Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/3CaxVlR3HAZysbdNyy7cl7eoNtE.roa
File: 3CaxVlR3HAZysbdNyy7cl7eoNtE.roa (raw, json)
Hash identifier: sWuTEO2/Ydts2b/YoZhKJpTijmvI7uhfe1yc1zh17XA=
Subject key identifier: DC:26:B1:56:54:77:1C:06:72:B1:B7:4D:CB:2E:DC:97:B7:A8:36:D1
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 01914534ABA1AD382E322924946E7F9CEFE3
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/3CaxVlR3HAZysbdNyy7cl7eoNtE.roa
Signing time: Mon 12 Aug 2024 06:09:25 +0000
ROA not before: Mon 12 Aug 2024 06:09:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 91.200.253.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 11 Oct 2024 06:05:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:45:34:ab:a1:ad:38:2e:32:29:24:94:6e:7f:9c:ef:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Aug 12 06:09:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dc26b15654771c0672b1b74dcb2edc97b7a836d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:1a:ee:fc:dd:30:05:33:7f:01:8d:22:07:
d6:f7:9c:43:ab:13:58:af:66:f3:c9:19:93:c8:9e:
b8:8b:ae:8f:35:e6:f5:aa:fc:6f:dd:31:45:b7:6a:
c9:05:17:4a:75:3c:f7:cc:2d:31:79:c5:a3:e1:43:
82:36:31:7f:52:d1:5b:0a:16:68:21:c4:83:80:e9:
18:50:cf:81:89:95:d3:3f:a1:78:c2:cb:f2:ef:8c:
dd:f0:06:af:e9:45:7c:52:13:f0:6c:ee:2c:98:3c:
84:45:74:2e:14:5c:d3:60:19:2f:6c:82:ad:b9:29:
33:cc:78:8d:1f:29:0c:5f:99:74:ea:ef:0a:37:d9:
7e:47:3f:6f:b0:69:57:f2:46:4e:66:47:89:cb:70:
21:78:5c:6a:7d:75:1d:3c:87:d4:5e:71:00:4f:59:
51:59:f1:c7:14:60:c1:a7:03:68:c6:f0:23:5e:7a:
55:ec:ff:e4:43:d4:c8:7f:58:7f:2b:c3:ef:5c:49:
a9:38:26:35:23:d2:4e:d8:3b:7d:00:ac:05:0d:0c:
13:e0:ad:70:e5:bf:25:8a:56:c4:79:28:71:a2:9e:
89:95:08:83:85:6f:a7:8b:c5:2c:f8:3f:d1:c8:d3:
48:0d:d4:34:3a:57:26:15:90:2a:da:83:24:1e:6f:
df:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:26:B1:56:54:77:1C:06:72:B1:B7:4D:CB:2E:DC:97:B7:A8:36:D1
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/3CaxVlR3HAZysbdNyy7cl7eoNtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.253.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:03:bb:2f:b4:b2:e9:c0:af:a7:60:b8:54:24:7c:f8:56:e0:
3c:78:2c:44:c5:ec:b4:62:a7:c8:c2:71:01:52:8b:bf:58:1c:
6e:b8:11:58:27:90:09:a6:6b:79:ad:ce:19:6e:d8:e5:fb:12:
9b:0f:17:83:8c:b7:b2:0d:e9:50:09:56:94:d1:ec:dd:6e:29:
01:74:e7:17:13:e7:c0:ee:e4:59:d3:8f:e7:72:bb:aa:68:e9:
81:a9:da:ad:13:8e:44:02:1d:30:82:a8:7e:74:c2:5b:7a:a1:
0f:38:66:b9:e7:ac:9e:19:a0:e9:79:c4:97:94:41:c4:25:f9:
32:a2:b4:54:c2:55:98:c2:49:da:3a:c3:43:6b:e7:fd:82:03:
93:11:25:af:1e:0a:19:6b:b8:a4:85:f2:ce:3f:32:6d:79:c9:
1e:a1:03:01:79:67:9c:28:cd:30:9c:4b:d4:2b:d1:5a:58:72:
31:ef:b9:11:5f:a6:50:d3:c2:33:1c:c1:70:5a:8b:aa:32:7b:
89:b0:99:ee:6f:48:6a:a4:fa:68:9a:a7:d5:1b:b7:70:30:a7:
b5:a7:96:38:b2:da:39:cf:9c:58:71:e7:2c:9f:bd:c7:9b:f1:
a2:05:59:cb:3d:2e:f6:55:af:b9:43:2a:68:8d:59:27:16:38:
3e:51:cf:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 11 07:37:51 2024 by rpki-client on console-ams.rpki-client.org