Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/5C3W7jXotOxpI96UxcLQMh09noM.roa
File: 5C3W7jXotOxpI96UxcLQMh09noM.roa (raw, json)
Hash identifier: IkWsJdAEpGRM0F/6+4EymHMXjDXLGdQ2DsyizHlg2oE=
Subject key identifier: E4:2D:D6:EE:35:E8:B4:EC:69:23:DE:94:C5:C2:D0:32:1D:3D:9E:83
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 018870FF2FDA2B86C459DFAE09F4D8285A08
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/5C3W7jXotOxpI96UxcLQMh09noM.roa
Signing time: Wed 31 May 2023 08:49:11 +0000
ROA not before: Wed 31 May 2023 08:49:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 91.232.103.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:70:ff:2f:da:2b:86:c4:59:df:ae:09:f4:d8:28:5a:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: May 31 08:49:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e42dd6ee35e8b4ec6923de94c5c2d0321d3d9e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ee:0f:90:42:11:6e:51:1d:58:c5:9c:38:00:
4e:b5:16:b7:a9:c8:95:36:b6:e9:f7:60:b4:53:b0:
23:23:a7:66:19:4f:1e:59:66:17:20:3e:da:b9:62:
18:ad:05:1d:2b:bb:28:40:96:87:b6:41:3e:d1:aa:
3d:30:2d:b1:b9:70:07:df:3b:f7:55:ac:a1:bf:6a:
02:0e:ff:fb:90:e5:84:d1:c3:9b:b7:9b:39:24:ba:
80:70:e1:e3:ca:db:32:ef:3c:6c:80:9a:b3:50:9f:
bb:b9:74:ca:33:b8:60:6a:3e:3e:93:12:ba:6c:43:
43:fe:75:cb:4d:a4:f1:b0:31:93:a9:42:d7:80:8d:
99:a0:f2:3c:4e:5b:cc:12:a4:27:c7:2a:4c:db:76:
86:89:58:67:78:93:69:b6:6f:ae:b7:e1:f6:bf:d5:
ef:3f:50:86:55:a2:d6:de:8c:d3:27:e3:43:ac:e6:
bb:80:51:56:ee:85:d6:ac:fd:c8:e8:50:2d:7a:3b:
8e:03:2c:b3:00:89:cc:cd:f1:86:7a:12:8c:c5:31:
85:65:db:c3:79:dc:07:4d:fe:7d:e7:44:28:d9:90:
05:d9:38:be:b8:3f:22:82:68:a5:84:11:ea:75:b9:
e9:51:9c:75:f0:6a:e1:02:30:9b:9c:24:2c:7f:ff:
ea:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:2D:D6:EE:35:E8:B4:EC:69:23:DE:94:C5:C2:D0:32:1D:3D:9E:83
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/5C3W7jXotOxpI96UxcLQMh09noM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.103.0/24
Signature Algorithm: sha256WithRSAEncryption
83:f3:93:26:52:af:ef:2b:7c:56:02:db:3d:a6:eb:25:e8:82:
e3:40:29:c8:79:90:c4:17:cb:f9:16:fa:74:a6:89:89:69:66:
20:8d:83:68:b7:21:a2:1d:58:90:5c:33:f9:c1:ee:93:d3:fa:
10:1e:40:83:9c:7a:d9:1b:d0:e7:b6:1f:e8:d1:54:86:ef:23:
27:84:be:08:b4:9c:a0:25:ac:08:63:a1:b5:b4:bc:08:5a:80:
e6:ff:14:2d:d7:3b:85:05:4e:9f:09:c5:dd:7a:54:c4:ae:9e:
2c:98:4d:5d:87:ab:b0:79:12:cc:98:6b:77:97:4e:1a:e7:cd:
ed:e0:6f:c1:19:04:89:55:e1:32:fb:c1:d2:02:76:db:3b:dc:
31:c1:e4:d5:ba:92:7b:a7:f7:30:bf:7e:08:90:da:6a:72:e1:
d8:d2:78:07:03:02:96:64:9b:33:2d:7c:7d:29:a7:f9:80:53:
f9:84:b1:9e:b0:06:b5:a9:fe:13:f2:1c:a7:99:e0:47:71:60:
18:11:22:79:76:60:1f:8a:b4:02:9f:e0:a1:28:c9:66:87:95:
68:a0:c1:0b:53:5a:f2:2d:87:53:73:0a:f6:ac:9b:a2:93:be:
d3:06:12:e2:36:2f:4b:ec:39:28:df:84:4f:1d:ed:e3:75:22:
5d:ed:03:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:37 2023 by rpki-client on console-ams.rpki-client.org