Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/uxJdrP9qHlZcMRYDfNdk5fOibII.roa
File: uxJdrP9qHlZcMRYDfNdk5fOibII.roa (raw, json)
Hash identifier: 7PV+II7+gz4JjHzPnuCMhzOBZsFRlGbv9wqEiLQ6Skc=
Subject key identifier: BB:12:5D:AC:FF:6A:1E:56:5C:31:16:03:7C:D7:64:E5:F3:A2:6C:82
Certificate issuer: /CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Certificate serial: 018AACA4674CFF1B3D8FC944E990BF602769
Authority key identifier: B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/uxJdrP9qHlZcMRYDfNdk5fOibII.roa
Signing time: Tue 19 Sep 2023 08:52:50 +0000
ROA not before: Tue 19 Sep 2023 08:52:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 91.241.15.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ac:a4:67:4c:ff:1b:3d:8f:c9:44:e9:90:bf:60:27:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3d66297c5cdbd36d86849ddeae7985979f450ca
Validity
Not Before: Sep 19 08:52:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bb125dacff6a1e565c3116037cd764e5f3a26c82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:64:46:61:9e:69:96:4e:e5:6e:aa:42:0f:51:
99:bd:bb:24:b0:b9:23:4f:35:b2:b4:ee:07:98:87:
83:60:69:14:44:a9:36:14:c9:0e:13:d1:64:82:06:
69:e1:89:02:50:4c:05:b7:4f:b8:11:a1:36:f2:8d:
09:4a:52:10:0b:b2:4e:f5:50:61:fd:5a:00:b2:e4:
23:e7:e8:6e:3e:4b:88:e4:3f:a4:9e:2e:bf:61:8f:
0b:b4:38:b3:6c:27:58:cb:95:7e:07:20:01:b6:cd:
89:fb:65:62:c5:15:91:51:70:8b:4a:c4:42:62:8f:
5c:c9:fc:d3:03:bc:4d:a6:d8:52:84:ac:cf:86:16:
af:fd:a1:a0:da:b6:98:d6:75:4b:50:ac:1b:3d:32:
ed:b4:bc:86:d5:8f:f3:38:fc:b1:88:c8:59:d8:fa:
c9:40:ef:a1:55:83:8b:f7:22:d8:5a:bb:15:ab:01:
d7:c1:b8:0a:89:fb:87:3b:56:dc:85:60:e9:ab:ea:
c4:ed:9e:36:1a:f8:41:04:e1:55:7d:90:0e:48:37:
7a:bc:ba:7a:bf:8a:6f:9b:64:84:63:fb:3d:72:60:
60:35:cf:8d:8b:97:e2:c3:77:72:fd:9f:a1:3c:55:
b4:10:e4:86:5e:b0:cf:6a:be:fa:52:83:6e:6d:5e:
c1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:12:5D:AC:FF:6A:1E:56:5C:31:16:03:7C:D7:64:E5:F3:A2:6C:82
X509v3 Authority Key Identifier:
keyid:B3:D6:62:97:C5:CD:BD:36:D8:68:49:DD:EA:E7:98:59:79:F4:50:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s9Zil8XNvTbYaEnd6ueYWXn0UMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/uxJdrP9qHlZcMRYDfNdk5fOibII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/92c1cf-5a22-453c-907f-eb1f8715eec0/1/s9Zil8XNvTbYaEnd6ueYWXn0UMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.241.15.0/24
Signature Algorithm: sha256WithRSAEncryption
87:82:1f:75:f7:57:03:e8:3e:62:b4:b6:81:9f:00:6f:b7:f6:
4c:b0:af:c9:41:d0:92:1a:3c:3c:d4:8e:3b:fd:c4:e9:48:83:
11:3c:a0:82:9d:8f:3b:8e:dc:07:72:15:9a:b3:3e:77:18:c9:
b3:23:01:0b:d4:4e:ab:78:fb:5d:c3:2a:94:42:e6:53:63:6c:
53:09:ba:73:fc:92:09:8a:4a:16:10:24:d8:06:d3:5d:53:c9:
3c:e2:6c:90:73:61:07:ac:31:4f:56:11:8c:d7:e5:a9:9e:04:
20:23:6b:0d:74:09:99:7e:c2:ca:a9:3f:ea:91:16:d1:d4:5b:
c8:d6:29:2a:ce:f5:e6:ca:fa:15:c6:b7:7e:4e:d2:82:02:07:
e4:d5:6b:e2:20:af:7c:1c:20:91:30:08:eb:0d:d0:9b:c2:3a:
4f:38:34:4b:c4:93:91:fb:9a:32:b5:3c:c7:e9:cf:23:d9:fd:
33:69:4a:8e:fc:34:f7:6b:7e:40:78:d2:59:f1:c3:f5:ea:80:
58:07:dc:fd:64:e3:53:7c:34:f2:7e:56:17:1b:24:6e:85:b5:
66:26:c9:48:21:70:8f:ba:30:4b:cc:45:f0:81:00:25:dd:84:
d9:d3:81:f8:40:93:38:a5:2d:28:b5:89:ea:83:b9:93:fe:4b:
fd:ee:1f:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:03 2024 by rpki-client on console-fra.rpki-client.org