Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/U5tGiMv1BP2Ktr5L5rO9Nl2jpWw.roa
File: U5tGiMv1BP2Ktr5L5rO9Nl2jpWw.roa (raw, json)
Hash identifier: ZqQOxQp12h8WXsgpUhjMTyBI6NdRFvZFO45RmJbNvn8=
Subject key identifier: 53:9B:46:88:CB:F5:04:FD:8A:B6:BE:4B:E6:B3:BD:36:5D:A3:A5:6C
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 018A5119DF271E530BF7F797266E753E29A8
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/U5tGiMv1BP2Ktr5L5rO9Nl2jpWw.roa
Signing time: Fri 01 Sep 2023 14:16:04 +0000
ROA not before: Fri 01 Sep 2023 14:16:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.207.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 Nov 2023 15:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:51:19:df:27:1e:53:0b:f7:f7:97:26:6e:75:3e:29:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Sep 1 14:16:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=539b4688cbf504fd8ab6be4be6b3bd365da3a56c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:38:05:be:cf:e5:28:34:16:bf:f3:0d:59:c5:
2c:2b:ca:d2:05:52:e0:2c:0d:24:13:2c:06:fd:51:
28:df:c9:1c:c5:de:39:23:3d:91:48:bf:25:1e:4f:
da:98:c1:e1:07:63:59:16:5a:72:45:51:49:3e:c5:
c7:71:22:6c:ac:d3:5b:26:ee:6e:79:03:37:06:2b:
5c:69:3d:7d:d3:83:97:e2:ba:a9:61:f5:dd:9f:96:
59:d2:23:19:c5:d0:4f:2e:dd:e9:ea:d7:68:2d:9d:
31:fc:39:14:b5:50:3e:b3:22:0b:6d:76:5e:c7:ca:
04:0b:8e:ac:39:5d:2d:6f:19:6d:af:ba:e5:6c:08:
f0:8e:a7:a1:61:e0:6c:13:ce:fa:55:b2:fe:da:b4:
a7:05:d8:ae:94:97:41:40:61:f9:92:ad:f5:12:67:
a1:a2:b7:ca:e8:ff:f0:22:56:8e:fa:a2:1c:30:4a:
3c:da:6d:94:44:08:cd:50:55:bf:31:b7:48:3c:81:
97:46:7e:37:30:15:ab:21:2e:5d:6a:21:a8:e0:4f:
da:5f:f9:e2:b0:cc:85:1d:69:d1:d9:57:da:f0:65:
d0:84:1c:5d:66:c1:80:55:29:c1:c9:8a:14:a7:09:
6e:55:f0:d5:20:28:59:7a:c9:c6:98:23:35:38:d7:
63:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:9B:46:88:CB:F5:04:FD:8A:B6:BE:4B:E6:B3:BD:36:5D:A3:A5:6C
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/U5tGiMv1BP2Ktr5L5rO9Nl2jpWw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.1.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:5d:9e:ab:31:37:61:c8:14:c0:f6:d8:ba:4e:70:8d:06:ca:
09:14:61:2c:58:01:56:af:26:07:eb:45:ce:f0:c2:c3:19:ff:
ef:a9:be:c1:2b:c4:3d:ed:68:08:52:5e:31:e9:6b:0d:99:62:
d0:3d:a6:a3:d7:20:5a:f7:2e:29:01:4d:5f:55:c1:19:64:32:
b4:ee:8b:fd:5a:14:f1:f8:a1:70:95:e6:61:21:33:6c:97:25:
a8:8f:30:91:fa:af:e6:13:c5:85:6a:ac:82:91:f8:70:41:27:
ed:f6:00:df:63:20:88:59:24:9a:73:d7:09:32:91:90:c0:11:
1e:31:fb:d0:6c:ff:3c:90:ca:e2:fc:5a:2b:63:56:43:5e:08:
da:3a:f5:cf:dc:8e:f9:2c:35:2a:8a:1e:e8:a6:3e:73:dd:15:
cb:00:59:1f:e9:c8:4e:57:42:f7:85:20:c7:fb:b7:c5:35:62:
af:d0:17:19:64:43:b3:08:fd:45:0f:32:cf:52:46:e4:09:f0:
f8:13:1f:11:2b:0e:7c:9d:4e:33:f1:a5:fb:82:76:b5:da:0d:
2c:be:1c:6d:db:39:79:ae:7a:e2:c9:a5:27:6a:fb:d7:80:5a:
b6:86:80:c4:c0:87:b5:35:31:88:96:88:08:31:b6:1e:81:2f:
75:de:60:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:22 2024 by rpki-client on console-ams.rpki-client.org