Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/U_KWXahXNr5G5bF7y7Qn8nKFtcI.roa
File: U_KWXahXNr5G5bF7y7Qn8nKFtcI.roa (raw, json)
Hash identifier: xdGb4MgNY8g7xsSyIzD5TS850EW6YdDi4Y1PGOlNNOE=
Subject key identifier: 53:F2:96:5D:A8:57:36:BE:46:E5:B1:7B:CB:B4:27:F2:72:85:B5:C2
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01856D4AD369D80F40C6FCB32EAE30FF367D
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/U_KWXahXNr5G5bF7y7Qn8nKFtcI.roa
Signing time: Sun 01 Jan 2023 12:24:58 +0000
ROA not before: Sun 01 Jan 2023 12:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209242
IP address blocks: 91.221.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:d3:69:d8:0f:40:c6:fc:b3:2e:ae:30:ff:36:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 1 12:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=53f2965da85736be46e5b17bcbb427f27285b5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:92:3c:ab:b3:2c:58:d9:f5:4c:76:12:88:c7:
46:74:c7:bf:b0:84:35:19:6e:a6:7d:5c:29:bc:b5:
8c:fb:a8:ff:ac:9a:d9:b1:69:ce:17:a9:f7:a7:46:
1a:43:06:63:fc:f9:0a:67:7a:80:8c:19:bd:4e:96:
ee:82:73:2a:b2:60:fe:96:e6:11:45:b1:09:78:df:
9d:8b:c1:52:8a:f4:07:83:52:fc:81:ba:89:79:fe:
49:dd:b8:ff:e2:ef:99:6f:13:cf:4f:19:95:73:a3:
ae:69:49:1b:30:23:3e:ab:ba:09:44:69:af:9a:55:
6f:69:4b:57:7d:71:b7:84:03:ec:00:73:bd:9d:b2:
75:13:51:68:9b:9b:e1:dc:9b:91:5b:8e:36:70:82:
c3:bf:4a:24:07:75:e0:a4:12:0b:37:16:cc:f3:d6:
52:ea:12:c5:82:3e:80:5d:70:9f:c9:ae:34:a3:c5:
ce:cd:82:dd:06:31:15:74:69:4c:f9:d3:c2:2e:0e:
50:9b:6c:01:04:6d:ed:9a:c6:9b:ff:8c:68:8d:68:
01:44:66:1f:18:22:b3:00:77:34:d0:dd:c0:a5:f5:
93:f9:06:a3:e3:57:c2:54:dc:ac:49:1c:bd:eb:b4:
75:3d:71:4c:23:ed:2d:27:fa:03:fa:8f:5f:65:90:
5c:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F2:96:5D:A8:57:36:BE:46:E5:B1:7B:CB:B4:27:F2:72:85:B5:C2
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/U_KWXahXNr5G5bF7y7Qn8nKFtcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.116.0/24
Signature Algorithm: sha256WithRSAEncryption
82:3d:b5:42:c3:28:a5:92:b4:55:87:fb:5c:3f:98:d5:eb:a0:
80:3e:f3:92:5c:f3:ee:62:5b:46:0d:ad:ef:f2:3e:52:ea:e4:
4d:50:dc:1d:6c:22:3b:34:34:63:e0:7c:25:7c:3b:32:3a:28:
be:0f:f2:96:9f:80:56:19:31:eb:44:85:18:45:41:53:83:cb:
2d:b2:23:60:14:2d:31:df:25:3b:03:70:8d:d4:f8:ec:eb:f1:
04:c9:b5:6d:89:d0:2c:c1:ae:ce:c4:c5:14:48:a6:71:f2:10:
ad:cd:d6:85:f2:76:e1:c6:9f:28:7e:a5:94:ca:41:c5:3a:25:
9e:f2:88:bd:66:45:07:0a:bb:6b:39:af:ae:53:9a:73:49:61:
f6:8b:b9:35:4b:4c:6e:c9:45:1c:bd:ef:86:79:13:89:80:0d:
56:b7:a7:0c:a9:94:70:66:d9:af:2b:67:3d:f8:76:02:4a:94:
4f:0c:49:97:ba:f1:3f:d9:94:2c:c5:e9:53:88:40:61:49:75:
52:47:e8:96:ee:74:64:a3:3d:66:48:18:41:16:0f:cd:eb:47:
e9:65:c3:36:05:fb:03:79:85:e4:da:05:aa:b8:cb:f7:b7:27:
9f:37:d7:4b:16:fa:44:a0:92:f9:0a:9d:cf:58:7e:90:27:71:
75:c2:15:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org