Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/e02a6c-ac2e-47c7-8b82-de2f6ea020ba/1/dWLtsfXGw-0ziKzjS-HBnks5t6E.roa
File: dWLtsfXGw-0ziKzjS-HBnks5t6E.roa (raw, json)
Hash identifier: Zl0WH4J3IaikZgMFjmnyf8FIUNWMA8RjFm43JClIcIA=
Subject key identifier: 75:62:ED:B1:F5:C6:C3:ED:33:88:AC:E3:4B:E1:C1:9E:4B:39:B7:A1
Certificate issuer: /CN=108af9e9c5652b35844b2e5d4b537e9fcd4452f3
Certificate serial: 01856EB91F0D84823BFADF8DCCCE7EAD1FC5
Authority key identifier: 10:8A:F9:E9:C5:65:2B:35:84:4B:2E:5D:4B:53:7E:9F:CD:44:52:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EIr56cVlKzWESy5dS1N-n81EUvM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/e02a6c-ac2e-47c7-8b82-de2f6ea020ba/1/dWLtsfXGw-0ziKzjS-HBnks5t6E.roa
Signing time: Sun 01 Jan 2023 19:05:03 +0000
ROA not before: Sun 01 Jan 2023 19:05:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211790
IP address blocks: 91.201.200.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:b9:1f:0d:84:82:3b:fa:df:8d:cc:ce:7e:ad:1f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=108af9e9c5652b35844b2e5d4b537e9fcd4452f3
Validity
Not Before: Jan 1 19:05:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7562edb1f5c6c3ed3388ace34be1c19e4b39b7a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:6b:eb:97:53:34:ac:12:eb:00:c9:12:e3:07:
73:07:39:0d:f4:2b:de:fa:f1:09:56:a3:02:7d:2e:
3b:68:98:4f:fe:d4:3d:54:22:12:30:82:9c:04:ea:
d3:ef:a6:55:f2:8f:53:21:5a:e6:e3:ef:c5:e4:6a:
52:c5:ac:e1:ca:8e:fa:5a:8a:a0:4e:8d:97:a8:35:
07:89:e1:ce:93:0c:48:56:3b:c2:66:da:80:5c:ee:
36:9a:7f:52:4c:b7:b5:83:b6:8c:c2:fb:20:15:7e:
88:a1:a5:32:f7:23:75:b3:83:1e:dd:4e:09:82:24:
df:74:3c:b2:22:99:26:f4:d5:cd:ad:2e:f2:61:be:
a2:5f:c6:87:02:07:4c:cb:c0:10:77:45:66:5f:31:
61:23:ba:51:76:f7:04:53:50:cd:9f:61:75:04:99:
4b:4e:39:24:2b:05:18:a7:51:94:47:fe:3b:34:8e:
89:8a:23:61:53:03:8d:6c:0b:c8:45:6a:f8:aa:fb:
ab:30:06:bb:df:20:03:17:4a:df:44:41:46:b7:28:
d5:e2:60:09:f2:38:e7:8c:f5:50:64:b6:db:24:db:
a1:27:38:b7:bc:64:3a:d8:3f:d1:83:9f:24:e8:09:
0d:a2:1a:37:a3:92:9c:58:8d:7a:20:44:23:70:b6:
25:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:62:ED:B1:F5:C6:C3:ED:33:88:AC:E3:4B:E1:C1:9E:4B:39:B7:A1
X509v3 Authority Key Identifier:
keyid:10:8A:F9:E9:C5:65:2B:35:84:4B:2E:5D:4B:53:7E:9F:CD:44:52:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EIr56cVlKzWESy5dS1N-n81EUvM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e02a6c-ac2e-47c7-8b82-de2f6ea020ba/1/dWLtsfXGw-0ziKzjS-HBnks5t6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/e02a6c-ac2e-47c7-8b82-de2f6ea020ba/1/EIr56cVlKzWESy5dS1N-n81EUvM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.200.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:f8:28:b8:91:9a:f0:e7:2f:50:a1:b5:b8:64:38:b8:51:95:
34:b3:a6:e7:0b:1a:cd:3b:87:cf:1b:14:bb:30:6c:51:22:bc:
c6:aa:91:76:66:16:b3:71:93:5e:85:77:e7:9c:80:5d:0a:8d:
7d:42:f4:ff:b6:4d:90:83:cf:df:30:0e:d2:b0:d3:ba:b2:dc:
89:bd:e4:a7:ee:c0:cd:75:24:99:a5:35:99:be:5d:50:08:56:
c1:87:46:33:00:36:f9:18:62:46:12:43:68:e7:56:a4:c7:e2:
32:2b:d8:95:e5:cd:fe:09:c5:7c:e0:9d:7f:b4:6a:76:35:d2:
99:af:e0:7e:15:d8:b2:e5:b1:44:3b:6f:c9:78:34:c1:cc:5e:
35:b8:06:dc:f5:5d:12:bf:d3:e2:52:b3:01:62:66:65:37:c1:
5b:6c:e0:49:d4:b7:4a:73:69:c6:50:19:19:c0:d6:d3:ef:d7:
5b:18:c3:4d:c2:8e:88:f5:c4:c4:52:eb:11:3e:95:99:05:54:
49:40:99:15:a3:cf:b5:17:80:f7:6e:36:d1:00:67:ce:5b:26:
8c:59:6f:c4:5c:f2:4a:41:be:98:cd:e1:e5:4c:60:a5:8b:fb:
dd:59:6e:79:56:96:5d:66:4b:5a:6d:6d:0d:0d:90:7c:fb:62:
5c:85:49:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 04:09:19 2024 by rpki-client on console-ams.rpki-client.org