Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/67a4ce-b8ba-4562-9a37-24d818ba7f29/1/69_iWiuHV6op01jKnf-9EF3rqZk.roa
File: 69_iWiuHV6op01jKnf-9EF3rqZk.roa (raw, json)
Hash identifier: DIuGqWfQMvqAOKd0RVS7tt7AQ0VWQuwqtuXuDYSU9ik=
Subject key identifier: EB:DF:E2:5A:2B:87:57:AA:29:D3:58:CA:9D:FF:BD:10:5D:EB:A9:99
Certificate issuer: /CN=798d7013a7fdbb5663fd384a4fed12303145e3ce
Certificate serial: 01857079AD57CFCF25919A868EC1D57B4AF2
Authority key identifier: 79:8D:70:13:A7:FD:BB:56:63:FD:38:4A:4F:ED:12:30:31:45:E3:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eY1wE6f9u1Zj_ThKT-0SMDFF484.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/67a4ce-b8ba-4562-9a37-24d818ba7f29/1/69_iWiuHV6op01jKnf-9EF3rqZk.roa
Signing time: Mon 02 Jan 2023 03:15:00 +0000
ROA not before: Mon 02 Jan 2023 03:15:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59717
IP address blocks: 91.239.72.0/24 maxlen: 24
2a0e:4280::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 25 Apr 2023 13:36:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:ad:57:cf:cf:25:91:9a:86:8e:c1:d5:7b:4a:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=798d7013a7fdbb5663fd384a4fed12303145e3ce
Validity
Not Before: Jan 2 03:15:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebdfe25a2b8757aa29d358ca9dffbd105deba999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:2c:db:68:bd:90:d1:ef:14:52:dc:9a:a9:08:
94:fb:31:42:ae:5f:20:1c:f9:27:66:63:12:37:13:
6e:68:3f:12:0a:14:b9:f7:64:d8:6a:9d:9f:52:e7:
79:e2:ac:02:82:b1:88:b8:70:9a:1e:9d:9c:fc:8c:
34:37:94:a9:00:14:6e:6b:20:f5:96:69:e5:d5:9f:
ac:b0:c2:50:3f:e5:cf:c9:13:df:de:53:4d:0b:01:
5f:7a:94:74:4e:dc:a2:5c:b4:98:57:1f:e4:4e:fd:
3d:29:3c:34:d0:f3:9b:0b:a9:2c:a6:04:30:ac:cd:
b0:8a:c9:d7:59:75:02:1c:d2:19:9f:b1:69:ed:c9:
87:69:54:d4:a1:8d:84:dd:cf:e2:45:a6:02:c0:15:
95:d4:c4:a4:69:28:38:6f:8e:6a:e6:bb:3c:3d:f0:
1e:12:ca:c5:fd:5a:a9:1c:30:f8:3b:99:9c:38:b2:
47:ec:33:ee:67:6b:20:3d:7c:65:22:ca:0a:c7:cc:
27:11:1d:e2:88:57:92:36:dc:60:67:3f:19:56:ab:
45:ba:4b:aa:02:55:21:a8:a2:14:4c:69:1e:c7:c1:
e5:18:4b:2b:f2:33:92:4d:27:6e:78:e0:8c:4a:88:
05:b3:08:2a:a7:91:59:30:0f:c2:5d:c8:ea:fc:2b:
ce:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:DF:E2:5A:2B:87:57:AA:29:D3:58:CA:9D:FF:BD:10:5D:EB:A9:99
X509v3 Authority Key Identifier:
keyid:79:8D:70:13:A7:FD:BB:56:63:FD:38:4A:4F:ED:12:30:31:45:E3:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eY1wE6f9u1Zj_ThKT-0SMDFF484.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/67a4ce-b8ba-4562-9a37-24d818ba7f29/1/69_iWiuHV6op01jKnf-9EF3rqZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/67a4ce-b8ba-4562-9a37-24d818ba7f29/1/eY1wE6f9u1Zj_ThKT-0SMDFF484.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.72.0/24
IPv6:
2a0e:4280::/29
Signature Algorithm: sha256WithRSAEncryption
93:42:3b:f8:65:fe:12:7c:94:ca:9c:98:d0:bc:81:33:51:3b:
f0:70:48:fa:fc:c0:10:5d:b6:fc:f5:3e:9a:84:1b:e2:38:41:
dc:10:38:e4:c5:e7:88:46:7c:fa:73:ec:c1:9a:0c:d4:92:73:
6d:b6:cd:27:d5:66:42:7d:07:b0:f6:b2:e8:db:48:d0:44:ea:
cc:ea:39:fb:c1:44:4c:15:3c:cd:ee:13:57:d8:80:de:ff:58:
c6:6c:69:0e:7f:ed:de:31:7e:13:99:ca:9e:a4:89:1e:27:d4:
ad:20:1e:b1:d2:ad:61:0c:99:f5:9c:ac:28:1f:0f:34:3b:8d:
74:3c:1d:f1:6e:e4:79:68:89:ce:1a:fc:44:ef:50:d6:af:3c:
ed:8a:52:d0:d8:b1:7a:81:37:98:84:b6:84:0f:48:66:61:cb:
57:47:eb:2e:24:f3:a7:79:08:74:6e:e5:25:a4:cb:a7:09:cd:
de:a5:4a:0d:21:9c:80:7d:04:93:89:f6:15:c5:04:ea:e7:32:
a7:71:f8:7c:c2:8f:e2:29:dd:0a:0c:61:b1:5c:8e:fb:2e:9a:
69:c1:3f:06:28:28:48:77:76:a0:3a:78:9e:d5:fc:37:07:ba:
f9:bd:fc:21:68:38:50:5b:17:5f:54:d0:c2:51:c1:e5:dd:e5:
5a:00:e5:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:51 2024 by rpki-client on console-ams.rpki-client.org