Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/0AP9tlhPym-YBfuGUhttYVuxSXE.roa
File: 0AP9tlhPym-YBfuGUhttYVuxSXE.roa (raw, json)
Hash identifier: b4PahKJYeyPreVa+Pg6Y/DJ0oLp0PSsckab66oDmtjM=
Subject key identifier: D0:03:FD:B6:58:4F:CA:6F:98:05:FB:86:52:1B:6D:61:5B:B1:49:71
Certificate issuer: /CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Certificate serial: 0188D88D15323F007EE0DF8713E8DA07EBBA
Authority key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/0AP9tlhPym-YBfuGUhttYVuxSXE.roa
Signing time: Tue 20 Jun 2023 11:25:04 +0000
ROA not before: Tue 20 Jun 2023 11:25:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.209.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Aug 2023 07:28:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:d8:8d:15:32:3f:00:7e:e0:df:87:13:e8:da:07:eb:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Validity
Not Before: Jun 20 11:25:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d003fdb6584fca6f9805fb86521b6d615bb14971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:3f:33:b0:d6:67:8b:f9:65:18:11:c2:b2:ed:
bf:2e:81:1b:5a:9b:c2:ba:3c:4d:b7:bc:99:84:59:
11:f2:21:73:8b:d4:01:e6:9f:5b:4b:7e:4f:c3:a9:
f5:31:a7:b0:b6:49:62:59:b5:7b:15:47:63:fc:0b:
af:19:72:e3:79:6f:0a:24:00:e1:1a:6f:d6:1c:a5:
03:b4:1b:94:b2:5a:03:05:85:16:82:1a:1a:f2:95:
33:48:08:6c:e1:89:18:11:a0:b3:3c:7e:b2:65:b5:
34:cf:f0:4f:f7:c6:fa:68:a1:46:ae:82:70:4a:fc:
de:83:8e:dc:87:8d:a4:9e:e9:d5:1c:0e:14:8e:62:
63:25:16:c0:d6:42:86:83:fc:48:01:26:a3:a2:79:
bf:00:b4:f3:89:22:be:cf:87:3b:f9:4f:32:b3:1b:
54:11:5f:87:b4:2f:1f:5e:da:14:d8:db:92:3b:2c:
c4:36:58:77:da:3f:cc:93:1d:87:1f:f8:75:ea:35:
02:de:7c:4d:d3:ca:4f:d1:e1:2b:cd:01:34:f2:3d:
95:80:69:18:81:98:b7:96:bf:05:5a:e6:f8:2e:91:
db:a6:4f:ec:50:10:76:ef:f8:b5:87:10:a0:7f:3f:
ea:7b:0d:89:0e:84:59:bc:18:45:28:4f:d6:15:96:
08:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:03:FD:B6:58:4F:CA:6F:98:05:FB:86:52:1B:6D:61:5B:B1:49:71
X509v3 Authority Key Identifier:
keyid:7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/0AP9tlhPym-YBfuGUhttYVuxSXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:63:2e:41:38:76:f4:84:5f:f4:de:a0:fb:40:d8:42:b6:8f:
4a:34:14:8c:19:2c:3b:ba:57:36:1b:66:41:3d:24:0e:cd:f9:
55:a5:8e:c4:3d:5a:b4:2f:ea:93:40:f7:91:0f:cb:36:f0:7d:
90:5e:81:e4:43:2a:5f:c5:e1:d5:eb:01:d5:4d:9a:ba:71:38:
ff:42:1e:4d:45:24:d2:fc:c1:6e:78:17:36:8d:f6:0b:c7:70:
4e:43:f2:7d:2e:1d:6b:4c:41:f5:d9:81:9f:8c:93:93:27:ff:
57:72:2b:3c:3f:0b:14:42:33:d0:a9:8e:d0:a0:e8:db:aa:2f:
2e:31:9e:76:ce:11:0c:f3:53:7a:f1:9d:12:4b:db:bb:e3:fd:
05:43:b8:8e:41:2d:df:75:44:aa:39:7d:74:a1:2d:dc:37:cd:
bb:12:2b:89:69:68:11:83:28:43:c8:1b:57:19:79:33:51:70:
d5:92:66:63:93:55:ab:0c:63:f0:23:29:12:55:8c:92:d1:bc:
e1:5a:37:4a:a4:82:0a:70:19:24:68:96:ad:76:44:9c:22:a3:
df:2b:ad:53:77:14:5b:42:c1:32:37:75:1f:4a:15:4a:f5:d5:
83:ba:5c:6c:90:a1:d7:60:c4:cc:23:28:3a:8a:65:f3:86:74:
66:09:81:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:20 2024 by rpki-client on console-fra.rpki-client.org