Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/3cg-ZJ92jyjsuz2Knd6CVC3jhCE.roa
File: 3cg-ZJ92jyjsuz2Knd6CVC3jhCE.roa (raw, json)
Hash identifier: OIWzYZOupYzGyPHpTawXOGxPE7EFs4MIwgrTpTqxkN8=
Subject key identifier: DD:C8:3E:64:9F:76:8F:28:EC:BB:3D:8A:9D:DE:82:54:2D:E3:84:21
Certificate issuer: /CN=b79c2de3eb309180f4f5a5af2d56fe4258784648
Certificate serial: 018AA8A881B29E88B67059CFFBF9EB865D66
Authority key identifier: B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/3cg-ZJ92jyjsuz2Knd6CVC3jhCE.roa
Signing time: Mon 18 Sep 2023 14:18:50 +0000
ROA not before: Mon 18 Sep 2023 14:18:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 91.203.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Sep 2023 14:39:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:a8:a8:81:b2:9e:88:b6:70:59:cf:fb:f9:eb:86:5d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b79c2de3eb309180f4f5a5af2d56fe4258784648
Validity
Not Before: Sep 18 14:18:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddc83e649f768f28ecbb3d8a9dde82542de38421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:3b:16:15:7c:fb:a6:69:87:bd:77:b7:d7:70:
b7:34:95:3e:4e:07:3c:05:d0:f9:a8:7b:10:d6:78:
54:65:e3:5b:ad:8b:21:53:58:45:ff:c2:e2:a7:64:
e5:96:40:a8:b8:e9:45:72:70:4c:be:f3:10:85:09:
11:c9:75:d4:c8:e1:e6:cf:73:f0:84:33:ec:3f:ae:
d6:be:11:09:a3:6f:f5:b8:79:a5:6f:a8:f6:dc:de:
45:e7:3e:08:4f:ed:51:15:de:50:94:44:97:67:c3:
ac:e2:6b:f6:06:7b:2f:3a:7b:32:c4:11:14:c7:1a:
8f:ee:5c:dd:49:d4:63:d8:f5:f2:d6:d8:70:53:72:
01:fd:49:2f:6a:37:93:8a:9a:f0:50:55:20:88:fa:
be:2c:8a:2d:b6:10:1d:ba:95:1c:6b:48:4c:6d:ba:
b8:a8:53:92:87:32:51:4c:78:a0:21:f7:ef:d3:5e:
a6:a3:20:f9:6d:9e:ea:29:82:e2:47:71:5d:42:0e:
f6:9a:55:37:9f:45:fb:99:f2:db:93:cb:a2:9d:59:
33:f7:5c:f6:52:9c:e3:05:71:dd:28:2a:77:95:d4:
8d:be:4e:a8:65:6f:df:81:02:62:31:ff:e2:e2:a7:
f4:bb:5e:90:14:4c:9f:e2:5b:48:91:65:43:c4:07:
ea:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C8:3E:64:9F:76:8F:28:EC:BB:3D:8A:9D:DE:82:54:2D:E3:84:21
X509v3 Authority Key Identifier:
keyid:B7:9C:2D:E3:EB:30:91:80:F4:F5:A5:AF:2D:56:FE:42:58:78:46:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t5wt4-swkYD09aWvLVb-Qlh4Rkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/3cg-ZJ92jyjsuz2Knd6CVC3jhCE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/56a006-919f-487c-9316-0bb6a83f9f40/1/t5wt4-swkYD09aWvLVb-Qlh4Rkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.203.230.0/24
Signature Algorithm: sha256WithRSAEncryption
43:63:27:bd:9d:77:3b:00:48:2e:de:99:bd:f7:8f:44:be:d3:
29:71:6d:cf:2d:d6:36:55:6a:26:b2:a9:44:18:c5:3b:e1:3d:
89:91:ad:34:82:d6:84:2e:99:30:a2:55:40:64:85:e8:69:8e:
1c:4e:3d:17:54:48:9b:64:f3:0d:cb:ee:73:5c:f2:75:e9:6f:
40:eb:d0:b5:77:22:09:74:25:17:9f:a6:bc:b6:c8:25:4d:46:
1c:2b:25:c8:c6:8e:e4:c4:dc:c3:3b:53:c2:6b:bc:68:d0:74:
96:2c:2c:17:81:ee:fe:bd:f5:5f:09:f4:5a:0d:01:3b:1b:9f:
e6:e7:fc:f3:d7:7e:3c:88:5b:10:6d:0c:02:94:77:0c:79:c1:
a0:cf:d4:3e:20:83:9c:26:0d:6c:c0:70:25:91:f3:8a:c0:fe:
52:17:55:24:0c:13:9a:5b:a7:7d:77:5f:9b:b2:f9:d5:38:4c:
7c:e0:b9:8c:30:23:ed:33:17:f1:22:cc:d6:ff:25:19:02:0d:
f4:a8:52:bf:7c:52:fb:6f:61:70:ef:2f:7a:de:6c:79:50:ed:
70:0a:65:ab:92:0a:a1:c3:2c:1e:a4:9a:ce:cb:e0:b5:e1:4b:
0c:50:c9:0f:a5:8a:de:9d:21:ea:df:ae:10:d0:07:82:c4:d7:
d3:d8:39:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:48 2024 by rpki-client on console-fra.rpki-client.org