Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/inPkQDx25pybIfLaOLkTjrCJM9Y.roa
File: inPkQDx25pybIfLaOLkTjrCJM9Y.roa (raw, json)
Hash identifier: g1iCSjaFNyX/+ZjnUaMhjh5irkx3OnY/aBhWNCGi8bs=
Subject key identifier: 8A:73:E4:40:3C:76:E6:9C:9B:21:F2:DA:38:B9:13:8E:B0:89:33:D6
Certificate issuer: /CN=26e3fc79b638b123191dafa4e886d3a5acad487f
Certificate serial: 018DE6889A7A676473A8566A3174A4C37201
Authority key identifier: 26:E3:FC:79:B6:38:B1:23:19:1D:AF:A4:E8:86:D3:A5:AC:AD:48:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JuP8ebY4sSMZHa-k6IbTpaytSH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/inPkQDx25pybIfLaOLkTjrCJM9Y.roa
Signing time: Mon 26 Feb 2024 17:48:48 +0000
ROA not before: Mon 26 Feb 2024 17:48:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215540
IP address blocks: 91.216.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 26 Apr 2024 05:36:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:e6:88:9a:7a:67:64:73:a8:56:6a:31:74:a4:c3:72:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26e3fc79b638b123191dafa4e886d3a5acad487f
Validity
Not Before: Feb 26 17:48:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8a73e4403c76e69c9b21f2da38b9138eb08933d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e1:d9:52:86:a4:e8:52:f6:11:47:b6:10:c0:
f1:1a:fa:e5:47:1c:dc:e9:b6:cc:49:62:ae:b3:c4:
b4:64:b2:0e:91:00:dd:e9:a3:6f:99:e8:b4:22:35:
8e:9c:8c:fd:b4:0f:8b:cc:7b:69:c6:35:8e:10:58:
ec:01:6e:59:a3:01:ce:b0:2b:11:8a:9a:02:0f:78:
1e:cd:c0:95:fb:61:6e:6f:1d:9a:1f:76:c1:30:e4:
38:67:e8:9b:d1:5f:00:31:c5:db:fc:b1:aa:96:c2:
f5:12:5c:6e:22:b8:01:bc:a1:f5:bf:b1:2a:69:34:
6e:3b:0c:35:c8:bc:0c:77:3f:00:79:0a:59:51:a5:
29:de:12:93:cf:a8:41:c9:a3:f8:dc:c3:8e:0c:85:
f8:fa:5d:fd:00:89:12:50:f8:ef:9a:dc:95:32:ef:
f2:23:5c:b5:44:b1:93:dc:48:b3:14:8d:f1:ef:96:
a2:3c:fd:f0:89:c4:05:bd:e6:75:cc:fc:4c:ed:f1:
a7:61:73:13:32:b2:e5:60:47:0c:91:f9:2f:d8:53:
e6:85:dd:91:fa:3c:7c:cd:b2:6a:5e:79:b8:a2:b6:
5e:ed:17:f6:97:69:99:60:60:55:1a:64:f1:ca:3f:
36:0d:56:31:bf:28:74:08:88:e0:db:14:91:af:ff:
46:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:73:E4:40:3C:76:E6:9C:9B:21:F2:DA:38:B9:13:8E:B0:89:33:D6
X509v3 Authority Key Identifier:
keyid:26:E3:FC:79:B6:38:B1:23:19:1D:AF:A4:E8:86:D3:A5:AC:AD:48:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JuP8ebY4sSMZHa-k6IbTpaytSH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/inPkQDx25pybIfLaOLkTjrCJM9Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/53b013-5912-42b0-b026-a55b0dcc2946/1/JuP8ebY4sSMZHa-k6IbTpaytSH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.186.0/24
Signature Algorithm: sha256WithRSAEncryption
06:0b:b3:3f:6f:bc:15:d0:97:61:f9:94:33:a8:fc:b8:83:80:
b6:23:9f:7e:a7:39:b1:f0:e9:0e:66:c9:4b:0d:f4:2c:06:bf:
01:54:56:42:ac:79:79:b4:06:8e:9d:72:37:28:e1:9e:c1:2b:
97:5e:7b:63:f2:a3:88:0f:f4:5e:5d:94:8b:ba:dd:cc:e2:38:
ed:29:77:61:91:10:b7:05:6e:99:40:7d:5f:30:5b:b4:53:cf:
16:b0:1a:86:6f:9e:38:fd:6c:de:5c:3f:f8:3f:6a:51:90:6f:
6f:3e:ac:dc:70:b3:ce:00:76:d7:a4:e7:37:f1:a7:dd:ae:c8:
a2:5b:f1:2c:a9:90:8f:29:19:4c:60:d2:41:c1:4a:15:b0:34:
f5:57:3a:26:2b:7e:c3:13:fe:f8:b9:7f:94:1b:14:11:0a:c0:
27:44:69:f9:a2:29:ff:cd:da:4b:ed:b4:ae:25:3f:20:4c:9f:
96:54:0e:31:79:ee:37:3e:ea:c7:8e:58:20:99:29:d0:b7:07:
4a:68:92:e5:77:97:1c:fd:56:b3:9d:e7:1c:26:15:49:fa:ec:
e6:76:9a:d9:c7:6e:16:d4:9e:ec:c3:fd:58:a1:ff:ec:3f:ac:
f2:eb:fa:ca:37:87:91:ec:f3:39:20:42:91:0d:bc:dd:ed:c7:
b9:3c:39:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:44 2024 by rpki-client on console-ams.rpki-client.org