Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/74271c-69a7-4a86-966d-2a1451e7e3c1/1/Z6mnpaliCe2uRqexvcEYTtUg0Cg.roa
File: Z6mnpaliCe2uRqexvcEYTtUg0Cg.roa (raw, json)
Hash identifier: zG5m058NwFsmBTOeuCrg+mT8HN22KBZizAnEudUiOJg=
Subject key identifier: 67:A9:A7:A5:A9:62:09:ED:AE:46:A7:B1:BD:C1:18:4E:D5:20:D0:28
Certificate issuer: /CN=b443b3486de7826fd6b0e2aec026597b6207b373
Certificate serial: 018BF623515FB5D8B6C8D13CE1053B0D5EA3
Authority key identifier: B4:43:B3:48:6D:E7:82:6F:D6:B0:E2:AE:C0:26:59:7B:62:07:B3:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tEOzSG3ngm_WsOKuwCZZe2IHs3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/74271c-69a7-4a86-966d-2a1451e7e3c1/1/Z6mnpaliCe2uRqexvcEYTtUg0Cg.roa
Signing time: Wed 22 Nov 2023 08:26:31 +0000
ROA not before: Wed 22 Nov 2023 08:26:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29684
IP address blocks: 91.213.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:f6:23:51:5f:b5:d8:b6:c8:d1:3c:e1:05:3b:0d:5e:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b443b3486de7826fd6b0e2aec026597b6207b373
Validity
Not Before: Nov 22 08:26:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=67a9a7a5a96209edae46a7b1bdc1184ed520d028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:b5:db:ce:8d:a1:01:19:af:28:30:71:3c:dd:
20:c8:ce:5a:2c:29:d1:ec:66:0f:11:65:d7:32:31:
fd:f5:5e:bf:a1:a0:ce:b0:fb:3f:6b:83:d2:c7:f2:
e7:7b:e3:d6:31:c5:37:1b:84:16:b2:ee:82:ca:37:
42:94:c5:cf:94:be:0a:de:73:d4:7d:b5:4d:ce:4d:
2f:8a:f6:e4:c4:87:cc:b6:88:6d:2c:36:4d:13:bd:
fa:7f:b4:da:3a:cb:4a:48:f1:fd:aa:c6:3b:da:d4:
1b:a0:ff:0e:c3:2f:d3:c3:73:4a:41:f4:9f:7e:e5:
0d:ae:08:0f:28:ca:9d:54:04:f9:fa:aa:24:4b:1c:
76:9d:ff:1d:10:8f:44:08:f2:79:d7:51:7d:50:a5:
39:f9:64:cf:ec:19:ad:4a:e4:ee:3a:e7:e7:bd:70:
ab:2b:83:22:9d:93:80:d8:9c:42:d6:14:5a:8b:00:
6d:ba:50:b1:35:d8:d1:62:0c:9b:e5:10:10:f8:8d:
96:88:76:7f:2a:6f:e7:35:db:42:5f:c1:a3:7f:d5:
75:2f:83:2e:dd:1f:c5:2d:25:8c:a1:02:e5:15:ea:
08:67:fe:88:a4:8a:4f:3f:e8:49:b0:2f:18:6f:e4:
26:3c:a1:8a:d5:a7:9a:bc:f0:96:0e:ae:b6:99:3b:
21:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A9:A7:A5:A9:62:09:ED:AE:46:A7:B1:BD:C1:18:4E:D5:20:D0:28
X509v3 Authority Key Identifier:
keyid:B4:43:B3:48:6D:E7:82:6F:D6:B0:E2:AE:C0:26:59:7B:62:07:B3:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tEOzSG3ngm_WsOKuwCZZe2IHs3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/74271c-69a7-4a86-966d-2a1451e7e3c1/1/Z6mnpaliCe2uRqexvcEYTtUg0Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/74271c-69a7-4a86-966d-2a1451e7e3c1/1/tEOzSG3ngm_WsOKuwCZZe2IHs3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.205.0/24
Signature Algorithm: sha256WithRSAEncryption
e1:37:85:d1:76:e6:1c:e8:83:7e:f1:92:ae:e5:2b:f2:c0:e0:
71:51:67:cf:b5:84:b3:eb:61:e3:fd:27:89:cb:32:a0:59:b9:
3e:a3:9e:90:58:07:c1:a7:d4:ed:9a:34:2e:f2:3e:af:21:d0:
22:f8:d8:38:11:3a:98:95:4d:64:b9:38:e5:2c:ba:89:60:76:
99:45:bf:d0:96:6d:b2:53:ef:3f:32:b0:03:ff:ae:04:ca:12:
9f:3e:8b:35:e3:d7:55:39:ee:f9:c5:e5:b5:30:e4:16:f7:83:
c8:90:b5:44:db:74:e0:0c:ab:65:a7:94:b6:5b:cd:67:79:84:
e4:9e:8c:2a:27:4e:4b:2e:49:ab:f1:62:6a:3d:9e:27:c3:be:
50:0f:c2:db:b8:4d:db:ea:fb:da:77:22:5c:3c:6f:52:87:0c:
d0:cf:5b:d2:0b:90:f4:99:4b:ae:a9:b1:8e:26:b7:b6:28:32:
0f:88:e7:7d:b2:4e:d8:2d:c6:e1:34:5b:4c:39:27:25:4b:cc:
07:25:49:17:9c:40:a8:dc:cf:68:3b:d2:95:3f:cc:ca:28:bb:
18:0a:23:f9:f6:d1:3f:65:a2:1f:56:eb:e6:02:2e:6e:6b:70:
76:b2:10:58:cf:00:c7:58:27:ab:14:77:af:6c:89:aa:d2:09:
09:df:61:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:58 2024 by rpki-client on console-fra.rpki-client.org