Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/3SDxmNLIOBRykfe9u321v8y9k6Y.roa
File: 3SDxmNLIOBRykfe9u321v8y9k6Y.roa (raw, json)
Hash identifier: d5ANS6tOhL2N0RJq1Z0udmF9HC3plqaFaSBOZy07hbk=
Subject key identifier: DD:20:F1:98:D2:C8:38:14:72:91:F7:BD:BB:7D:B5:BF:CC:BD:93:A6
Certificate issuer: /CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Certificate serial: 01857139EA7174E9A612DF5BFE3DB56F3900
Authority key identifier: 32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/3SDxmNLIOBRykfe9u321v8y9k6Y.roa
Signing time: Mon 02 Jan 2023 06:44:59 +0000
ROA not before: Mon 02 Jan 2023 06:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199663
IP address blocks: 91.245.194.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:39:ea:71:74:e9:a6:12:df:5b:fe:3d:b5:6f:39:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32e15d384c38f4872b0ff9352ff19c4d6dfb64c6
Validity
Not Before: Jan 2 06:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dd20f198d2c838147291f7bdbb7db5bfccbd93a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:d3:fc:b7:d3:f5:88:4f:82:fb:85:18:ab:ef:
ce:09:29:7d:7c:98:cf:55:27:09:48:0d:d7:1a:31:
1c:6c:77:9c:c6:0c:80:b8:90:00:ad:6c:94:3b:ac:
76:bc:9b:40:04:e6:6d:ce:3c:83:dd:cb:22:03:af:
03:6b:83:a1:9a:9e:1f:ed:86:5f:e8:a9:4a:a8:bc:
40:25:b7:d0:27:39:d4:21:5e:7f:57:3b:43:70:da:
e0:6d:92:44:e0:69:46:dc:d7:60:0b:7d:27:ed:6f:
70:f2:77:bb:02:3d:5a:30:e5:2b:db:a6:ba:60:82:
25:88:28:94:1e:61:7c:c6:3a:1b:32:e3:08:69:61:
c2:6d:27:7f:5b:2d:71:4d:59:5a:0a:66:aa:9b:78:
66:51:04:97:5e:72:2b:90:dd:05:4e:03:c2:f6:24:
25:96:1a:3c:ad:a7:07:f4:c0:cc:db:8d:16:b8:20:
44:05:cd:7e:0f:22:3a:42:30:09:d0:cb:7a:ba:ee:
55:43:c5:f9:c4:97:52:9f:6e:a3:d0:2b:07:75:ce:
b7:86:eb:9d:35:b9:c7:ed:dc:69:c9:06:ae:eb:6a:
f2:5c:77:9a:50:c4:25:f3:8b:6d:36:7c:27:06:d6:
98:13:6e:f2:a7:6b:56:fb:6f:24:9e:e6:54:37:44:
a2:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:20:F1:98:D2:C8:38:14:72:91:F7:BD:BB:7D:B5:BF:CC:BD:93:A6
X509v3 Authority Key Identifier:
keyid:32:E1:5D:38:4C:38:F4:87:2B:0F:F9:35:2F:F1:9C:4D:6D:FB:64:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MuFdOEw49IcrD_k1L_GcTW37ZMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/3SDxmNLIOBRykfe9u321v8y9k6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/55d3cc-bcf0-425e-983d-4f3c46f17737/1/MuFdOEw49IcrD_k1L_GcTW37ZMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.194.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:01:f4:58:f9:53:db:59:65:6d:13:de:55:13:f1:ce:bc:52:
0b:db:84:e7:57:ed:dd:0a:af:3c:14:80:2b:2b:e7:8d:82:9f:
06:26:7c:ad:42:2c:7e:f5:0e:23:24:fb:8d:af:9d:5a:03:9c:
3b:2a:f8:d3:f4:2c:e1:4b:e3:e2:75:c4:3f:b7:39:c5:9f:53:
7c:51:35:67:88:87:4f:ae:e8:e4:e3:82:d4:00:fb:25:d8:bd:
b9:5a:e2:c5:a6:43:19:90:a6:9f:21:b4:4a:a2:78:31:90:51:
a3:f3:f0:8e:46:c0:8a:07:34:9f:56:71:1c:1d:60:ad:f9:5f:
ef:2f:22:3d:b6:f7:7f:1a:ed:a6:2d:c5:ab:a5:c3:7f:6b:51:
0e:66:23:19:b3:b7:c2:14:00:29:fe:75:2f:d8:43:0c:18:1c:
db:da:1b:99:d8:7e:ce:bc:3e:bd:a5:07:d9:a8:7b:5c:74:4e:
2a:cb:70:64:23:95:fd:90:27:bd:99:49:96:c7:21:26:8e:2b:
68:b5:4a:ab:cb:b2:b8:f8:78:42:66:b0:eb:dc:d7:e2:9c:33:
53:2c:75:38:1c:4a:6f:38:24:bc:53:69:19:8b:0d:20:c1:d4:
08:8f:69:79:0b:f0:79:f0:6b:73:62:2e:39:c5:d2:fe:1e:8f:
d0:dd:74:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:48 2024 by rpki-client on console-ams.rpki-client.org