Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/psRN6sJP3yGlObpVnPxAgWA9Pl0.roa
File: psRN6sJP3yGlObpVnPxAgWA9Pl0.roa (raw, json)
Hash identifier: YpGHO/GjUCZMgLlZ0OIK6e6tuX/0cud5JBKVw7CMEsc=
Subject key identifier: A6:C4:4D:EA:C2:4F:DF:21:A5:39:BA:55:9C:FC:40:81:60:3D:3E:5D
Certificate issuer: /CN=1f9ffd8ee32b3e357978d9cb99216cce8137a324
Certificate serial: 018570C2B32C00CE70EA5E764091A10F60B2
Authority key identifier: 1F:9F:FD:8E:E3:2B:3E:35:79:78:D9:CB:99:21:6C:CE:81:37:A3:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H5_9juMrPjV5eNnLmSFszoE3oyQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/psRN6sJP3yGlObpVnPxAgWA9Pl0.roa
Signing time: Mon 02 Jan 2023 04:34:46 +0000
ROA not before: Mon 02 Jan 2023 04:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25540
IP address blocks: 91.220.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:c2:b3:2c:00:ce:70:ea:5e:76:40:91:a1:0f:60:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f9ffd8ee32b3e357978d9cb99216cce8137a324
Validity
Not Before: Jan 2 04:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6c44deac24fdf21a539ba559cfc4081603d3e5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:d0:b8:bd:ca:79:6c:7d:a5:8a:a6:d6:5b:c1:
81:bf:fd:8b:62:bf:5b:f9:b9:6d:cf:dc:2e:86:f9:
6e:d7:2f:a5:d7:09:18:7d:ad:e6:e5:9f:7c:15:8b:
db:1c:a7:ee:43:8a:52:3c:ba:97:1d:f6:a4:b3:2e:
ed:54:c5:76:d4:31:57:a0:ab:bf:14:0d:48:22:76:
c9:1a:43:87:d4:fe:03:60:04:fb:ef:25:62:41:7e:
0a:47:04:62:6e:05:5c:3c:b5:d0:94:13:56:24:13:
0d:11:db:8a:df:c5:0a:ef:4d:b7:ac:ab:ac:b5:c4:
1e:48:5a:67:f0:97:2b:6c:77:a6:67:fc:99:7e:09:
83:4b:e9:68:c2:5e:67:af:ff:f3:f5:9d:31:99:2d:
fe:27:ba:28:ca:ee:ca:93:20:51:db:e8:68:e3:fe:
50:97:93:e1:5b:85:6f:91:dc:7f:ba:66:71:1e:04:
0b:5a:a6:16:be:aa:6c:e7:7c:68:23:28:77:0d:48:
07:ef:72:5c:02:4d:2d:18:6a:29:1e:0a:3b:40:8d:
15:a5:ec:b9:a4:95:64:e0:a3:56:ab:71:47:bd:ce:
58:71:d2:05:04:31:5d:ee:5f:8f:cc:95:ba:45:f6:
17:4d:22:c6:6b:7b:12:10:f2:cd:b6:db:b4:51:a2:
a8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C4:4D:EA:C2:4F:DF:21:A5:39:BA:55:9C:FC:40:81:60:3D:3E:5D
X509v3 Authority Key Identifier:
keyid:1F:9F:FD:8E:E3:2B:3E:35:79:78:D9:CB:99:21:6C:CE:81:37:A3:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H5_9juMrPjV5eNnLmSFszoE3oyQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/psRN6sJP3yGlObpVnPxAgWA9Pl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/03ffd0-7e8b-43fe-8eee-aae638dbb1c1/1/H5_9juMrPjV5eNnLmSFszoE3oyQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.116.0/24
Signature Algorithm: sha256WithRSAEncryption
33:d0:29:4a:5f:dc:bc:3e:fa:69:dd:84:e7:1f:fa:53:01:37:
dd:b9:b3:a3:ff:cf:92:98:87:51:57:d8:b3:47:13:53:61:a2:
d2:e1:33:de:c1:00:6f:7c:d4:95:26:80:50:76:47:72:59:31:
75:5a:dc:ae:ce:bc:87:c1:c1:20:e1:63:77:1a:49:96:e2:ae:
7e:35:11:66:b1:20:ff:e8:a6:0f:14:a9:cf:55:0c:f2:c8:86:
21:f5:89:20:f8:d7:e4:30:b0:c4:c8:d4:f9:c1:e2:eb:44:72:
e2:d7:fc:ff:75:8b:8b:0a:50:11:73:8a:ee:d5:8f:36:d1:0e:
51:22:74:54:7f:80:fc:52:28:85:51:00:c1:bb:67:ed:e1:14:
a2:a5:7e:41:47:c0:3a:ac:77:56:38:b5:43:a1:8d:34:c9:4b:
02:15:c4:a4:ad:71:33:56:72:5b:c8:ac:65:9e:1c:5b:4a:2c:
85:57:61:65:33:d5:85:0b:ba:e6:9d:19:8d:97:90:72:f9:1b:
89:9c:02:5f:b4:5a:32:56:f1:97:1a:96:64:8e:ad:2e:7c:87:
0a:f6:7c:fa:08:c3:f9:2c:6a:91:ec:9a:ee:62:8c:f3:96:90:
ea:2f:00:11:bd:a6:55:9e:f2:82:7a:fe:23:ff:41:c4:95:66:
fb:4c:bf:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:21 2024 by rpki-client on console-ams.rpki-client.org