Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/rXShSFKIbHHdIpG-z6BLSiGsj2E.roa
File: rXShSFKIbHHdIpG-z6BLSiGsj2E.roa (raw, json)
Hash identifier: 0KxepM92WW1lqVfiEoQlYPPnH/smt0IBxr1ypPiEmfU=
Subject key identifier: AD:74:A1:48:52:88:6C:71:DD:22:91:BE:CF:A0:4B:4A:21:AC:8F:61
Certificate issuer: /CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Certificate serial: 0186934914D25ECE39766EA35CAB2ACAD756
Authority key identifier: 1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/rXShSFKIbHHdIpG-z6BLSiGsj2E.roa
Signing time: Mon 27 Feb 2023 14:31:25 +0000
ROA not before: Mon 27 Feb 2023 14:31:25 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 91.206.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 19 Mar 2023 08:52:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:93:49:14:d2:5e:ce:39:76:6e:a3:5c:ab:2a:ca:d7:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c5196ded5ba5d686e7095c6d5c638c6b8f8bada
Validity
Not Before: Feb 27 14:31:25 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ad74a14852886c71dd2291becfa04b4a21ac8f61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d0:f2:fc:e2:60:aa:03:ab:43:d2:ab:66:56:
14:15:c3:94:08:40:9a:9f:63:c9:5b:90:da:23:8f:
b0:93:e1:08:b3:71:cc:c3:ca:6e:e0:e5:e8:67:b1:
03:15:70:9c:37:cc:3b:06:c2:72:d4:9c:5d:1e:b5:
c3:7a:63:a3:8c:b5:16:0b:a6:28:76:69:57:15:4b:
4f:01:78:c4:e4:a1:a6:d5:8f:d0:71:1e:6a:92:b1:
66:ee:66:fd:1c:6d:1f:00:4e:05:0c:48:f6:e2:d3:
63:e2:e1:77:ec:a2:8a:80:3d:f5:21:c7:e7:ad:da:
8a:c0:6c:f6:a2:e2:5c:17:ad:4e:e6:e2:5a:4c:16:
3b:0d:75:91:18:f7:62:c8:18:9d:b9:7e:b6:b1:ea:
05:5b:12:b3:af:83:92:33:79:7c:80:8f:78:df:9b:
b2:0b:1e:1b:f1:56:6f:8f:31:6e:96:4b:3a:a6:ba:
e0:28:c8:55:b8:a9:63:d2:bb:29:28:4e:dc:cd:6e:
bc:2c:1c:be:70:b4:9d:6b:2f:89:b5:69:65:e2:58:
b9:63:bb:37:e3:88:ca:31:eb:d1:4f:8b:5b:7a:8e:
cc:e0:e5:96:55:5d:93:8e:5c:5c:9b:10:c4:3e:b7:
f9:fa:24:d5:a7:1c:e5:55:46:06:b4:88:cd:58:68:
6a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:74:A1:48:52:88:6C:71:DD:22:91:BE:CF:A0:4B:4A:21:AC:8F:61
X509v3 Authority Key Identifier:
keyid:1C:51:96:DE:D5:BA:5D:68:6E:70:95:C6:D5:C6:38:C6:B8:F8:BA:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HFGW3tW6XWhucJXG1cY4xrj4uto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/rXShSFKIbHHdIpG-z6BLSiGsj2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/159fa3-316e-4f5e-8b61-20bf275fd0e7/1/HFGW3tW6XWhucJXG1cY4xrj4uto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.209.0/24
Signature Algorithm: sha256WithRSAEncryption
11:79:c8:96:49:c6:26:1b:87:72:69:9d:b5:ca:04:4a:38:9c:
ab:94:f9:2e:a4:48:1a:c3:38:ff:2a:1a:13:39:13:c8:86:a9:
1e:71:f4:61:e1:d5:60:9e:73:78:10:46:9d:07:13:6a:09:44:
de:e9:a7:2f:cf:af:46:72:17:d4:e8:d5:a5:02:77:91:7c:95:
01:26:11:79:1c:ea:4d:26:75:4f:d5:29:46:26:41:bc:90:16:
47:7b:86:de:49:11:9b:34:b7:89:a4:49:5e:44:fd:76:6c:0a:
da:0e:f1:32:58:3e:04:e6:b8:41:2f:73:69:e8:ad:f3:b4:16:
7a:b2:62:d9:f0:04:81:4e:ba:22:1e:e1:b5:c9:e8:39:34:44:
c0:08:23:90:c3:82:f1:e7:fb:d2:ad:e8:09:5b:11:3e:0c:35:
5a:37:b6:81:aa:57:d3:63:50:1e:90:d5:e4:99:00:61:e6:fe:
be:f0:71:a7:08:36:18:c6:8a:f8:9e:70:03:c6:af:6f:89:0c:
62:a9:3a:cb:e5:33:4e:03:2b:9e:17:ef:ed:ec:5b:8e:6b:00:
32:02:2d:92:a3:a6:43:6d:5f:57:ad:98:94:68:1a:e5:8b:2a:
b4:b8:34:f9:4f:78:1a:69:96:33:f5:30:cd:42:25:64:14:56:
0b:26:76:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:22 2024 by rpki-client on console-ams.rpki-client.org