Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/oN6oR0UqRg6CR6h0SshQAhE_5Ks.roa
File: oN6oR0UqRg6CR6h0SshQAhE_5Ks.roa (raw, json)
Hash identifier: S/C7lPvfTPOxrNjgTTrZVjsFq9chu8Urd6wuzgud9e0=
Subject key identifier: A0:DE:A8:47:45:2A:46:0E:82:47:A8:74:4A:C8:50:02:11:3F:E4:AB
Certificate issuer: /CN=c5ba51c07148843d400805b40335e72d324265f1
Certificate serial: 018B7F65BD646D2625F38CAB0BF07BBFF572
Authority key identifier: C5:BA:51:C0:71:48:84:3D:40:08:05:B4:03:35:E7:2D:32:42:65:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xbpRwHFIhD1ACAW0AzXnLTJCZfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/oN6oR0UqRg6CR6h0SshQAhE_5Ks.roa
Signing time: Mon 30 Oct 2023 07:04:15 +0000
ROA not before: Mon 30 Oct 2023 07:04:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205547
IP address blocks: 91.209.225.0/24 maxlen: 24
2a12:d1c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:29:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:7f:65:bd:64:6d:26:25:f3:8c:ab:0b:f0:7b:bf:f5:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c5ba51c07148843d400805b40335e72d324265f1
Validity
Not Before: Oct 30 07:04:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0dea847452a460e8247a8744ac85002113fe4ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:95:11:e2:76:23:fd:69:f1:e9:27:27:4f:12:
17:8c:e6:50:e1:02:42:4e:32:af:bb:5c:13:a6:e8:
b7:e2:93:27:6e:e4:d1:56:8e:05:f3:e7:02:75:6c:
b4:d5:b1:72:2f:b8:9c:16:5e:5d:dd:24:af:34:e5:
79:da:c1:df:c6:0a:35:60:ef:b5:44:dc:dd:d2:8a:
10:c7:d5:74:a8:ec:ad:8f:29:d9:67:35:2e:a6:3d:
6e:c5:3d:fc:87:69:7f:22:83:02:00:ba:40:7a:33:
20:8a:f5:c2:77:16:91:0c:77:f3:98:02:1e:be:f4:
68:ce:e9:ad:8f:dd:09:b1:6d:31:98:07:cb:49:ce:
2e:24:e4:92:b1:0d:c7:20:3f:d8:2b:4c:12:1b:24:
58:78:0c:0d:e9:c1:1f:0d:90:08:2b:02:e9:f5:3c:
d6:87:4d:8a:d6:8e:2e:6d:05:1f:9d:ab:b1:66:eb:
f2:32:7a:b2:de:82:59:99:8e:b8:e3:70:46:36:b6:
04:a7:db:ec:a7:10:e3:8a:fa:3d:5e:1c:b8:ca:2d:
9e:b0:52:f1:19:dd:cb:89:c1:bf:ea:a7:b0:61:92:
7e:17:98:21:01:7b:29:8a:8f:e4:15:7f:83:3b:7c:
f2:92:f7:84:92:aa:ca:c1:27:22:0b:1f:c1:a3:6a:
fb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DE:A8:47:45:2A:46:0E:82:47:A8:74:4A:C8:50:02:11:3F:E4:AB
X509v3 Authority Key Identifier:
keyid:C5:BA:51:C0:71:48:84:3D:40:08:05:B4:03:35:E7:2D:32:42:65:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xbpRwHFIhD1ACAW0AzXnLTJCZfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/oN6oR0UqRg6CR6h0SshQAhE_5Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/db63b5-1f96-4f00-865a-9ff5c1a3b0e0/1/xbpRwHFIhD1ACAW0AzXnLTJCZfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.225.0/24
IPv6:
2a12:d1c0::/29
Signature Algorithm: sha256WithRSAEncryption
2b:21:a6:e8:f8:ce:90:7a:64:4e:c2:17:bc:5b:c0:7b:80:65:
bc:8b:59:13:09:ae:b6:91:42:d5:39:92:b6:d1:49:d0:97:b3:
bc:24:aa:78:dd:e7:20:a8:11:41:92:73:90:0a:2e:ef:f2:54:
63:15:81:7c:c9:3b:c4:b8:dd:43:b8:24:1a:14:1b:35:f7:b0:
68:8f:3b:b9:e3:4c:9c:94:68:3d:12:3f:16:7d:3b:67:06:61:
c1:f7:e0:c0:a0:e4:c1:7e:13:e1:d2:2f:4d:e9:ea:79:67:83:
c9:57:c4:0d:f3:11:07:68:7e:0c:52:24:c7:a7:b5:3a:87:5b:
43:38:0d:9a:a9:8b:19:87:78:07:c0:79:8a:83:d2:2f:fc:14:
c6:6b:88:e7:ef:4e:1c:d1:63:4d:33:70:bc:b0:7f:94:98:37:
e3:51:38:9a:06:49:76:92:0c:79:bc:34:66:b0:85:38:76:02:
51:87:a0:b8:62:0d:49:6f:48:2d:97:91:12:9e:4b:d1:a3:5a:
60:12:7a:63:82:7c:c7:cc:60:42:e6:36:b4:c5:09:22:2b:a2:
dc:15:8a:a7:23:5b:a6:1c:30:9d:7c:2d:3f:62:f6:12:66:e2:
56:4e:9a:12:81:4e:c4:a7:4c:3a:f3:56:ae:c5:70:52:20:d1:
f1:eb:f4:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:33 2024 by rpki-client on console-fra.rpki-client.org