Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/NsOwZz9PdwJ8BUuKMWIvUN3Pgz8.roa
File: NsOwZz9PdwJ8BUuKMWIvUN3Pgz8.roa (raw, json)
Hash identifier: 2hsjUIMMSq8G0j8K5SkfCdFYTo+nIhWIvPRPwQaSS7Q=
Subject key identifier: 36:C3:B0:67:3F:4F:77:02:7C:05:4B:8A:31:62:2F:50:DD:CF:83:3F
Certificate issuer: /CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Certificate serial: 018B687DC9DADA14E65D330CEE6A93727E27
Authority key identifier: B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/NsOwZz9PdwJ8BUuKMWIvUN3Pgz8.roa
Signing time: Wed 25 Oct 2023 20:19:15 +0000
ROA not before: Wed 25 Oct 2023 20:19:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216108
IP address blocks: 91.241.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Nov 2023 09:12:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:68:7d:c9:da:da:14:e6:5d:33:0c:ee:6a:93:72:7e:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Validity
Not Before: Oct 25 20:19:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=36c3b0673f4f77027c054b8a31622f50ddcf833f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:eb:1a:87:8b:b6:05:c3:9b:f6:44:99:a0:81:
c9:4e:53:88:4c:a7:b8:9c:18:4b:bd:07:dc:6a:e3:
b0:2c:bf:73:62:31:40:86:02:92:0f:54:b2:ca:31:
1b:91:72:b4:13:12:c9:5b:80:63:07:63:01:7d:50:
86:39:86:b3:02:30:78:92:c4:66:2d:e4:29:34:ed:
2a:2e:26:87:a4:cb:11:f6:b3:d6:ad:9f:16:31:7d:
53:1f:65:1a:21:86:fb:e0:12:e1:31:81:46:30:74:
4e:44:ea:11:1d:05:14:43:91:d4:29:34:ce:bd:b8:
df:3b:6f:c0:c9:74:2e:e5:2d:bd:c2:fa:d7:f5:07:
30:47:1e:88:79:23:ef:8f:f5:84:b7:4f:60:93:db:
89:09:2b:09:72:b7:e9:c3:4c:11:ce:ee:3d:da:13:
39:9a:12:fc:4f:b4:66:a1:87:fa:8f:db:7c:6a:28:
aa:73:cf:c4:8a:d6:83:bc:93:4b:79:c9:8a:06:ca:
f3:c8:e5:dd:87:63:51:ec:80:d6:4e:24:50:7a:6e:
4f:45:db:f4:07:e3:fc:84:fa:46:fa:e8:09:39:a5:
8f:19:3e:f2:02:2c:37:9e:da:50:0f:17:16:16:d8:
0c:73:d2:f5:a9:d5:ff:de:ad:9c:67:de:02:4b:36:
d8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:C3:B0:67:3F:4F:77:02:7C:05:4B:8A:31:62:2F:50:DD:CF:83:3F
X509v3 Authority Key Identifier:
keyid:B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/NsOwZz9PdwJ8BUuKMWIvUN3Pgz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/s9Zil8XNvTbYaEnd6ueYWXn0UMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.15.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:41:8a:61:ef:58:c3:25:29:7f:75:53:00:e3:aa:c4:90:be:
57:55:8b:77:28:43:9e:cf:8f:8d:45:09:d0:42:42:52:8b:bc:
f9:6c:23:11:63:7d:fb:91:a6:03:8f:a8:65:64:11:e5:b0:bb:
0a:aa:5a:a8:98:b2:0d:16:6e:7f:38:9d:ad:8b:f0:81:59:2c:
17:46:82:e7:b4:68:d4:f6:89:fe:4d:25:27:56:df:b6:70:7f:
59:2f:99:9b:46:a2:4c:1d:68:bf:73:1e:bb:b7:81:21:08:49:
99:f8:5f:24:1f:22:11:d4:2a:3d:b5:d7:df:0b:6f:3a:ae:2d:
45:4a:b2:44:9a:1e:04:e7:45:df:07:dc:0b:76:ea:0a:e7:dd:
0b:4f:74:28:2c:d8:50:b3:56:cf:de:05:2b:f9:cb:44:87:af:
50:99:7e:b4:2a:0d:aa:10:a1:da:92:73:31:9d:20:42:5c:ab:
bf:75:22:b1:81:95:62:56:69:42:e6:db:19:00:50:34:ca:ec:
3f:04:28:a7:ee:19:92:41:71:c2:6d:95:2f:a7:c2:42:d6:aa:
20:20:77:52:1f:a5:f0:5b:b7:43:24:f2:af:31:f0:4a:65:cd:
30:00:4c:eb:d5:ae:9a:64:a7:4e:d3:b3:7f:f2:36:1a:6a:f7:
e1:f2:e0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org