Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/PDvJz0cov6der-o-2RS5y5J5wtU.roa
File: PDvJz0cov6der-o-2RS5y5J5wtU.roa (raw, json)
Hash identifier: nLUYjvQ8ug3IhoMsAFuQQKUxGJ9j6kILJzLqEngVWJk=
Subject key identifier: 3C:3B:C9:CF:47:28:BF:A7:5E:AF:EA:3E:D9:14:B9:CB:92:79:C2:D5
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01864908A4967F3F562C7A129635B67CE81C
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/PDvJz0cov6der-o-2RS5y5J5wtU.roa
Signing time: Mon 13 Feb 2023 04:29:08 +0000
ROA not before: Mon 13 Feb 2023 04:29:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 91.221.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 06 May 2023 06:47:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:49:08:a4:96:7f:3f:56:2c:7a:12:96:35:b6:7c:e8:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Feb 13 04:29:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3c3bc9cf4728bfa75eafea3ed914b9cb9279c2d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2f:58:24:77:d8:81:90:b8:7a:22:9c:e3:50:
c6:05:27:68:33:93:14:2f:ac:71:60:7e:44:d5:0a:
a1:0c:70:0a:f4:36:68:2b:b2:15:89:e5:10:23:98:
6e:92:73:7d:24:ee:1a:49:9b:98:74:aa:5f:79:9b:
56:71:c7:5e:51:1e:a7:b4:32:93:ce:0b:ad:75:03:
64:8d:73:89:25:da:10:d1:8e:eb:83:04:7d:b0:86:
90:73:69:e1:91:16:69:9a:6c:5b:ac:46:57:a4:82:
9d:83:22:d6:ed:dc:29:00:3e:81:60:03:e6:09:6a:
2a:6a:2c:c8:02:3c:67:a6:f6:d8:8f:1e:5e:26:c3:
08:f7:31:b0:2a:e9:ac:c3:d7:20:cd:d0:5c:bb:d1:
d5:87:8f:00:50:d8:e5:2c:10:68:ad:14:c8:3e:d8:
42:0a:f8:47:10:c3:95:f4:41:f8:0f:c8:28:51:cf:
c0:b5:e1:b0:37:e3:f4:6c:53:14:3a:33:18:59:26:
dc:be:5f:a2:08:bc:84:d1:06:40:21:08:65:e3:dc:
cb:f3:e9:15:72:ac:c4:28:7d:31:ae:2e:79:98:8a:
fa:7d:84:78:35:46:e5:c8:b4:6f:42:9b:86:57:87:
c1:ea:3b:4c:bb:9a:f5:e4:67:cc:c4:16:54:d0:b8:
be:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:3B:C9:CF:47:28:BF:A7:5E:AF:EA:3E:D9:14:B9:CB:92:79:C2:D5
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/PDvJz0cov6der-o-2RS5y5J5wtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.233.0/24
Signature Algorithm: sha256WithRSAEncryption
43:e8:88:82:f7:8b:4d:0e:d9:b0:bc:c8:0a:ca:c4:aa:b5:db:
bb:84:31:98:32:98:25:e8:d5:ce:40:b5:ec:b9:4d:8c:15:16:
b5:ce:96:f3:32:e2:12:87:10:58:ff:c8:90:73:1f:0d:04:a0:
75:36:8b:0d:1e:ef:35:37:c4:b4:57:5f:b7:47:24:64:69:46:
2f:ec:6f:98:0a:ab:d9:5b:98:91:29:a3:b2:2d:ce:e9:e1:37:
e8:8c:d5:65:77:a3:0d:ae:09:98:ca:83:f8:ac:8d:82:10:f3:
5b:6c:dc:19:c2:d9:35:cc:39:12:b4:22:9b:5b:c0:01:b8:bf:
36:bd:20:2f:d8:ac:f0:81:08:ee:92:80:ac:6f:95:36:e3:db:
c6:6e:dc:dd:0b:7f:bc:be:f3:8a:7b:0d:38:92:9c:b7:eb:94:
9a:a2:21:85:ba:cb:e3:12:f2:39:e6:69:d4:a7:42:24:99:75:
e2:3b:27:08:c4:4b:f3:68:cd:95:03:26:df:a5:4a:02:3d:6c:
d1:ca:3a:af:6b:96:da:50:03:1f:c7:76:1d:0b:09:2a:dd:28:
a3:e8:87:62:2c:e2:a2:3f:bf:25:28:7a:d6:84:8e:2c:91:f1:
fa:2e:d9:de:1f:fa:8d:f5:31:a6:32:cc:ce:0e:76:b7:4e:ae:
d2:4e:e2:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org