Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/PP4VOmWqmbKsR-Uny3BGgQvXuHQ.roa
File: PP4VOmWqmbKsR-Uny3BGgQvXuHQ.roa (raw, json)
Hash identifier: nOiC6/hJfgVoPmxvN71a5NJjqoW43Om4BpQqRS8FbJ8=
Subject key identifier: 3C:FE:15:3A:65:AA:99:B2:AC:47:E5:27:CB:70:46:81:0B:D7:B8:74
Certificate issuer: /CN=1176b92497196085d6fbbd5f1c9929cf2b8230a8
Certificate serial: 0185701EE056EE7C36934F8D439FA6B2DF3C
Authority key identifier: 11:76:B9:24:97:19:60:85:D6:FB:BD:5F:1C:99:29:CF:2B:82:30:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EXa5JJcZYIXW-71fHJkpzyuCMKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/PP4VOmWqmbKsR-Uny3BGgQvXuHQ.roa
Signing time: Mon 02 Jan 2023 01:35:49 +0000
ROA not before: Mon 02 Jan 2023 01:35:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50819
IP address blocks: 194.1.169.0/24 maxlen: 24
91.234.168.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:e0:56:ee:7c:36:93:4f:8d:43:9f:a6:b2:df:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1176b92497196085d6fbbd5f1c9929cf2b8230a8
Validity
Not Before: Jan 2 01:35:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3cfe153a65aa99b2ac47e527cb7046810bd7b874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2d:20:e3:2b:23:32:a2:18:0c:f2:c5:2f:ed:
dc:ce:21:c2:ec:87:c4:ac:fc:90:32:05:0e:87:86:
d7:c6:54:c2:00:68:e4:3a:59:4c:93:39:57:67:d0:
1e:39:2f:7b:01:14:06:cc:ea:86:f6:fc:60:52:f6:
0e:c1:8b:15:7f:02:af:73:d8:e6:c2:fc:8e:10:eb:
d9:04:2d:44:0c:07:96:c8:7d:69:9a:a9:9f:1a:e8:
30:9a:00:0c:87:d4:63:3e:14:76:a3:04:6e:df:44:
63:71:c8:cd:40:6d:93:5f:9c:83:b2:31:59:5d:f0:
32:e5:28:1e:54:bc:c9:d8:6f:38:86:55:81:dd:fc:
6b:29:d4:81:5c:66:ff:e2:d2:ef:8f:99:0f:f7:c6:
d1:63:67:93:ac:a9:2b:2e:ef:f8:ea:88:5b:a1:7a:
34:d8:3c:cd:41:06:4f:b6:c1:f9:14:ca:49:77:6d:
83:6f:f0:36:aa:33:b9:0e:51:b7:93:c6:79:db:52:
56:0b:20:a5:d1:e1:82:d9:c0:3a:92:a8:3c:41:48:
ea:bc:1b:73:ac:60:4c:05:b4:ca:58:f9:07:73:b0:
2f:8a:c6:47:f7:6a:4a:6b:28:06:95:0e:94:74:e0:
ed:27:48:69:d3:64:88:ce:3a:ae:e8:0e:80:c4:58:
b6:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FE:15:3A:65:AA:99:B2:AC:47:E5:27:CB:70:46:81:0B:D7:B8:74
X509v3 Authority Key Identifier:
keyid:11:76:B9:24:97:19:60:85:D6:FB:BD:5F:1C:99:29:CF:2B:82:30:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EXa5JJcZYIXW-71fHJkpzyuCMKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/PP4VOmWqmbKsR-Uny3BGgQvXuHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/b9e6d5-a045-4438-bcaa-9d94fe97f125/1/EXa5JJcZYIXW-71fHJkpzyuCMKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.168.0/23
194.1.169.0/24
Signature Algorithm: sha256WithRSAEncryption
16:e2:72:e6:7b:d5:d0:15:bf:22:83:4c:00:0f:2e:6c:98:13:
8c:7a:42:bb:89:17:54:4e:15:4d:a3:21:ba:f0:48:24:af:21:
50:f2:33:6c:0f:ab:74:a2:e6:3f:3f:19:1c:fb:6b:11:47:19:
0f:0a:6e:fa:5e:07:a1:76:d9:d0:cd:19:8a:0c:ec:68:dd:bc:
19:ab:2b:6a:d7:40:7a:f9:cc:d5:de:7c:0b:56:b8:c0:cd:83:
fa:3a:11:0e:56:7d:2c:a3:43:0c:1b:f1:5e:47:c4:01:4e:ad:
61:ab:13:eb:51:06:5a:7e:bb:96:47:59:60:7d:2c:4d:81:57:
d4:96:5b:47:7d:23:19:68:d2:9d:52:7d:1a:97:9d:2f:a1:04:
6c:a4:a4:5a:df:19:4a:07:c5:da:78:fd:44:d5:94:a7:19:21:
fd:69:61:b5:40:38:17:49:06:99:ce:53:24:ec:95:91:0c:d7:
33:43:8e:73:d5:f6:90:f1:61:22:98:49:fa:bb:7b:4d:47:ed:
7b:0b:ab:56:a3:a0:d8:f9:4b:56:11:10:68:3d:a7:e2:79:74:
ff:3b:02:b7:9b:df:80:8d:64:88:6d:c9:9c:b2:47:aa:dc:c4:
77:3d:b6:2c:d1:34:56:c5:91:f2:c1:a0:0d:de:97:ea:e1:c1:
4c:f6:a0:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:41 2024 by rpki-client on console-ams.rpki-client.org