Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/XvvtY_HV-IuMGcsGGNDScO7-Dvo.roa
File: XvvtY_HV-IuMGcsGGNDScO7-Dvo.roa (raw, json)
Hash identifier: iPHV1/873scqGCQ1OWp5f6fL2YbZ5cCSziQiGWDgFRA=
Subject key identifier: 5E:FB:ED:63:F1:D5:F8:8B:8C:19:CB:06:18:D0:D2:70:EE:FE:0E:FA
Certificate issuer: /CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Certificate serial: 01857383AA3BB0A08003F6852054217BB7D9
Authority key identifier: 7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/XvvtY_HV-IuMGcsGGNDScO7-Dvo.roa
Signing time: Mon 02 Jan 2023 17:24:46 +0000
ROA not before: Mon 02 Jan 2023 17:24:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211439
IP address blocks: 91.209.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Sep 2023 15:45:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:83:aa:3b:b0:a0:80:03:f6:85:20:54:21:7b:b7:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7fa3f99dba94a307b6cd2e1d90f678dac05681f8
Validity
Not Before: Jan 2 17:24:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5efbed63f1d5f88b8c19cb0618d0d270eefe0efa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:cb:09:98:9b:02:91:52:e6:38:f8:fd:1b:4b:
28:b5:75:f6:e8:6c:4a:de:17:9c:a1:2e:3f:1d:c3:
fc:e6:71:6d:e2:56:df:84:9f:56:11:18:4a:62:cf:
33:98:dd:fd:3f:bb:40:f4:6b:66:69:17:9b:6f:4e:
09:5a:af:82:99:7e:3d:19:4b:ec:a8:b4:f7:bf:0d:
0e:e1:80:5c:85:41:f3:ed:f6:53:24:98:83:4f:79:
53:34:79:94:82:3a:2a:16:b9:01:10:ad:b7:f0:86:
af:d7:98:c6:2d:a1:40:21:b9:0d:20:55:7a:ca:56:
6b:36:18:2f:8f:a6:30:87:08:82:9a:b7:55:90:20:
48:82:1a:52:2f:2d:2c:f6:81:96:d8:f2:d9:f2:c4:
7d:5c:2d:48:e3:15:3c:d4:7b:d8:cd:cc:74:92:b8:
62:a4:4a:76:55:e5:d4:99:64:a3:55:39:0a:57:98:
1d:41:92:1a:95:64:9e:f5:35:d2:14:1b:98:73:e0:
d4:d4:23:6c:05:fb:55:20:57:2f:d2:03:6c:91:ad:
a5:80:93:5b:35:1d:8c:d9:47:ea:76:d3:6b:64:61:
6f:06:fc:85:70:d6:3c:c7:2b:50:c2:f8:ee:ed:7d:
af:39:94:df:62:eb:4c:cb:4f:d5:44:8a:99:36:87:
04:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:FB:ED:63:F1:D5:F8:8B:8C:19:CB:06:18:D0:D2:70:EE:FE:0E:FA
X509v3 Authority Key Identifier:
keyid:7F:A3:F9:9D:BA:94:A3:07:B6:CD:2E:1D:90:F6:78:DA:C0:56:81:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6P5nbqUowe2zS4dkPZ42sBWgfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/XvvtY_HV-IuMGcsGGNDScO7-Dvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/5ae3c4-4aa4-4c62-8eb5-4ea47cce0c63/1/f6P5nbqUowe2zS4dkPZ42sBWgfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:b4:5e:bb:c2:88:cc:04:68:d1:a0:34:f5:a9:f1:32:2f:31:
af:fd:c9:63:ed:2d:c8:ce:c8:dc:1e:ae:65:f0:91:49:b9:fe:
85:02:d9:91:ec:b1:65:bd:93:75:30:39:52:f5:42:a4:03:f8:
6e:0d:4d:26:0a:9e:30:d7:77:06:87:55:40:96:da:f7:ac:67:
70:8f:25:22:d5:bc:15:21:69:5e:71:1f:45:0a:5c:f4:ec:24:
2e:29:54:7b:85:c7:f0:12:81:5d:68:18:cf:84:d1:1c:56:3e:
ea:a0:d1:8e:f8:e2:50:84:6f:9f:8b:41:ea:a4:ef:3e:08:ce:
b7:be:32:4f:64:67:1d:f8:e2:9e:11:1e:7a:f4:66:ad:37:d0:
54:f6:97:80:56:ff:ab:b6:0d:cd:af:76:83:de:17:c4:45:89:
d9:8c:c1:40:83:27:78:79:45:7e:c7:76:29:56:ab:07:87:b3:
3f:d1:4b:f1:d0:11:0f:b4:75:d7:9f:63:7b:49:53:09:90:86:
49:09:34:f7:2b:ad:12:a1:6e:61:31:d5:3f:9b:6b:3d:d4:6f:
d1:2b:1c:87:37:05:d0:09:ae:1a:c2:24:3c:15:67:d2:54:f8:
b0:cc:de:45:cc:1f:e5:be:db:cd:66:f8:3c:f5:88:1e:9f:b9:
b6:69:48:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:03 2024 by rpki-client on console-ams.rpki-client.org