Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/bTvTBdcXgg06q9p3-Jtad0mwMmQ.roa
File: bTvTBdcXgg06q9p3-Jtad0mwMmQ.roa (raw, json)
Hash identifier: DOZgohwBosrew61BLJV/uqMh0GBHY/4sdbzSPWNof9g=
Subject key identifier: 6D:3B:D3:05:D7:17:82:0D:3A:AB:DA:77:F8:9B:5A:77:49:B0:32:64
Certificate issuer: /CN=46d713ada8dabcf77681c0ca42d9969e447c8ea7
Certificate serial: 01905E16D9957DB688711AF3984218B1F21F
Authority key identifier: 46:D7:13:AD:A8:DA:BC:F7:76:81:C0:CA:42:D9:96:9E:44:7C:8E:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RtcTrajavPd2gcDKQtmWnkR8jqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/bTvTBdcXgg06q9p3-Jtad0mwMmQ.roa
Signing time: Fri 28 Jun 2024 09:04:34 +0000
ROA not before: Fri 28 Jun 2024 09:04:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14445
IP address blocks: 91.209.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Oct 2024 06:35:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5e:16:d9:95:7d:b6:88:71:1a:f3:98:42:18:b1:f2:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=46d713ada8dabcf77681c0ca42d9969e447c8ea7
Validity
Not Before: Jun 28 09:04:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d3bd305d717820d3aabda77f89b5a7749b03264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:de:61:d9:16:22:cf:35:b4:2b:bf:9d:52:2d:
41:48:45:85:7e:ca:d3:d4:b0:22:df:b3:b3:26:a9:
28:26:e4:55:12:a3:fa:d2:47:94:74:19:7f:2f:64:
ab:e8:40:ed:fe:27:90:f4:c1:81:fd:ec:be:3e:f5:
16:b7:58:10:72:8c:03:ee:98:82:5c:1d:ac:82:21:
5e:81:99:9b:e7:c9:84:ad:8e:9e:03:bc:11:49:f2:
7c:33:b6:0e:96:8e:ae:1f:ab:d4:91:86:5b:aa:db:
ee:d2:85:e3:85:52:92:b2:b6:b6:a5:bf:f2:bf:95:
ed:ed:0d:87:f0:7b:58:ee:6f:05:d4:02:9a:20:70:
be:a1:57:aa:7c:77:7c:29:48:ac:05:64:61:e1:9b:
03:52:3f:f1:7f:11:3b:18:40:65:ed:cb:b9:2f:8c:
0d:7c:69:53:8f:d5:af:f9:ac:7a:0b:0f:86:e5:3c:
39:f9:c1:f1:91:e9:19:d2:43:df:b3:89:1c:3d:75:
be:e8:c9:4d:62:66:ee:e1:33:09:7a:a9:bc:34:0c:
b9:ad:f6:0f:05:21:f8:a3:9e:23:b7:fd:49:c5:97:
fa:d2:f8:8b:31:53:cf:6a:14:72:03:5b:73:c1:24:
ba:b0:a1:81:03:2e:f2:a2:03:3a:d6:e7:bc:27:07:
5d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:3B:D3:05:D7:17:82:0D:3A:AB:DA:77:F8:9B:5A:77:49:B0:32:64
X509v3 Authority Key Identifier:
keyid:46:D7:13:AD:A8:DA:BC:F7:76:81:C0:CA:42:D9:96:9E:44:7C:8E:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RtcTrajavPd2gcDKQtmWnkR8jqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/bTvTBdcXgg06q9p3-Jtad0mwMmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/89f0f6-a5ac-467b-a4ad-be218cef4a11/1/RtcTrajavPd2gcDKQtmWnkR8jqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.40.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:6d:ad:71:a8:a2:a3:36:22:9d:b0:4c:2f:84:97:cf:1f:09:
89:3a:fa:3d:a6:01:45:01:50:23:0f:9c:51:f4:d3:c0:cd:9d:
d5:48:45:bb:87:42:fa:55:ac:26:fb:3e:e2:56:af:cd:4b:7f:
0a:3b:12:7a:d0:af:5b:52:f5:df:d1:4e:da:5f:04:11:19:88:
e8:16:96:68:45:0f:65:e7:e7:3b:36:a8:2f:44:ea:30:3f:19:
4e:fc:d9:dc:ad:21:59:e2:02:ec:32:c5:c1:85:17:e5:2a:d9:
41:b6:e8:b5:ee:a3:d9:a4:f6:c2:27:c5:2e:fe:79:e4:aa:58:
24:1b:c0:20:7f:6a:da:0f:fa:a1:5d:b4:fc:29:58:5f:5f:80:
59:34:ef:34:b7:1e:68:93:3b:d7:60:d9:f6:09:ff:5b:48:94:
2b:47:0e:20:6e:09:43:9b:e3:90:73:98:ea:3d:e3:bf:96:66:
a3:7e:62:a3:f5:82:45:ed:e1:ca:69:62:94:88:72:d1:0b:5b:
db:8f:1b:f6:aa:27:68:d5:26:07:06:4d:ae:ed:43:41:3a:25:
84:1c:78:74:e4:54:76:37:c6:a7:d8:7d:56:1d:70:10:7c:72:
9b:28:52:4c:26:d0:01:3e:71:4e:1d:67:0d:5e:ab:c1:8d:09:
15:02:b1:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 1 09:28:06 2024 by rpki-client on console-ams.rpki-client.org