Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/92901f-266e-49a3-8f56-a219cb4d4a3b/1/O3NmoA1IQpJD3edXv4zQZQUdlpQ.roa
File: O3NmoA1IQpJD3edXv4zQZQUdlpQ.roa (raw, json)
Hash identifier: myG8JfDg/urNvSDA/8VD97Wd2A66Z3tcL0e5zQk8ozg=
Subject key identifier: 3B:73:66:A0:0D:48:42:92:43:DD:E7:57:BF:8C:D0:65:05:1D:96:94
Certificate issuer: /CN=9bbbe200bbdf379b50455163017b9d4777f1db5d
Certificate serial: 01856C53B21E74A468B8086FC9CC95D93755
Authority key identifier: 9B:BB:E2:00:BB:DF:37:9B:50:45:51:63:01:7B:9D:47:77:F1:DB:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/m7viALvfN5tQRVFjAXudR3fx210.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/92901f-266e-49a3-8f56-a219cb4d4a3b/1/O3NmoA1IQpJD3edXv4zQZQUdlpQ.roa
Signing time: Sun 01 Jan 2023 07:55:02 +0000
ROA not before: Sun 01 Jan 2023 07:55:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15504
IP address blocks: 91.213.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:53:b2:1e:74:a4:68:b8:08:6f:c9:cc:95:d9:37:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9bbbe200bbdf379b50455163017b9d4777f1db5d
Validity
Not Before: Jan 1 07:55:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b7366a00d48429243dde757bf8cd065051d9694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:ac:31:59:38:4f:55:8c:df:4a:e5:94:f4:b5:
c2:d9:f7:2a:0a:e0:45:43:28:7a:64:7c:4e:56:6d:
ce:b4:7c:c3:5b:cd:50:c4:2d:e6:e5:0b:d5:79:6d:
27:e2:5b:27:47:81:b0:8c:8f:b8:0c:0c:9b:84:01:
c0:d5:ce:34:de:1b:dc:d0:60:7b:f1:6a:e1:d0:9e:
28:7b:23:99:b5:68:5c:62:4a:12:ef:fb:cf:59:a1:
d6:42:7e:55:a9:d2:92:1b:0a:3c:34:81:24:ed:8e:
ed:ee:be:58:86:ea:ee:83:a0:5e:59:05:48:bf:05:
5a:f5:6f:d4:4f:73:d7:84:fd:19:d6:70:98:87:83:
04:4d:08:53:a8:46:1a:eb:e0:5f:35:42:f8:b0:d9:
f8:b9:d0:f2:e2:6d:02:19:a0:3d:0d:9d:84:de:24:
70:06:89:86:3d:a7:59:11:74:b7:49:21:b1:28:6a:
e5:4c:9d:00:b2:01:4a:ce:78:31:b7:51:6d:c4:c4:
5a:76:aa:8f:1b:c6:b9:e8:30:1b:29:51:71:58:cb:
d8:a9:da:5d:08:b7:0c:55:a9:28:24:8f:f4:ff:8f:
62:6b:92:42:df:a6:2c:c4:e6:a9:bd:be:f8:1e:58:
70:29:2c:ea:08:35:ae:63:69:19:d0:6b:76:ba:44:
22:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:73:66:A0:0D:48:42:92:43:DD:E7:57:BF:8C:D0:65:05:1D:96:94
X509v3 Authority Key Identifier:
keyid:9B:BB:E2:00:BB:DF:37:9B:50:45:51:63:01:7B:9D:47:77:F1:DB:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/m7viALvfN5tQRVFjAXudR3fx210.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/92901f-266e-49a3-8f56-a219cb4d4a3b/1/O3NmoA1IQpJD3edXv4zQZQUdlpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/92901f-266e-49a3-8f56-a219cb4d4a3b/1/m7viALvfN5tQRVFjAXudR3fx210.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.152.0/24
Signature Algorithm: sha256WithRSAEncryption
51:ff:b7:1d:09:b5:89:8f:6c:e5:0d:65:c6:ee:6a:88:13:24:
ca:a6:e3:12:0e:e6:93:8b:52:ae:8c:e5:5b:37:b6:fd:09:7f:
d6:04:fe:9b:9c:1d:52:3c:c6:0d:c3:dd:5d:ad:5f:fa:c6:28:
87:24:5f:da:76:ad:24:8b:58:62:f1:00:0d:a2:f5:40:f5:d7:
41:f4:1c:03:9e:ba:a9:e6:4e:3a:71:f9:76:93:ae:7e:5d:6f:
b7:d0:61:81:67:2f:31:b9:2b:79:5a:da:be:91:36:fe:64:a2:
b2:fe:e5:7a:fa:6a:91:e6:00:1a:be:a0:f6:a8:ee:d4:2e:3d:
fb:ed:dd:f9:0a:f5:e1:ef:47:0d:a9:e2:1b:33:03:5f:64:cc:
03:35:28:64:ac:3a:12:3b:61:d4:1c:0d:48:d3:1b:d2:54:73:
2e:e8:0f:2b:c7:c9:32:ae:33:fb:44:71:fc:dd:c5:c3:a1:e3:
63:2f:b9:b0:37:cc:4b:b3:b7:6a:cf:83:9a:c7:7d:b5:62:f9:
d1:2d:a3:f4:2e:36:e0:c5:7b:6e:d8:b2:e3:c5:f4:45:0d:ef:
19:3c:f5:ed:23:29:14:d7:17:f0:4d:62:18:0e:6e:44:cc:06:
c3:9d:03:62:ad:03:81:19:c2:6f:96:58:f4:89:2f:96:6a:0a:
92:f4:c6:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:15 2024 by rpki-client on console-ams.rpki-client.org