f4:5d:4a:e9:ec:
77:10:0d:44:1c:1b:9e:5f:de:60:26:72:d2:1a:76:1c:87:80:
c1:eb:3f:94:9c:f1:78:ff:cf:c7:0b:6e:50:07:2a:7e:f5:35:
58:22:c9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:58 2024 by rpki-client on console-ams.rpki-client.org