Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/1-3X0RnAomBS62gvNHlt6qOG88Y0.roa
File: 1-3X0RnAomBS62gvNHlt6qOG88Y0.roa (raw, json)
Hash identifier: B47DYvuCh9nnYZEc6LaK30QerV559GpzGuqCAQjf8vo=
Subject key identifier: FB:75:F4:46:70:28:98:14:BA:DA:0B:CD:1E:5B:7A:A8:E1:BC:F1:8D
Certificate issuer: /CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Certificate serial: 01856D6F5A6AB1402B654FF81880C5B30081
Authority key identifier: 1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/1-3X0RnAomBS62gvNHlt6qOG88Y0.roa
Signing time: Sun 01 Jan 2023 13:04:52 +0000
ROA not before: Sun 01 Jan 2023 13:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208116
IP address blocks: 91.204.82.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:6f:5a:6a:b1:40:2b:65:4f:f8:18:80:c5:b3:00:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a946f4a826d622a338ed83e0afcdf78c87604f8
Validity
Not Before: Jan 1 13:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fb75f44670289814bada0bcd1e5b7aa8e1bcf18d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:25:3c:45:1d:b2:7a:db:54:ed:d7:1d:d8:ca:
a7:6a:3c:83:77:c6:0e:72:83:ed:0b:d1:6e:75:62:
d3:ef:6f:2a:c0:45:d8:a2:3e:4e:4a:2a:88:bb:5f:
9e:00:8d:af:54:91:7d:c8:2b:42:04:01:55:2f:16:
6d:5b:ea:70:78:85:8d:b6:cd:2e:5f:83:a3:2a:7a:
4f:72:54:35:98:5c:6d:29:ed:3c:d4:9b:67:4f:fa:
c9:ac:b4:bc:d4:98:ed:ab:67:fb:8e:c7:c9:ca:9c:
97:40:ad:f7:93:50:9f:e9:b9:6f:f9:16:ba:19:34:
9f:d5:54:a5:bf:91:5b:78:e1:60:a7:7e:57:e1:13:
24:19:a2:21:85:b9:35:a4:11:fa:f6:61:6a:c1:bd:
29:33:34:32:df:ed:10:3c:53:e1:9c:44:46:b8:cf:
b3:b3:a7:4c:f7:08:b9:4a:a0:ac:f1:ed:a8:15:20:
6a:0b:dd:a2:38:e3:e4:43:d1:53:d8:7d:99:53:b4:
8c:6f:da:08:de:e4:30:36:5d:0a:1a:9b:79:3d:35:
a8:0d:04:67:a1:cb:e6:19:ee:88:85:b7:6b:38:4f:
0a:7c:c9:5e:81:51:14:b3:e0:44:4d:0f:14:bf:71:
6d:ad:2a:84:23:aa:51:79:5f:50:4d:e9:4c:ea:00:
fe:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:75:F4:46:70:28:98:14:BA:DA:0B:CD:1E:5B:7A:A8:E1:BC:F1:8D
X509v3 Authority Key Identifier:
keyid:1A:94:6F:4A:82:6D:62:2A:33:8E:D8:3E:0A:FC:DF:78:C8:76:04:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GpRvSoJtYiozjtg-CvzfeMh2BPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/1-3X0RnAomBS62gvNHlt6qOG88Y0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6ba6a3-25e0-499a-a7a9-98398fdbc9fb/1/GpRvSoJtYiozjtg-CvzfeMh2BPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.82.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:ec:8f:a6:5b:fb:7c:a9:41:0e:80:a5:62:1e:6f:7b:b2:09:
8c:a7:87:56:68:9d:a9:ba:4e:1b:27:87:bd:f7:37:36:f8:b6:
fa:14:4f:ba:9a:c3:76:e5:24:7e:96:a8:5e:a1:79:5b:f5:e7:
e8:88:4a:44:6f:9f:20:25:eb:8d:2b:9f:08:a9:ee:b1:43:88:
99:b9:cb:76:58:fd:55:68:7e:6b:b7:23:f8:e5:4e:f1:91:57:
f7:fc:92:14:39:83:a7:47:ca:78:4d:2a:bd:8e:c4:5e:4f:5d:
ef:07:ea:50:e7:b1:c8:69:b4:3d:dd:4b:a3:ee:ba:77:e4:a4:
3a:10:67:96:a0:0f:97:bc:bc:7c:c9:22:82:fc:0b:6f:be:a1:
23:f1:fc:0d:80:c6:b4:8c:f7:09:30:0b:3b:ad:44:7e:d7:df:
33:79:f0:5a:66:6d:5b:56:e6:13:d6:d7:31:d7:bb:9b:77:89:
a5:e9:ad:04:5f:9c:45:c2:f8:e5:14:1a:16:2d:55:7f:bc:54:
f7:b8:a9:22:74:bb:f8:19:65:11:37:64:45:f8:50:4b:73:66:
40:d5:b4:ba:30:00:71:dd:2c:3d:f1:37:52:18:bb:6f:12:50:
c4:a6:74:61:38:7d:26:7e:ba:ea:19:87:0d:43:1a:ab:00:c1:
a1:8b:f7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 21:30:54 2024 by rpki-client on console.sobornost.net