Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/fd2efe-1471-42d8-9347-4861d43e24ef/1/pbhLHwG6mS9IIFwlnhfHStk95gI.roa
File: pbhLHwG6mS9IIFwlnhfHStk95gI.roa (raw, json)
Hash identifier: XYbktLDbQBkTxvqantj89nl+LfYFJ1B5YBEIssII2Qg=
Subject key identifier: A5:B8:4B:1F:01:BA:99:2F:48:20:5C:25:9E:17:C7:4A:D9:3D:E6:02
Certificate issuer: /CN=0d8be474c155fc13847b859501a553cffc3ac4b2
Certificate serial: 018BC8987970A03006A4E735EBB0785FFE91
Authority key identifier: 0D:8B:E4:74:C1:55:FC:13:84:7B:85:95:01:A5:53:CF:FC:3A:C4:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DYvkdMFV_BOEe4WVAaVTz_w6xLI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/fd2efe-1471-42d8-9347-4861d43e24ef/1/pbhLHwG6mS9IIFwlnhfHStk95gI.roa
Signing time: Mon 13 Nov 2023 12:11:57 +0000
ROA not before: Mon 13 Nov 2023 12:11:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207143
IP address blocks: 91.90.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:c8:98:79:70:a0:30:06:a4:e7:35:eb:b0:78:5f:fe:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d8be474c155fc13847b859501a553cffc3ac4b2
Validity
Not Before: Nov 13 12:11:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5b84b1f01ba992f48205c259e17c74ad93de602
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:dd:98:8c:dd:1c:6d:c6:e2:74:fd:01:cd:d8:
58:aa:5f:4d:d4:e1:18:10:19:1a:0a:83:7e:24:4e:
7b:81:58:9a:89:4e:ed:e5:63:bc:c0:fc:d1:ee:3e:
40:70:f8:44:d9:c2:55:24:01:a9:1b:15:34:f0:40:
c5:7f:19:ae:91:7f:f5:59:b1:c3:d4:8d:80:e5:70:
ce:59:13:56:44:f0:55:11:93:a0:1a:65:60:6e:55:
ab:94:fd:72:65:1e:70:96:7b:dc:d3:ce:da:f7:6b:
2a:af:9a:cf:6e:22:ca:4a:71:31:b8:36:b1:18:d2:
59:58:d8:19:b0:cd:9d:93:8e:ba:41:a0:24:0e:49:
7d:39:9d:58:8d:8b:ac:f1:77:7d:fe:f4:64:5b:da:
66:03:5c:d1:f5:6a:79:39:70:8e:cf:7f:06:17:55:
d4:69:78:57:1e:a5:ef:cf:0d:73:9c:87:7c:10:f6:
fd:e9:3a:3b:70:62:45:f9:12:58:e0:49:05:25:be:
60:15:0d:a7:2d:e6:bf:65:41:1c:28:7b:cb:bd:bb:
d1:d8:c6:0e:30:cb:84:27:bb:16:19:f7:77:57:a9:
aa:04:ba:ca:7d:1f:28:e9:14:32:4f:46:19:17:c7:
09:1c:94:c6:fa:0f:55:a4:33:f1:8f:68:98:b4:32:
0d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B8:4B:1F:01:BA:99:2F:48:20:5C:25:9E:17:C7:4A:D9:3D:E6:02
X509v3 Authority Key Identifier:
keyid:0D:8B:E4:74:C1:55:FC:13:84:7B:85:95:01:A5:53:CF:FC:3A:C4:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DYvkdMFV_BOEe4WVAaVTz_w6xLI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fd2efe-1471-42d8-9347-4861d43e24ef/1/pbhLHwG6mS9IIFwlnhfHStk95gI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/fd2efe-1471-42d8-9347-4861d43e24ef/1/DYvkdMFV_BOEe4WVAaVTz_w6xLI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.90.166.0/24
Signature Algorithm: sha256WithRSAEncryption
08:2b:20:c2:b9:fe:65:7b:83:28:e9:32:51:17:36:22:41:66:
f5:5a:b0:30:87:de:c6:1d:60:d1:0c:3d:1f:c4:78:5a:a9:2c:
e5:fd:24:04:4c:41:ce:db:34:a3:d8:6c:30:1c:4b:d2:48:e4:
36:04:e2:81:69:ed:94:ea:82:80:81:bf:aa:bf:5d:94:6a:50:
21:5a:45:e5:83:87:de:0b:11:69:13:ce:f7:5e:97:af:2d:f2:
e5:ab:fc:87:2e:c8:54:b2:a2:69:43:10:e2:fe:13:47:4c:a9:
05:a8:c9:e2:8f:f6:ea:ca:98:f9:49:11:a7:51:ab:18:56:39:
56:5a:f0:ed:9e:b9:b9:10:78:fe:9a:c2:b9:c0:f6:2b:09:6b:
7e:50:50:c1:bf:a7:47:62:3c:bd:b1:df:fd:b6:77:b4:6a:cb:
10:cf:bf:f7:13:e4:80:77:9d:f3:9d:07:bb:4d:34:58:b9:a8:
c4:dd:70:22:9d:41:36:fc:e8:25:61:f1:37:4b:35:fe:e3:c5:
c8:b0:f8:ed:a9:a4:06:c9:47:2f:a5:2d:51:2d:20:8c:cc:0a:
05:82:bf:a5:fd:91:16:02:fb:83:ee:dd:fb:b6:31:4c:d2:df:
48:56:98:ed:33:9c:3c:b4:9e:3d:8a:4b:da:f1:f7:18:41:41:
30:35:7b:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:36 2024 by rpki-client on console-ams.rpki-client.org