Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/48e976-3707-4685-a5f9-961b78d9d4bc/1/Ph5lTZGN5Nk36SLiyXrzP_jjGL0.roa
File: Ph5lTZGN5Nk36SLiyXrzP_jjGL0.roa (raw, json)
Hash identifier: wEvB5tFRELXaaBMCp1JpKeZ9Btv7+AhYdHDA+50UasY=
Subject key identifier: 3E:1E:65:4D:91:8D:E4:D9:37:E9:22:E2:C9:7A:F3:3F:F8:E3:18:BD
Certificate issuer: /CN=fadbe65b28ff25667409cce635be096e3e6defca
Certificate serial: 018BAA369DA80AA5D4BAF54F4EE876EC1F86
Authority key identifier: FA:DB:E6:5B:28:FF:25:66:74:09:CC:E6:35:BE:09:6E:3E:6D:EF:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tvmWyj_JWZ0CczmNb4Jbj5t78o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/48e976-3707-4685-a5f9-961b78d9d4bc/1/Ph5lTZGN5Nk36SLiyXrzP_jjGL0.roa
Signing time: Tue 07 Nov 2023 14:36:27 +0000
ROA not before: Tue 07 Nov 2023 14:36:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20712
IP address blocks: 91.208.66.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 14:34:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:aa:36:9d:a8:0a:a5:d4:ba:f5:4f:4e:e8:76:ec:1f:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fadbe65b28ff25667409cce635be096e3e6defca
Validity
Not Before: Nov 7 14:36:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3e1e654d918de4d937e922e2c97af33ff8e318bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:06:d5:74:62:11:e8:45:f4:14:14:f8:fa:9d:
40:39:c9:dc:9b:a5:8a:fb:2f:bb:23:1d:21:14:22:
65:86:2c:69:a0:04:3a:72:68:56:72:de:80:df:ae:
d7:c9:04:a1:55:b6:63:25:39:85:fa:d1:51:af:71:
1d:56:a7:1a:8e:13:65:01:8a:5c:d5:98:1f:d3:29:
e2:23:bc:c7:17:5b:dd:05:32:f0:48:52:b5:85:56:
3d:f5:1d:0b:96:f4:b3:50:d4:6b:28:c4:48:e7:43:
b5:41:cd:9e:53:7c:39:2e:09:ef:08:70:c9:96:99:
d5:b1:f8:40:0b:d0:97:d2:ce:d5:26:b3:8e:7d:2b:
8a:2a:38:6b:4b:92:03:d9:7c:19:01:e2:a7:0b:f4:
95:42:40:bd:9a:9d:27:75:f8:6c:fc:03:29:f8:c2:
ec:23:73:c7:6d:a3:5b:cf:36:dc:7e:06:00:23:ba:
a4:0f:9e:f9:9d:b5:c9:49:b7:85:94:17:4e:f8:22:
21:b0:0e:c4:b1:04:a9:5e:aa:4e:f9:08:d7:40:9d:
d5:3a:02:63:0a:04:f4:49:cd:65:a4:dd:97:7f:e2:
f8:0a:68:a8:79:44:43:dc:5b:b9:f5:a9:f3:7d:83:
b8:75:74:ae:44:f6:40:af:aa:8f:7d:00:9d:05:09:
b7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:1E:65:4D:91:8D:E4:D9:37:E9:22:E2:C9:7A:F3:3F:F8:E3:18:BD
X509v3 Authority Key Identifier:
keyid:FA:DB:E6:5B:28:FF:25:66:74:09:CC:E6:35:BE:09:6E:3E:6D:EF:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tvmWyj_JWZ0CczmNb4Jbj5t78o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48e976-3707-4685-a5f9-961b78d9d4bc/1/Ph5lTZGN5Nk36SLiyXrzP_jjGL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/48e976-3707-4685-a5f9-961b78d9d4bc/1/1-tvmWyj_JWZ0CczmNb4Jbj5t78o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.66.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:ff:e3:e7:59:a9:bf:a4:96:b4:34:a6:45:95:59:31:a5:4a:
9f:09:71:2e:16:b5:c2:21:2a:33:89:fc:33:64:19:c8:fd:f3:
01:41:07:a1:a0:93:10:37:6f:43:6a:73:7c:6c:d0:20:6a:a9:
ea:13:73:24:d7:ff:69:a3:04:ee:70:8a:f3:12:aa:45:c6:e4:
22:f6:12:9e:82:04:f7:da:77:f6:28:98:a1:ac:ac:17:b3:ed:
27:0e:4e:f9:38:a8:92:7e:47:b3:1a:89:49:a2:c1:b4:87:7a:
d4:25:ca:dd:f0:24:6f:e9:86:76:ba:66:33:9b:79:6b:12:41:
de:b3:6b:38:4e:08:35:79:11:7c:a9:d8:25:65:52:d2:55:f5:
4d:a8:6d:08:7d:4b:36:dc:06:3a:90:9a:55:fb:2f:06:2d:f6:
76:d2:66:63:dc:8a:f2:cd:f4:1f:3d:19:23:c8:a4:51:54:10:
54:48:6e:3b:30:c0:a6:76:4b:82:96:7b:ac:f9:71:4a:da:f5:
b3:3b:f5:81:4c:97:95:0b:91:46:70:f2:6c:c3:89:04:91:5d:
e2:18:17:d1:c4:88:58:b2:58:8f:23:a4:2e:6f:4f:be:2a:21:
a3:8a:32:1f:87:ea:d7:21:af:e3:f6:b3:a7:82:27:90:08:9a:
68:c1:13:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:14 2024 by rpki-client on console-fra.rpki-client.org