Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/990506-41bc-4098-af7f-cc8bf3fbef99/1/_Rdpsto22RgUVaVVWKycjMPKfIs.roa
File: _Rdpsto22RgUVaVVWKycjMPKfIs.roa (raw, json)
Hash identifier: 2zGM8EGeZA/7nJYcxTmPLGrWTH06Um8DgjRICRUkhA4=
Subject key identifier: FD:17:69:B2:DA:36:D9:18:14:55:A5:55:58:AC:9C:8C:C3:CA:7C:8B
Certificate issuer: /CN=af478ccdc0480a6b43bacd8aaee0079b16ec2e68
Certificate serial: 01882EF11F96D4CD7E7FCF6343190F9086C1
Authority key identifier: AF:47:8C:CD:C0:48:0A:6B:43:BA:CD:8A:AE:E0:07:9B:16:EC:2E:68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r0eMzcBICmtDus2KruAHmxbsLmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/990506-41bc-4098-af7f-cc8bf3fbef99/1/_Rdpsto22RgUVaVVWKycjMPKfIs.roa
Signing time: Thu 18 May 2023 12:58:54 +0000
ROA not before: Thu 18 May 2023 12:58:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30857
IP address blocks: 91.206.134.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:2e:f1:1f:96:d4:cd:7e:7f:cf:63:43:19:0f:90:86:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af478ccdc0480a6b43bacd8aaee0079b16ec2e68
Validity
Not Before: May 18 12:58:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fd1769b2da36d9181455a55558ac9c8cc3ca7c8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:50:cd:27:1b:76:70:36:b7:dd:3c:5d:5f:d9:
7a:7f:b2:45:a8:1d:e8:b5:c1:24:39:c6:a5:2f:cc:
7c:be:d7:33:62:5c:fd:e3:51:d7:93:48:a8:3e:d3:
3c:bd:9a:54:41:9a:f8:bc:31:77:64:2b:d2:60:ce:
99:9f:ef:94:58:af:ed:a3:de:c6:f1:8b:d3:7c:71:
27:2c:dc:8d:fa:53:59:7b:6c:da:a3:fa:74:6a:e3:
87:b9:f4:ac:a1:f3:66:80:f3:4d:9d:f2:a3:5c:c7:
ce:7e:cc:81:69:80:e3:d4:30:53:b8:e1:e8:95:57:
6e:7e:ab:53:39:cd:a5:c7:48:35:64:f2:cb:a0:8c:
64:cd:bc:bf:68:48:1a:3e:1a:02:ec:8f:e9:74:e1:
5a:bd:7b:70:44:06:4f:07:79:0d:fb:47:1d:17:af:
1c:ed:c1:ee:71:57:59:9d:f4:14:3c:80:a2:11:1a:
c2:86:27:25:9d:55:75:9c:d9:7e:9f:89:18:8c:27:
81:0c:26:98:ee:c6:a5:82:bc:50:fe:4b:f8:bc:72:
4b:b1:c8:e0:bc:0f:04:d8:63:f9:ea:d1:17:0a:6c:
b7:26:75:1a:76:dc:c5:29:8b:e3:0a:19:81:93:c3:
4c:01:61:d5:fe:5d:e8:1d:60:2c:5f:d6:f7:e4:61:
2c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:17:69:B2:DA:36:D9:18:14:55:A5:55:58:AC:9C:8C:C3:CA:7C:8B
X509v3 Authority Key Identifier:
keyid:AF:47:8C:CD:C0:48:0A:6B:43:BA:CD:8A:AE:E0:07:9B:16:EC:2E:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r0eMzcBICmtDus2KruAHmxbsLmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/990506-41bc-4098-af7f-cc8bf3fbef99/1/_Rdpsto22RgUVaVVWKycjMPKfIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/990506-41bc-4098-af7f-cc8bf3fbef99/1/r0eMzcBICmtDus2KruAHmxbsLmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.206.134.0/23
Signature Algorithm: sha256WithRSAEncryption
06:d3:ce:a7:67:86:e6:04:15:f8:94:fd:f4:c0:1b:62:90:58:
4f:bd:39:d5:e0:bb:65:84:8c:74:fb:cf:bb:6e:37:93:e5:6e:
79:32:9d:d6:04:37:d2:a5:db:86:ef:de:44:73:fd:93:f8:55:
22:41:8d:0f:ed:22:08:b4:ef:9a:34:cf:91:f0:17:4e:8b:da:
5b:9d:cf:b2:5a:e4:60:c1:85:1b:d4:f3:35:60:b4:7b:8a:c8:
c4:d2:e6:04:ce:18:0b:45:dd:e7:cc:54:32:71:76:3e:d7:e8:
e4:c1:b4:e1:11:d9:2a:6e:37:92:79:49:77:8c:df:24:d5:57:
ed:73:8d:04:e7:d4:25:28:70:4f:6f:86:c2:98:52:b3:b3:ce:
00:8e:80:b7:1e:86:c1:d2:0c:06:9f:c4:8e:ca:36:18:b5:f0:
94:6a:fd:7f:6f:ce:a5:de:12:a1:4d:8d:25:33:a1:ac:ca:15:
a5:3f:db:01:40:d5:e8:af:04:49:9a:09:b0:3b:f7:b5:06:e5:
6a:d8:8d:9f:79:f7:9c:c2:d7:c0:d4:dc:59:04:3f:59:70:50:
d9:90:50:4f:37:04:3b:dc:51:c4:46:11:e2:be:31:95:44:14:
ab:d5:5a:7f:46:90:a7:93:6f:da:d3:24:ef:3f:1e:12:58:d1:
a9:0d:68:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:09 2024 by rpki-client on console-fra.rpki-client.org