Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/c064a5-d7a9-4e6f-8fd8-0dcd03dc0897/1/3HlovdVgIaxaojqxOKgQqF7O6NY.roa
File: 3HlovdVgIaxaojqxOKgQqF7O6NY.roa (raw, json)
Hash identifier: YvJs1g+um53EpPJNJ09N1JUQ5/GvjnKyzI5k6jdVN/4=
Subject key identifier: DC:79:68:BD:D5:60:21:AC:5A:A2:3A:B1:38:A8:10:A8:5E:CE:E8:D6
Certificate issuer: /CN=c7ebabd786da13805655b1b5501fdcbf433bc78d
Certificate serial: 018573B18AD61455E2B0D15F04C3004E9429
Authority key identifier: C7:EB:AB:D7:86:DA:13:80:56:55:B1:B5:50:1F:DC:BF:43:3B:C7:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x-ur14baE4BWVbG1UB_cv0M7x40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/c064a5-d7a9-4e6f-8fd8-0dcd03dc0897/1/3HlovdVgIaxaojqxOKgQqF7O6NY.roa
Signing time: Mon 02 Jan 2023 18:14:53 +0000
ROA not before: Mon 02 Jan 2023 18:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15404
IP address blocks: 91.213.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:b1:8a:d6:14:55:e2:b0:d1:5f:04:c3:00:4e:94:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7ebabd786da13805655b1b5501fdcbf433bc78d
Validity
Not Before: Jan 2 18:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dc7968bdd56021ac5aa23ab138a810a85ecee8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8e:0a:e1:4b:78:f3:de:39:cb:36:d2:0a:01:
28:86:96:19:e1:fc:d0:55:7b:65:50:8a:10:70:50:
0b:b6:48:64:b4:d0:9f:37:37:e9:01:89:6c:b2:6f:
f2:0a:b1:68:29:5c:b7:24:c8:d3:ff:83:54:5f:15:
69:41:fc:e0:75:ae:52:f5:26:2b:72:82:7c:5a:fa:
59:80:ae:80:1c:e6:77:df:fa:ce:7c:56:a6:23:4a:
58:10:ab:c0:f5:4b:2b:ff:8f:9c:6a:95:cf:0d:50:
a5:b7:dc:a6:fa:96:e8:74:6c:f5:23:65:b8:1c:65:
e5:75:03:64:24:06:47:24:07:ea:31:42:b0:46:72:
f7:7e:e3:90:66:93:20:e9:9b:f0:01:7e:78:fc:b8:
3f:91:f1:53:b9:a8:ea:96:ca:94:aa:d9:eb:4b:23:
92:90:be:ec:60:f6:eb:f4:9e:27:38:5f:3f:70:ab:
39:d5:f5:13:f6:5a:80:ea:34:2c:bf:24:3a:3b:cb:
f7:8f:04:72:46:d9:4c:c4:f6:18:7e:f5:42:44:05:
dc:0d:18:33:83:0b:dc:66:00:01:37:ce:de:8e:a9:
03:19:9c:de:8e:cf:80:42:9e:76:0c:97:b0:34:f3:
a4:80:7f:3d:ea:55:3a:4d:4c:18:94:61:8a:6c:c7:
30:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:79:68:BD:D5:60:21:AC:5A:A2:3A:B1:38:A8:10:A8:5E:CE:E8:D6
X509v3 Authority Key Identifier:
keyid:C7:EB:AB:D7:86:DA:13:80:56:55:B1:B5:50:1F:DC:BF:43:3B:C7:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x-ur14baE4BWVbG1UB_cv0M7x40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c064a5-d7a9-4e6f-8fd8-0dcd03dc0897/1/3HlovdVgIaxaojqxOKgQqF7O6NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/c064a5-d7a9-4e6f-8fd8-0dcd03dc0897/1/x-ur14baE4BWVbG1UB_cv0M7x40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.201.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:dd:11:bb:09:3e:a2:70:8b:e0:95:3b:1a:14:fa:a8:00:03:
89:61:e4:af:36:76:23:80:45:8c:51:a7:46:9b:c9:54:1f:34:
41:bf:b6:e8:38:f9:2a:5d:1c:fd:6f:1b:7f:75:07:6c:8b:66:
b2:38:a5:f4:e2:54:02:be:46:05:1f:cb:03:e5:0f:8f:4a:56:
64:81:dc:4c:25:34:b6:81:02:c2:af:68:e6:1a:86:ea:53:71:
9d:e1:59:ea:ff:87:65:53:d5:62:7e:ba:8a:37:df:15:38:b6:
e5:e4:d1:fe:f3:17:0c:0c:58:3f:9b:45:00:fa:4b:f8:d0:79:
15:e2:2b:97:82:d8:b2:65:e9:46:12:7b:73:84:5e:f0:54:27:
d9:58:88:fb:17:d5:78:ba:b1:14:f7:0c:ac:88:44:e5:97:4e:
6b:21:7a:02:0d:cf:a5:bf:3c:8a:4b:7a:e1:73:0c:86:bf:ad:
b6:ec:55:d3:ca:92:19:59:9e:96:39:c6:30:bf:be:6b:41:bb:
ed:95:c1:93:44:97:98:de:ec:26:6d:d6:0c:ce:9d:bc:12:1b:
95:3e:41:b6:d0:39:77:c1:42:94:e0:70:88:4e:0a:32:5b:47:
8a:07:40:5b:f9:6b:aa:0a:3c:a7:47:a3:71:7f:3d:18:c0:cc:
49:aa:06:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:51 2024 by rpki-client on console-fra.rpki-client.org