Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/aoVuOgEyuam7uYzdeQP9xDDmYTc.roa
File: aoVuOgEyuam7uYzdeQP9xDDmYTc.roa (raw, json)
Hash identifier: m00hJBkMvlo7aEQxo3jgSNYhn4ENE5pkgGw+ONPHfyI=
Subject key identifier: 6A:85:6E:3A:01:32:B9:A9:BB:B9:8C:DD:79:03:FD:C4:30:E6:61:37
Certificate issuer: /CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Certificate serial: 0185727109560966E343959EA51ECFD4EB52
Authority key identifier: CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/aoVuOgEyuam7uYzdeQP9xDDmYTc.roa
Signing time: Mon 02 Jan 2023 12:24:48 +0000
ROA not before: Mon 02 Jan 2023 12:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35297
IP address blocks: 91.236.154.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:71:09:56:09:66:e3:43:95:9e:a5:1e:cf:d4:eb:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca9ccd830b7e03308bf5cf25e67a7fc2bde0957c
Validity
Not Before: Jan 2 12:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a856e3a0132b9a9bbb98cdd7903fdc430e66137
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:09:53:f1:8a:83:6f:93:7e:2a:80:82:c7:ba:
fc:53:63:b1:19:f0:bf:42:7c:61:5c:40:6a:c3:32:
46:7b:eb:3c:f3:c7:05:42:7a:24:3a:f3:7b:50:99:
df:e7:9d:11:ab:38:43:41:dc:f2:de:f6:e9:0e:d1:
db:61:c2:ac:ff:bf:e8:8f:7c:e9:85:ba:78:5f:65:
23:f1:50:e9:91:53:fb:86:42:37:8a:0b:ac:d2:a5:
cd:d8:e9:00:bc:5b:84:04:cc:d8:c5:fd:b3:ec:5c:
3d:75:4a:f2:59:25:9a:df:70:bb:53:6a:ca:ab:7f:
5b:c6:0c:0f:d6:88:a0:eb:69:bb:25:0c:92:4c:4b:
84:dd:7f:cd:18:eb:9a:b9:6f:3f:95:68:77:da:d9:
66:74:e1:6f:58:0a:55:9d:5f:98:77:c4:4d:c3:ec:
b2:d4:e3:45:c8:63:f4:ac:88:9f:c5:ee:cc:30:dd:
e6:f0:62:34:93:08:7c:35:25:c6:5c:9a:25:ad:58:
fc:8a:c1:26:aa:8f:f4:fc:20:25:8f:86:c5:8b:af:
32:a4:92:02:43:4a:dd:e4:a4:54:ff:2d:89:b1:80:
9d:2b:48:1f:86:8a:84:ce:64:b6:fd:f5:c3:69:23:
d7:f2:5d:45:63:bf:95:10:95:19:d0:c2:bc:8a:c3:
65:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:85:6E:3A:01:32:B9:A9:BB:B9:8C:DD:79:03:FD:C4:30:E6:61:37
X509v3 Authority Key Identifier:
keyid:CA:9C:CD:83:0B:7E:03:30:8B:F5:CF:25:E6:7A:7F:C2:BD:E0:95:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ypzNgwt-AzCL9c8l5np_wr3glXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/aoVuOgEyuam7uYzdeQP9xDDmYTc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a68f21-9ff8-4a44-a36d-d1cde2465f89/1/ypzNgwt-AzCL9c8l5np_wr3glXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.154.0/24
Signature Algorithm: sha256WithRSAEncryption
75:78:d0:2a:b4:62:c5:46:5a:fe:93:46:c3:2c:9a:5d:42:e7:
e3:e0:8c:ee:f8:b2:68:73:6b:8d:02:34:4b:b2:8a:61:8d:4e:
36:c3:c8:20:0f:40:73:36:51:32:c4:2e:b3:05:3f:07:f9:45:
11:d9:1f:3c:94:a6:d0:66:8b:6b:fa:af:04:34:0f:98:22:8f:
e1:4c:39:d6:e3:fd:f6:bc:e0:d2:ce:4a:1e:d9:bd:05:b6:29:
89:49:dc:68:d5:41:91:0f:f9:28:48:ee:72:87:d5:32:76:44:
41:23:5e:4e:79:c2:8c:54:fc:f2:9c:24:8f:9e:9e:6f:97:1b:
6c:86:2d:ce:f3:61:54:ea:2a:b9:76:9d:0a:c1:d7:13:36:58:
04:39:86:e4:d3:cc:bf:d8:84:f6:37:05:64:21:28:de:b7:58:
1e:9d:b3:bf:85:03:ab:06:ed:1b:fc:48:30:ec:85:0d:7c:fe:
20:94:ca:bd:40:d2:9b:9b:b5:c9:ba:2a:34:42:b0:f5:40:4c:
51:0f:9e:45:89:91:cc:6b:55:8b:1f:8e:10:b0:73:dc:43:12:
72:38:08:bf:8c:9b:04:a4:26:fc:4e:76:93:ca:58:f9:9a:29:
5e:bf:49:65:14:aa:d4:1b:dc:ab:c8:33:75:a2:72:0f:23:3a:
6a:71:a9:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:37 2024 by rpki-client on console-ams.rpki-client.org