Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/PxsT7Kji5LZMxBFsEaYfZ3l11Qk.roa
File: PxsT7Kji5LZMxBFsEaYfZ3l11Qk.roa (raw, json)
Hash identifier: sOvkpXad4ciLaQLArSw/E8xZGV0AdsKyPVMaLScht4E=
Subject key identifier: 3F:1B:13:EC:A8:E2:E4:B6:4C:C4:11:6C:11:A6:1F:67:79:75:D5:09
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 0193D3CA2DB08D9693B0691527A037AFA6AD
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/PxsT7Kji5LZMxBFsEaYfZ3l11Qk.roa
Signing time: Tue 17 Dec 2024 08:44:22 +0000
ROA not before: Tue 17 Dec 2024 08:44:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.102.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Dec 2024 11:50:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d3:ca:2d:b0:8d:96:93:b0:69:15:27:a0:37:af:a6:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Dec 17 08:44:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3f1b13eca8e2e4b64cc4116c11a61f677975d509
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:12:04:74:97:52:cc:85:c9:b5:f7:37:c2:3f:
cd:6d:db:6e:2b:30:33:e4:13:d1:a1:bf:86:0c:c2:
d8:58:24:ad:7a:65:47:75:10:cd:9c:6d:fb:af:80:
88:df:54:af:4f:44:90:86:c6:2f:3e:00:2d:61:bb:
c7:a2:3f:2f:5c:6b:97:b0:8f:47:a2:ea:11:2d:98:
72:0f:83:8c:c0:84:83:9c:21:55:66:02:8a:30:9c:
d9:21:b6:43:35:fe:91:11:7a:f6:79:38:8b:bc:1f:
28:fa:56:1d:3b:f6:6c:9f:c5:80:66:37:47:e7:e3:
dd:0b:9d:7e:32:b3:3e:64:aa:3f:38:6d:3a:4f:c7:
86:28:b6:8e:02:70:ab:93:4b:5e:ec:f4:42:c1:8e:
75:ab:6a:af:92:05:a1:f2:09:fb:b6:c7:55:93:8d:
7f:f7:a2:de:88:2e:38:de:9f:8c:9d:8b:ac:d9:ca:
a3:43:19:2c:63:ae:c4:ea:d0:56:94:e0:d9:b1:fb:
1b:83:23:fa:e4:8c:76:bf:73:64:55:51:65:01:d5:
5b:b5:92:b9:d9:9d:9a:4a:3f:53:03:b9:84:86:a0:
9b:a0:81:ab:35:8c:41:d6:d1:7b:e8:c9:67:54:59:
15:fd:11:19:cf:6d:13:28:34:62:c3:f4:73:f4:22:
eb:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:1B:13:EC:A8:E2:E4:B6:4C:C4:11:6C:11:A6:1F:67:79:75:D5:09
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/PxsT7Kji5LZMxBFsEaYfZ3l11Qk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.164.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:e8:27:56:b3:fe:dc:10:79:61:22:42:0e:54:b9:0b:6a:34:
6c:38:bc:12:ba:d4:ff:18:e8:8b:02:17:31:24:b3:71:62:6e:
3c:b0:52:a1:c7:ee:d4:d5:e7:a6:2e:ae:ec:2b:30:e6:7e:48:
55:c1:8d:55:26:fd:c8:f6:86:2e:31:a6:f4:7b:2a:4b:62:84:
54:05:04:df:7b:56:e9:bc:dd:05:43:9f:56:9a:bd:5f:02:07:
1e:71:2d:84:26:23:6c:03:2c:f5:3d:a0:a7:27:c5:89:aa:e5:
67:49:9a:22:7d:0d:31:c9:ac:da:d0:39:63:71:cd:d0:b0:bc:
07:06:c3:de:ae:13:a3:d2:1f:b6:85:66:ae:1a:f5:77:9b:c9:
97:24:54:3d:aa:91:22:9d:0a:f3:54:74:73:dc:7d:eb:96:15:
0b:70:b6:af:b0:d5:ad:fd:07:b5:06:a8:3e:d3:96:3e:16:8e:
59:e0:50:e3:60:26:43:59:77:91:d8:6c:3c:1f:dd:74:3b:02:
86:3d:55:54:43:a9:5b:2a:f5:64:7f:79:01:fe:8b:d5:74:a2:
68:0c:fc:fa:fa:85:98:67:a2:18:8c:77:74:88:99:d7:50:38:
1f:d0:3d:e4:3c:36:b8:78:4e:49:31:b1:ef:4c:8f:ac:bf:96:
34:d8:10:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:03:17 2025 by rpki-client