Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/5jM-IwY-5T1FAOMYSn8ILlsksKM.roa
File: 5jM-IwY-5T1FAOMYSn8ILlsksKM.roa (raw, json)
Hash identifier: dLWozf0RyB9z0occwW/a7f5PsVTPfdGoIYuKfL94nKs=
Subject key identifier: E6:33:3E:23:06:3E:E5:3D:45:00:E3:18:4A:7F:08:2E:5B:24:B0:A3
Certificate issuer: /CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Certificate serial: 01856BD3429EEB0C286A00896C7E9DEE57FD
Authority key identifier: AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/5jM-IwY-5T1FAOMYSn8ILlsksKM.roa
Signing time: Sun 01 Jan 2023 05:34:45 +0000
ROA not before: Sun 01 Jan 2023 05:34:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212126
IP address blocks: 91.231.189.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:d3:42:9e:eb:0c:28:6a:00:89:6c:7e:9d:ee:57:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af5e93f902354ce4804b4cb049cf68b20f76aeb2
Validity
Not Before: Jan 1 05:34:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6333e23063ee53d4500e3184a7f082e5b24b0a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:51:01:ff:6b:40:a4:49:97:fc:28:b8:4e:fe:
28:74:c3:fb:1e:63:2e:bd:a7:fc:d8:34:23:20:aa:
2d:6e:bd:78:11:28:d0:08:7e:20:ca:c5:76:63:5b:
c1:0b:9b:8a:56:a8:05:b4:b4:74:12:48:f2:4e:ab:
64:43:f6:a7:53:44:dc:d4:5e:b8:9b:ab:d9:60:0a:
7f:49:89:ff:9b:67:78:72:ba:24:2f:fd:1f:80:25:
5d:13:aa:b3:92:28:40:40:01:9e:ec:6a:d9:1f:a0:
45:3c:fc:e4:62:97:4c:de:c7:45:a5:b3:39:f2:6f:
05:cb:0f:d2:c9:a1:02:9a:b1:9b:09:19:cb:f0:f5:
9f:d4:b4:b6:de:be:53:07:fb:6e:55:26:1f:1b:5b:
5a:6a:9b:5e:ba:c9:30:ce:a2:df:96:d1:c9:3f:ed:
96:1a:8f:6b:61:49:7c:e2:80:a1:32:85:12:19:55:
8c:fb:b8:ce:85:c4:58:1c:33:47:f4:c5:26:31:e5:
e5:bb:da:4b:c8:b6:74:3d:b6:76:aa:62:f1:ac:52:
e9:fd:ed:db:21:75:74:9c:d3:03:0a:1d:73:a0:b8:
b7:19:81:3e:a0:1b:79:60:54:1b:b8:69:7d:9e:48:
d6:1f:24:df:3a:d1:b4:d6:56:28:aa:e8:d2:ec:2f:
ed:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:33:3E:23:06:3E:E5:3D:45:00:E3:18:4A:7F:08:2E:5B:24:B0:A3
X509v3 Authority Key Identifier:
keyid:AF:5E:93:F9:02:35:4C:E4:80:4B:4C:B0:49:CF:68:B2:0F:76:AE:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r16T-QI1TOSAS0ywSc9osg92rrI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/5jM-IwY-5T1FAOMYSn8ILlsksKM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f4004b-d602-475d-931b-7e05ad0190ce/1/r16T-QI1TOSAS0ywSc9osg92rrI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.189.0/24
Signature Algorithm: sha256WithRSAEncryption
43:bf:74:d4:2b:b5:84:2b:44:95:62:cd:24:97:cd:22:f0:b1:
85:e8:0a:de:5b:83:e3:e3:a9:98:7c:3f:a9:3a:ec:84:60:b9:
da:b0:67:b5:31:cf:82:c4:d6:c6:ba:4e:48:98:9b:c1:07:01:
6c:b1:08:73:e9:f0:bf:5e:ea:3e:06:2c:fd:1b:c3:0a:21:d1:
a0:53:17:38:96:68:ca:1f:6c:83:36:53:cb:38:89:d6:6e:ec:
ba:93:d5:f4:8d:2b:db:7f:a5:11:98:69:45:39:15:5c:9a:f0:
80:12:cd:cb:38:d3:5a:f6:b3:0e:e8:6e:a5:10:4f:4c:23:1e:
8f:db:e6:72:31:4d:97:61:a5:81:3e:a4:7f:a4:21:c3:f6:65:
2a:25:a6:eb:87:7c:44:49:1f:02:5c:2b:77:8a:9b:49:85:65:
d6:cb:e7:3c:cb:e7:ba:60:f3:2f:07:55:a4:53:90:29:3e:4a:
64:e6:c7:82:c2:ce:72:03:d5:5f:f6:ba:55:4a:eb:e4:ba:c8:
d6:64:ac:fe:45:32:b3:f1:8a:47:2e:a7:e8:50:87:84:9a:f7:
b2:83:3b:23:43:9c:7a:6f:32:81:dc:b6:b2:02:64:24:37:93:
95:b4:d3:e6:cb:38:d9:8c:26:78:30:b8:5a:96:ed:17:ff:1a:
28:7f:7e:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:09 2024 by rpki-client on console-fra.rpki-client.org