Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/3cahv3bsbxlZNyzWIRBxI33SxvY.roa
File: 3cahv3bsbxlZNyzWIRBxI33SxvY.roa (raw, json)
Hash identifier: 760N0UCp+AnaSuGL1cGT3ocD0p0qUWtlH+tjVn/knuE=
Subject key identifier: DD:C6:A1:BF:76:EC:6F:19:59:37:2C:D6:21:10:71:23:7D:D2:C6:F6
Certificate issuer: /CN=86623a8458eff347d424348588829ee137b45a3f
Certificate serial: 018A2EBBE233E87676DC55F30F483EABD6C9
Authority key identifier: 86:62:3A:84:58:EF:F3:47:D4:24:34:85:88:82:9E:E1:37:B4:5A:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hmI6hFjv80fUJDSFiIKe4Te0Wj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/3cahv3bsbxlZNyzWIRBxI33SxvY.roa
Signing time: Fri 25 Aug 2023 22:06:19 +0000
ROA not before: Fri 25 Aug 2023 22:06:19 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60976
IP address blocks: 91.207.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 25 Aug 2023 23:17:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:2e:bb:e2:33:e8:76:76:dc:55:f3:0f:48:3e:ab:d6:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86623a8458eff347d424348588829ee137b45a3f
Validity
Not Before: Aug 25 22:06:19 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddc6a1bf76ec6f1959372cd6211071237dd2c6f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:65:bd:8f:c5:55:54:99:3c:2a:a7:12:91:b6:
a9:af:2c:cf:dc:1d:e3:23:a5:c1:46:f6:e7:f6:02:
37:5f:6f:53:bc:f4:ed:45:ab:8e:4e:0e:5a:9b:7a:
11:d0:eb:e3:d9:69:c8:b2:65:2b:d8:52:d3:3c:0a:
f2:0b:83:8c:f3:9f:36:8c:e1:b5:1a:7f:fb:7f:fe:
ad:76:a7:c7:c6:78:94:05:dc:0d:76:36:98:47:9d:
11:5c:5d:53:70:6d:73:ec:ed:e4:b3:f4:00:ae:20:
c6:ef:06:18:d0:67:e4:f6:d4:be:b9:4a:fc:55:7e:
f1:04:14:08:ac:f0:22:5e:b2:f3:cb:aa:69:ee:1e:
2e:47:cd:d1:52:1e:fa:fa:81:37:b3:c8:0d:43:9c:
e7:e3:5a:e5:02:1c:8a:96:8e:c0:4c:fb:79:45:60:
d1:b1:9c:94:1f:5c:d7:1c:ee:ca:33:39:e1:b2:05:
ba:3c:f0:8a:29:79:7a:03:a0:8b:10:c3:f7:27:88:
e2:91:fe:b3:4d:50:3f:95:52:d1:c8:6f:de:f4:da:
8d:d3:91:08:9e:15:cf:23:6b:a2:4f:ae:c8:d2:24:
bc:2f:36:67:e5:91:a1:9f:9b:a3:b5:b0:ab:81:0e:
39:cb:01:b7:0a:a2:66:ad:11:ff:9f:0d:b9:3e:51:
a2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:C6:A1:BF:76:EC:6F:19:59:37:2C:D6:21:10:71:23:7D:D2:C6:F6
X509v3 Authority Key Identifier:
keyid:86:62:3A:84:58:EF:F3:47:D4:24:34:85:88:82:9E:E1:37:B4:5A:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hmI6hFjv80fUJDSFiIKe4Te0Wj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/3cahv3bsbxlZNyzWIRBxI33SxvY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/39db4d-e93f-4139-aad8-6c28bb40d52e/1/hmI6hFjv80fUJDSFiIKe4Te0Wj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.205.0/24
Signature Algorithm: sha256WithRSAEncryption
06:62:e9:7b:4e:fd:c7:7a:18:62:fd:8f:0f:d3:44:11:8c:79:
5e:c9:72:53:bd:d8:66:13:3c:6d:da:aa:0a:6a:f4:f5:9c:b2:
34:ac:a2:85:2c:c7:70:42:e0:56:b3:be:86:43:46:4e:1b:81:
4d:d8:b7:52:02:bb:4c:ab:59:2c:2f:09:a7:e7:f9:d2:e4:7e:
f6:97:20:6c:a8:17:70:0b:2e:c1:29:2f:2f:03:b4:9d:f6:11:
20:6b:16:ee:8d:51:8c:2d:be:cf:12:79:52:c5:95:db:76:09:
81:19:34:89:a0:03:e7:85:da:76:33:b2:77:2f:28:2f:1d:b4:
47:c7:cd:4a:df:89:f6:b6:8f:0e:35:d1:db:9e:b1:28:17:ed:
74:7e:01:d2:65:ad:e1:ce:cb:10:ce:09:73:64:e8:23:34:96:
58:4d:81:d5:25:76:3e:1b:a1:12:a7:3f:26:52:45:a6:1f:e1:
da:77:2f:a1:e6:e6:d4:7d:b4:31:b2:d7:98:8b:e8:d5:f0:40:
2d:24:21:47:a6:a4:8b:85:a1:0f:c1:96:1a:c7:d1:03:6d:18:
fc:32:c1:df:ba:a7:94:26:c4:34:de:ba:df:8d:a9:1d:7c:b9:
27:96:48:5b:d8:c8:05:61:39:70:8d:4b:5f:56:ab:3a:71:56:
93:03:d3:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:16 2024 by rpki-client on console-ams.rpki-client.org