Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/P-1ZHGM_wSLUasv6SQn-izx8zRg.roa
File: P-1ZHGM_wSLUasv6SQn-izx8zRg.roa (raw, json)
Hash identifier: s7TbdLK+ggV/ohEheNWz2BKaims8arPWGZZaHNJxzus=
Subject key identifier: 3F:ED:59:1C:63:3F:C1:22:D4:6A:CB:FA:49:09:FE:8B:3C:7C:CD:18
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 019239267697841C26CAF7448133708F5E11
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/P-1ZHGM_wSLUasv6SQn-izx8zRg.roa
Signing time: Sat 28 Sep 2024 15:01:14 +0000
ROA not before: Sat 28 Sep 2024 15:01:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5511
IP address blocks: 91.200.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Oct 2024 12:18:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:39:26:76:97:84:1c:26:ca:f7:44:81:33:70:8f:5e:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Sep 28 15:01:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3fed591c633fc122d46acbfa4909fe8b3c7ccd18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fa:c6:95:bc:8c:0c:27:d2:21:90:7c:1d:61:
29:fe:0f:b5:59:05:c3:99:df:80:f8:d9:f0:33:d2:
2e:cc:e9:95:de:d5:4d:8e:eb:e8:9c:48:69:50:2e:
c8:ba:34:02:0d:7d:65:58:9b:31:c4:08:7c:89:89:
ea:57:82:c8:08:64:7d:2e:7d:42:84:9b:fd:bb:f0:
ff:e6:cb:5c:0f:06:b7:af:91:f4:6a:27:37:9a:80:
d3:c8:8a:62:e4:16:6e:f1:a8:d7:f5:5a:71:b8:1b:
9a:fa:0a:c6:b8:e3:b5:34:9a:6e:0c:bd:b8:60:c4:
ac:eb:39:c4:10:25:0a:e7:45:b2:67:01:05:0d:87:
d5:1c:8d:6d:be:47:dc:f8:0d:bd:6b:47:c4:0e:45:
f8:77:93:d8:cc:3b:a5:32:03:a7:3f:60:53:4e:8c:
73:b7:cf:68:17:0d:77:14:9e:39:34:3a:86:a4:f5:
a6:45:7d:6d:cb:ac:6b:ab:3e:d5:5a:45:cb:24:f4:
87:c3:48:1a:ea:48:7d:dc:8e:ad:e2:5d:84:b2:88:
52:61:01:ee:fc:90:98:ed:95:2e:a3:2f:b1:8f:50:
ec:f9:27:ac:17:50:44:b0:1d:d6:1a:e1:21:be:00:
2c:5b:9e:75:fd:02:f1:ef:de:07:14:6c:f1:78:bd:
cc:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:ED:59:1C:63:3F:C1:22:D4:6A:CB:FA:49:09:FE:8B:3C:7C:CD:18
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/P-1ZHGM_wSLUasv6SQn-izx8zRg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.254.0/24
Signature Algorithm: sha256WithRSAEncryption
77:2e:03:3a:3d:46:83:7e:b3:80:0e:dd:d9:e5:63:1a:b3:a1:
19:25:79:29:6c:86:13:57:dd:8b:54:bd:8b:09:a8:3f:de:9d:
11:43:55:45:24:b6:fa:71:da:8f:29:10:ba:09:75:86:1d:7b:
a0:3c:47:69:4d:5b:20:45:fb:1f:56:8b:7a:90:52:01:24:38:
dd:1c:84:7b:89:d7:05:f4:08:71:d6:61:e5:e3:70:89:39:5a:
39:ee:b2:fe:f5:73:ca:d6:3c:bc:f8:67:e2:d2:c4:e7:2c:fb:
8d:7c:9f:46:86:64:f0:c9:c0:99:ab:99:86:ae:bd:6a:25:73:
61:d0:69:6c:0a:b0:41:f1:b7:3e:ee:89:ec:f0:63:83:e6:f2:
08:71:64:32:0c:21:38:33:7a:a1:93:51:91:93:f8:0b:3b:23:
c9:ca:68:05:7e:77:1c:b3:0e:8f:6b:3f:51:f8:c4:56:54:12:
0d:83:00:7b:35:1b:74:6b:e7:2d:ec:f8:a3:57:dd:13:d3:bf:
4b:3e:f9:9a:89:03:46:e6:cc:11:01:c7:c8:f8:ab:79:0a:61:
dc:ce:7c:5d:ba:98:74:9b:9c:31:3b:a7:60:25:c3:c4:37:96:
25:c5:f0:88:84:8c:93:dc:08:9a:3d:c8:55:6c:de:f7:ac:2d:
1d:77:2f:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 20 13:06:23 2024 by rpki-client on console-fra.rpki-client.org