Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/ajMD-b7bX4CSKeQkwSrhJWDABZs.roa
File: ajMD-b7bX4CSKeQkwSrhJWDABZs.roa (raw, json)
Hash identifier: PjWI5AFcs0dmYZ2dGAY6zf6B/L1N2BqqkaxzBHJc5Q0=
Subject key identifier: 6A:33:03:F9:BE:DB:5F:80:92:29:E4:24:C1:2A:E1:25:60:C0:05:9B
Certificate issuer: /CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Certificate serial: 0185711E59AFAE27912F90C0F85AF1126750
Authority key identifier: DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/ajMD-b7bX4CSKeQkwSrhJWDABZs.roa
Signing time: Mon 02 Jan 2023 06:14:52 +0000
ROA not before: Mon 02 Jan 2023 06:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15598
IP address blocks: 91.206.152.0/23 maxlen: 32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:59:af:ae:27:91:2f:90:c0:f8:5a:f1:12:67:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de3e0167bf582cece48d6c6d029a82cde272a9d5
Validity
Not Before: Jan 2 06:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6a3303f9bedb5f809229e424c12ae12560c0059b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a0:e9:8e:b4:ef:c7:07:30:3e:32:10:35:5c:
b7:d0:28:61:cf:39:34:76:c6:b2:83:ad:4b:d5:1c:
b6:26:b4:23:db:8d:6d:43:3e:38:72:23:e6:aa:66:
12:9f:73:45:1c:90:13:34:ee:e5:a5:a4:41:25:ad:
29:65:dd:11:c9:fe:67:04:2c:36:d9:94:cc:e0:06:
02:5f:4b:9b:27:2c:2c:2c:b9:da:40:65:75:d5:1c:
0c:84:eb:08:fa:41:0a:29:79:13:1c:0c:be:13:b3:
3a:26:98:93:f0:bb:ec:d6:cb:9f:55:2f:cf:17:b1:
eb:08:c4:fb:34:d7:c9:f3:44:cc:6a:78:cc:d2:b1:
d2:db:70:f0:16:4e:a8:61:6d:c7:81:c9:90:8f:bb:
3e:f7:42:dd:37:6b:59:b7:55:26:e7:2f:55:e9:35:
dd:c1:8a:78:86:b5:b1:7d:4c:f7:67:88:66:e0:39:
52:97:44:cb:34:00:03:0b:0f:6c:21:35:cc:1b:36:
6d:26:75:0b:ad:49:74:c5:5a:8e:2c:ff:6a:50:33:
ce:a6:04:15:63:7c:74:9d:24:dc:1b:f8:ba:4b:bf:
09:3d:f4:b2:9b:56:02:d8:f0:f9:35:45:36:67:56:
d4:46:63:ed:d7:1e:0c:c9:1f:9b:f3:45:05:13:8d:
52:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:33:03:F9:BE:DB:5F:80:92:29:E4:24:C1:2A:E1:25:60:C0:05:9B
X509v3 Authority Key Identifier:
keyid:DE:3E:01:67:BF:58:2C:EC:E4:8D:6C:6D:02:9A:82:CD:E2:72:A9:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3j4BZ79YLOzkjWxtApqCzeJyqdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/ajMD-b7bX4CSKeQkwSrhJWDABZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/a715ce-410d-4390-8e8c-8b2379eba13e/1/3j4BZ79YLOzkjWxtApqCzeJyqdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.152.0/23
Signature Algorithm: sha256WithRSAEncryption
63:bd:d0:b9:45:07:7e:2d:67:33:43:f9:bd:cd:bc:da:20:a3:
86:15:25:5b:f9:ee:50:5d:ad:20:95:e0:12:c6:a5:cb:6d:ea:
b8:82:37:31:24:4e:19:0a:fb:e7:43:88:10:a0:50:64:92:10:
00:54:98:a6:1b:50:bd:cc:b5:c1:20:47:d5:f8:82:6a:01:77:
e9:7a:94:a8:a9:e0:d7:a1:4e:24:11:30:cb:d2:ed:d9:73:69:
bf:29:8f:90:f1:37:93:af:99:1a:bf:63:fd:18:27:9f:23:24:
5d:52:d2:9d:94:29:1d:a1:46:68:e8:3b:8e:8f:c3:01:63:0a:
b0:a5:1e:41:ca:13:49:c0:80:5d:e2:1b:09:1b:61:6f:b1:c3:
9b:32:71:37:dd:f5:b9:bb:60:91:5e:79:57:75:f3:b5:ad:fd:
7a:01:2f:9d:6b:a9:10:c6:a3:93:ee:a2:c3:26:41:5e:b8:cc:
46:ba:23:1c:f8:81:14:a9:e6:49:93:1f:05:ad:30:34:4c:d9:
a5:f4:8d:50:32:97:a9:8a:36:bc:91:ad:c5:e3:ba:1d:12:89:
be:45:aa:2d:0a:e6:51:b9:38:a1:5a:7e:8e:f5:e5:a5:7e:84:
1c:fe:ca:75:c1:a4:b7:fe:4f:87:63:a4:c9:9e:ca:f2:5f:88:
ad:ee:29:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:15 2024 by rpki-client on console.sobornost.net