Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/5DShp4_-R9AS-PMlJvTvRJeU9cE.roa
File: 5DShp4_-R9AS-PMlJvTvRJeU9cE.roa (raw, json)
Hash identifier: s1gApJEbOU/mY1gfO5hjqBMOrGxg2MECA20FDythhWc=
Subject key identifier: E4:34:A1:A7:8F:FE:47:D0:12:F8:F3:25:26:F4:EF:44:97:94:F5:C1
Certificate issuer: /CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Certificate serial: 018B1EC20CF5DA8B78CFF51A20BB42657717
Authority key identifier: E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/5DShp4_-R9AS-PMlJvTvRJeU9cE.roa
Signing time: Wed 11 Oct 2023 12:41:55 +0000
ROA not before: Wed 11 Oct 2023 12:41:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212384
IP address blocks: 91.132.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:c2:0c:f5:da:8b:78:cf:f5:1a:20:bb:42:65:77:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e140a047c8b30adc6d9ee326a669dfd011d9b5d3
Validity
Not Before: Oct 11 12:41:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e434a1a78ffe47d012f8f32526f4ef449794f5c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:40:ff:77:b2:05:6b:9f:af:57:8e:a9:27:90:
35:72:48:63:30:c7:ad:09:b3:13:0f:2c:70:71:9c:
59:1b:1f:50:e1:1f:59:9b:a9:f5:04:2e:ef:74:a7:
0f:cf:2e:eb:80:88:a3:1a:36:4f:0e:32:6d:c2:7b:
36:cf:e1:04:e0:75:8b:e5:44:49:e9:4e:74:ef:f0:
07:3d:64:6f:04:8b:29:d2:4b:c5:b2:82:81:e9:0f:
86:db:46:06:e8:34:4a:48:a0:25:a6:ee:f6:21:48:
19:3c:76:73:7e:a6:8a:d6:12:37:f3:2c:8b:86:cc:
b4:42:54:9e:1a:b8:13:6d:11:48:b0:71:f7:18:5b:
a0:77:11:1d:25:ab:7a:43:7f:00:34:34:ab:8f:40:
d3:77:38:aa:70:31:62:16:82:7d:70:6e:06:7f:13:
11:f4:23:66:b3:f2:40:0f:3e:b0:24:02:e1:1d:0a:
e0:96:cc:45:69:f6:88:5f:31:23:ff:6d:aa:d4:b3:
70:18:01:da:8a:45:32:8e:4d:cf:39:09:54:ee:07:
fb:33:9f:5b:5c:c7:89:40:ce:0b:c3:02:25:12:67:
54:ef:91:5f:72:e0:22:37:e2:1d:58:cf:3b:41:af:
1a:a3:98:e1:a5:50:02:4c:8d:33:8b:1d:54:b0:18:
40:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:34:A1:A7:8F:FE:47:D0:12:F8:F3:25:26:F4:EF:44:97:94:F5:C1
X509v3 Authority Key Identifier:
keyid:E1:40:A0:47:C8:B3:0A:DC:6D:9E:E3:26:A6:69:DF:D0:11:D9:B5:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4UCgR8izCtxtnuMmpmnf0BHZtdM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/5DShp4_-R9AS-PMlJvTvRJeU9cE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f85b7c-4ad6-427d-93ed-a6f1e495f1be/1/4UCgR8izCtxtnuMmpmnf0BHZtdM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.227.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:8f:80:da:03:c1:14:55:fe:8d:6b:6b:04:81:e2:7a:af:6c:
05:d1:00:6f:d1:1a:e8:5b:ec:31:5f:ab:c7:79:1c:41:37:fa:
e1:a8:a3:15:47:46:34:05:12:30:1a:f1:40:ed:cc:0f:c8:b1:
74:5a:2d:12:3b:51:ce:41:52:a8:80:f2:30:14:ef:6f:07:cb:
03:78:b8:07:c2:b5:b8:a5:19:6f:71:a0:0e:2b:6f:6c:02:5f:
86:16:10:da:88:02:45:4c:fa:86:bb:f5:0a:0b:2b:c3:29:b6:
b2:75:ca:60:2f:6e:fb:9a:62:9d:90:aa:69:e1:b2:2f:55:69:
76:bf:27:b1:ba:cb:67:16:0f:05:71:2c:03:e4:1a:74:ec:b1:
a2:a6:f7:4a:14:69:75:de:37:a6:d4:5d:65:75:b3:30:8e:2d:
b7:be:8e:10:bd:f9:66:9d:4e:02:a5:39:1d:16:14:c8:07:b7:
79:58:77:61:8b:c0:15:03:3f:9e:b7:58:d4:ae:08:c3:72:43:
f9:7a:08:e4:a0:4f:90:2e:01:f7:00:06:42:f9:41:af:3f:46:
32:58:0d:61:f5:f4:91:ff:1a:53:f8:8f:85:69:30:ff:aa:04:
b0:ee:19:79:dc:05:e8:c4:74:a5:87:a7:91:62:87:b8:02:c5:
28:41:cd:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:51 2024 by rpki-client on console-fra.rpki-client.org