Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/dc68dd-1dc8-4888-a3ed-ebd73b19eae4/1/xW7Fl8iVU1Rv73PnUZo6ws5TzwM.roa
File: xW7Fl8iVU1Rv73PnUZo6ws5TzwM.roa (raw, json)
Hash identifier: PIdQzjR0Cx61BeMzqElI9Dq/GybcyDgBGfDvx75p0Ec=
Subject key identifier: C5:6E:C5:97:C8:95:53:54:6F:EF:73:E7:51:9A:3A:C2:CE:53:CF:03
Certificate issuer: /CN=dd5ee65ba368ad74d9a03ff282440c8577a21596
Certificate serial: 018570B07F559BEDB0FECC5DE02F550E5893
Authority key identifier: DD:5E:E6:5B:A3:68:AD:74:D9:A0:3F:F2:82:44:0C:85:77:A2:15:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3V7mW6NorXTZoD_ygkQMhXeiFZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/dc68dd-1dc8-4888-a3ed-ebd73b19eae4/1/xW7Fl8iVU1Rv73PnUZo6ws5TzwM.roa
Signing time: Mon 02 Jan 2023 04:14:53 +0000
ROA not before: Mon 02 Jan 2023 04:14:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204726
IP address blocks: 91.219.22.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:b0:7f:55:9b:ed:b0:fe:cc:5d:e0:2f:55:0e:58:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd5ee65ba368ad74d9a03ff282440c8577a21596
Validity
Not Before: Jan 2 04:14:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c56ec597c89553546fef73e7519a3ac2ce53cf03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:83:77:90:a8:ba:40:68:8f:ff:a9:03:10:60:
ed:41:bd:3c:27:77:10:bf:6e:8f:7f:eb:50:fa:4e:
87:c5:61:b5:b5:8d:10:6d:f9:67:2c:b4:a8:32:d2:
35:16:4f:1b:ee:ad:79:ed:a0:19:0f:cc:9f:ce:54:
6f:d9:7d:10:4a:76:db:9b:41:d9:41:7f:08:cf:43:
20:73:42:1e:b0:5c:66:62:1f:55:29:9d:af:f9:eb:
38:bc:81:8a:40:44:95:f1:64:fe:3d:b9:32:64:8c:
c3:8f:ee:d1:e9:0a:e0:b7:70:de:3e:8a:60:4a:30:
b5:67:ce:cf:94:e5:61:89:d3:b9:e5:65:6d:bb:af:
49:45:cf:16:b8:21:da:bf:e6:26:f1:2b:fd:c5:8e:
e3:33:a8:9c:9e:64:8c:bf:88:c6:b6:fa:c5:ef:f5:
87:e7:b1:76:80:ac:85:5f:ff:0e:fd:54:ee:6a:0b:
bb:a0:85:69:9b:87:a7:ed:03:1a:58:9b:2e:0b:d9:
6c:c0:07:10:02:cc:01:5f:d2:fb:82:00:02:9b:1b:
9a:e0:50:b8:6b:13:94:6c:b7:15:2f:bc:c0:75:2a:
96:01:12:4c:17:58:1b:62:16:bc:4a:76:a9:66:4b:
29:26:6f:fe:e7:95:dc:2f:b7:5f:19:09:c7:fe:a2:
4b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:6E:C5:97:C8:95:53:54:6F:EF:73:E7:51:9A:3A:C2:CE:53:CF:03
X509v3 Authority Key Identifier:
keyid:DD:5E:E6:5B:A3:68:AD:74:D9:A0:3F:F2:82:44:0C:85:77:A2:15:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3V7mW6NorXTZoD_ygkQMhXeiFZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/dc68dd-1dc8-4888-a3ed-ebd73b19eae4/1/xW7Fl8iVU1Rv73PnUZo6ws5TzwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/dc68dd-1dc8-4888-a3ed-ebd73b19eae4/1/3V7mW6NorXTZoD_ygkQMhXeiFZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.22.0/24
Signature Algorithm: sha256WithRSAEncryption
22:b6:51:f7:ce:8c:8c:f2:29:e5:a8:9a:18:40:ee:e7:11:7b:
05:32:c9:f1:97:9f:f7:50:93:fd:68:af:76:b3:5c:97:e6:0d:
e9:87:ad:5a:40:31:6c:01:7b:18:2b:36:1d:a7:60:ca:6e:76:
b6:20:3b:4e:b7:64:a6:a7:93:83:48:11:59:d3:9e:0d:01:de:
3b:fc:2f:eb:6d:c4:87:26:f9:9a:e0:9d:89:9f:25:8d:4d:d0:
9a:00:cb:cf:44:2c:49:f2:75:2c:28:64:11:32:33:d3:d5:ea:
96:16:aa:1b:a0:da:59:54:1e:da:30:7a:fe:e9:2b:5b:5e:c9:
04:67:ff:d3:a6:a8:bb:96:d3:2a:ba:1b:c1:87:69:c6:f8:87:
cc:39:e9:d5:00:78:e2:32:ec:42:b1:5e:92:77:c9:f8:fc:9a:
96:23:e8:98:3b:c1:36:19:69:f7:29:58:f4:ea:12:48:ff:9d:
04:66:d4:ac:92:3a:27:57:c4:41:88:20:fd:3f:b9:dc:98:0a:
23:2c:16:9e:ef:30:95:3a:18:57:b1:d1:38:bc:73:ac:df:1c:
95:de:4d:b7:ab:7d:09:44:22:5f:6a:78:f3:30:0e:7b:e6:00:
18:79:59:a7:d5:24:eb:dd:e2:b5:be:97:e2:84:19:28:dc:cf:
e4:b2:27:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:40 2024 by rpki-client on console-fra.rpki-client.org