Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/O2ZXwVC0IR1HvIOWeJwru9E-THQ.roa
File: O2ZXwVC0IR1HvIOWeJwru9E-THQ.roa (raw, json)
Hash identifier: YOBoOyfUIFViXvkJge/pPTznKvOogYLqQ2szgaisIfk=
Subject key identifier: 3B:66:57:C1:50:B4:21:1D:47:BC:83:96:78:9C:2B:BB:D1:3E:4C:74
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 0186D16E037324FA228C3A73F46C8115A05C
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/O2ZXwVC0IR1HvIOWeJwru9E-THQ.roa
Signing time: Sat 11 Mar 2023 16:08:13 +0000
ROA not before: Sat 11 Mar 2023 16:08:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200017
IP address blocks: 91.216.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 May 2023 05:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:d1:6e:03:73:24:fa:22:8c:3a:73:f4:6c:81:15:a0:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Mar 11 16:08:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3b6657c150b4211d47bc8396789c2bbbd13e4c74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:63:2a:af:b6:4c:a6:c9:d8:ed:de:f7:f9:66:
16:04:cb:f9:e7:f9:ce:68:b4:d6:90:75:c0:95:f0:
08:b4:e3:c0:42:b1:56:73:4a:76:b7:49:ef:9a:de:
31:66:48:04:95:48:6a:27:f9:ac:bc:6d:54:79:e0:
dc:74:f8:1e:49:ea:1b:03:f3:56:dd:51:b1:28:b4:
0b:5d:4c:99:56:97:dc:7f:d0:e9:a8:1d:27:3c:ef:
4d:87:10:14:5a:12:49:cf:18:fa:d0:07:15:3f:6b:
22:69:3e:2f:a3:b4:9a:a5:79:7d:9b:ea:87:5e:54:
22:6a:33:a0:72:30:a0:eb:a2:4c:d4:30:7c:12:23:
d9:e7:a6:77:fd:63:4a:66:2e:95:02:09:2c:85:c3:
b2:39:06:b1:47:29:96:e1:6b:44:4c:ea:82:ad:6c:
94:6c:fa:58:67:b9:21:20:75:ad:5f:1e:b2:a6:ae:
9a:34:26:94:6b:48:57:f3:85:ac:32:72:74:f6:29:
94:fa:f5:51:9c:0d:4c:94:14:b8:02:aa:12:17:1a:
bf:2b:4b:7a:16:5a:75:d1:50:3b:23:60:f2:8a:fe:
f4:fd:13:c5:fd:9f:fd:e2:8f:67:ca:ec:0c:10:1f:
b0:1d:1c:90:3c:6c:f6:58:00:b4:98:c3:a5:b9:cb:
1d:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:66:57:C1:50:B4:21:1D:47:BC:83:96:78:9C:2B:BB:D1:3E:4C:74
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/O2ZXwVC0IR1HvIOWeJwru9E-THQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:53:db:4a:b9:99:8b:09:c5:ba:a6:e4:3a:c3:d8:4d:df:d1:
45:ac:73:6b:be:e3:7c:f6:4a:85:0c:e2:c3:0e:32:36:29:2e:
16:56:1d:8e:39:c2:c6:50:0d:e6:88:ee:71:81:71:c2:1b:eb:
52:3f:7e:e3:ee:d4:01:95:15:c3:58:36:a0:02:08:81:0d:0c:
20:b8:b6:9f:5c:71:60:33:cb:bb:55:9e:77:a8:14:8d:32:86:
e8:2f:42:d2:eb:41:9b:ca:c9:20:92:21:37:57:d4:17:dc:6f:
45:1e:4f:c5:31:e8:64:9f:2f:eb:2b:33:ec:c9:92:70:9e:79:
a6:44:4a:ac:b2:b7:fd:19:df:0f:0a:c8:f5:ee:9b:39:eb:81:
a8:69:fd:dd:26:fe:83:b1:e1:bc:c1:74:29:b7:82:0a:7b:cd:
2e:0d:94:84:b8:2e:b2:5d:38:32:ed:16:5d:94:5d:12:ae:c9:
54:fd:35:db:da:7f:99:28:cc:aa:3a:45:43:c4:1d:ef:e0:6f:
b0:09:2b:ad:12:38:c1:41:8e:ef:18:19:98:87:83:70:be:cf:
fb:88:fc:22:fc:53:f9:3d:dd:50:77:03:cf:39:9f:da:8f:34:
15:79:4b:cb:56:5b:d2:c3:8c:07:c5:48:46:2e:b2:cf:f1:ee:
eb:aa:81:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:14 2024 by rpki-client on console-ams.rpki-client.org