Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/q28oiPWtYJDPS9oM-56u2jYtmYo.roa
File: q28oiPWtYJDPS9oM-56u2jYtmYo.roa (raw, json)
Hash identifier: 2pBmGortbgeWjrKVbgxc4wVrz4NJEhwAZtRNAWtid/s=
Subject key identifier: AB:6F:28:88:F5:AD:60:90:CF:4B:DA:0C:FB:9E:AE:DA:36:2D:99:8A
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 01869DC835A7220D9C892B4A9B7C1DF279D7
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/q28oiPWtYJDPS9oM-56u2jYtmYo.roa
Signing time: Wed 01 Mar 2023 15:26:29 +0000
ROA not before: Wed 01 Mar 2023 15:26:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49981
IP address blocks: 91.207.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 28 Apr 2023 15:06:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:9d:c8:35:a7:22:0d:9c:89:2b:4a:9b:7c:1d:f2:79:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Mar 1 15:26:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab6f2888f5ad6090cf4bda0cfb9eaeda362d998a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:5d:ed:d8:44:58:48:a2:f1:ee:2d:51:b9:3a:
c7:10:3a:49:50:67:77:41:3b:ce:41:d8:80:7e:2b:
56:5e:5a:c3:df:ac:78:13:02:ed:c4:dc:08:16:ba:
b8:4f:81:1b:be:e9:5e:1c:90:06:eb:d7:5a:aa:8a:
f6:6e:09:7c:a5:46:bd:85:9d:c5:84:45:3f:fb:de:
25:47:ff:2f:40:f3:c7:5e:84:2b:d3:38:89:e8:56:
90:42:a5:25:d8:9a:03:35:94:be:14:91:12:88:8e:
69:21:26:ac:11:32:ba:13:6d:d1:4f:3d:e5:6e:92:
31:6d:1a:ae:33:b3:b0:c0:54:43:76:b7:1c:c3:5e:
85:4c:08:af:84:0e:af:3b:1f:2b:c2:13:32:a2:b7:
74:9f:a5:41:2a:70:38:e8:05:90:67:2d:6d:c0:93:
c0:5a:8d:74:1e:77:43:02:c8:6f:42:3e:7b:3a:2f:
e5:3e:ec:fa:84:14:91:69:13:d1:e6:8b:c7:1e:3c:
46:96:d9:6d:3f:0d:4b:e2:3a:d3:28:a2:8a:d2:6c:
3f:59:a0:b1:83:a9:ea:75:03:d0:10:97:d4:78:68:
02:47:54:17:93:fb:57:56:58:49:64:08:cc:e3:ff:
70:44:6e:eb:3b:77:d3:3b:89:78:f1:8f:44:61:9f:
c6:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:6F:28:88:F5:AD:60:90:CF:4B:DA:0C:FB:9E:AE:DA:36:2D:99:8A
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/q28oiPWtYJDPS9oM-56u2jYtmYo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.1.0/24
Signature Algorithm: sha256WithRSAEncryption
72:bd:be:2e:27:2a:89:98:9b:c4:1e:ee:ef:59:85:73:58:37:
53:07:12:80:0c:fe:fb:f0:18:6d:70:3a:dd:90:71:79:6e:4e:
8c:c3:1c:73:0b:c2:6a:2a:f3:0a:30:46:41:43:df:10:ec:98:
14:92:f7:c0:2f:94:97:0a:92:35:c9:98:58:5e:d6:f8:a6:0a:
c4:1d:43:aa:cb:a4:8e:76:a4:7e:06:3b:a7:4b:96:f7:63:c4:
c2:8b:55:5f:86:69:0d:8e:5f:b6:6f:60:6d:bd:b4:3b:e6:0f:
71:a7:a8:c7:60:96:10:85:1c:6a:2a:47:a5:d0:f2:c1:91:5f:
ac:d5:bf:77:31:02:b2:e2:8a:0e:e4:55:11:00:f2:41:8a:69:
a8:92:db:d2:ea:ab:46:e0:f8:b1:d7:7e:b8:0c:68:96:48:1a:
ff:44:f9:c3:e1:ab:41:8e:db:c2:33:fd:ee:93:57:6c:87:de:
80:0f:3c:b8:71:d3:98:dd:9d:a7:f7:7b:b6:7f:1f:a0:bf:c2:
9b:9d:35:73:05:2c:c2:fd:22:c8:71:f6:82:dd:6a:7b:a0:b8:
40:a2:7a:4d:bf:1c:5d:80:30:4a:10:45:3f:aa:32:be:8c:e3:
c5:76:d2:ac:15:7f:a6:e8:00:b5:7b:7a:37:80:51:bc:ba:53:
2f:e3:53:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:22 2024 by rpki-client on console-ams.rpki-client.org