Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/ffd4ca-e51e-447b-bcd2-cfc6aa016669/1/_j8kBbuEAIjWlL9XwWtPnWBTDTo.roa
File: _j8kBbuEAIjWlL9XwWtPnWBTDTo.roa (raw, json)
Hash identifier: SLBDxMhGfjCLCXSbJCcpQW1emXPebpVV2yGXFP5I+xI=
Subject key identifier: FE:3F:24:05:BB:84:00:88:D6:94:BF:57:C1:6B:4F:9D:60:53:0D:3A
Certificate issuer: /CN=ca001b948595bce24913f811aff71e3cce45d656
Certificate serial: 01856BAE99D0809EABC9D8D11A9B516CDD02
Authority key identifier: CA:00:1B:94:85:95:BC:E2:49:13:F8:11:AF:F7:1E:3C:CE:45:D6:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ygAblIWVvOJJE_gRr_cePM5F1lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/ffd4ca-e51e-447b-bcd2-cfc6aa016669/1/_j8kBbuEAIjWlL9XwWtPnWBTDTo.roa
Signing time: Sun 01 Jan 2023 04:54:42 +0000
ROA not before: Sun 01 Jan 2023 04:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198524
IP address blocks: 91.236.1.0/24 maxlen: 24
2001:67c:2730::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ae:99:d0:80:9e:ab:c9:d8:d1:1a:9b:51:6c:dd:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca001b948595bce24913f811aff71e3cce45d656
Validity
Not Before: Jan 1 04:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe3f2405bb840088d694bf57c16b4f9d60530d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:41:97:0f:e4:a2:d4:d1:ff:dd:43:4a:89:ca:
7b:58:b9:f6:eb:88:bc:c6:69:70:18:55:2e:5f:14:
a5:12:72:f1:6c:7d:77:cd:88:df:0e:41:0d:c6:7c:
54:5b:5c:24:00:ce:f8:29:92:5d:38:14:9f:df:ad:
a7:32:69:2c:f1:55:a8:0a:71:68:29:ec:2e:f7:2e:
48:4e:0e:87:57:85:24:6a:e6:7a:60:54:a8:13:0d:
cd:2e:cc:0b:10:71:96:8a:1a:06:95:e8:f9:8b:fa:
62:02:22:82:34:79:62:fc:b9:50:a4:0b:e7:5c:46:
3a:0c:2a:51:e8:2b:3c:83:88:f2:f4:be:30:37:be:
cb:42:e6:e8:56:6b:79:69:5a:8c:53:f8:52:03:2f:
37:72:00:b7:49:ed:e6:e4:76:0e:66:47:bf:c0:a9:
0a:c7:71:b2:95:20:9b:e4:32:c3:f9:74:74:eb:ce:
77:20:90:b2:8f:a3:32:94:71:0a:13:55:9d:36:8e:
fa:e0:b4:48:ea:4e:79:37:eb:bc:b9:5e:94:a5:d2:
73:2a:de:cc:67:cc:0c:25:31:73:ed:2f:7f:a0:59:
53:6f:5c:1a:0b:96:68:81:64:77:c9:d9:94:21:d7:
2e:73:bb:56:42:f7:9e:88:0f:c9:4a:77:6c:53:8f:
f9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:3F:24:05:BB:84:00:88:D6:94:BF:57:C1:6B:4F:9D:60:53:0D:3A
X509v3 Authority Key Identifier:
keyid:CA:00:1B:94:85:95:BC:E2:49:13:F8:11:AF:F7:1E:3C:CE:45:D6:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ygAblIWVvOJJE_gRr_cePM5F1lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/ffd4ca-e51e-447b-bcd2-cfc6aa016669/1/_j8kBbuEAIjWlL9XwWtPnWBTDTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/ffd4ca-e51e-447b-bcd2-cfc6aa016669/1/ygAblIWVvOJJE_gRr_cePM5F1lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.1.0/24
IPv6:
2001:67c:2730::/48
Signature Algorithm: sha256WithRSAEncryption
aa:9a:dc:2a:94:62:db:2d:94:2b:ed:75:22:cd:18:0a:cd:80:
cd:22:81:db:07:8d:ed:9f:14:85:28:21:0f:97:4d:89:3c:52:
a0:1a:03:e9:61:67:2d:5a:d1:03:3d:89:d7:38:70:c7:07:d2:
02:6d:f0:5e:d7:2c:23:78:af:3f:08:8c:65:00:86:dd:db:6a:
72:6a:26:71:b2:8e:09:bd:47:ea:1a:d5:99:e5:77:d4:73:42:
ca:90:bf:03:47:f3:06:09:8d:f6:19:9c:51:69:00:5a:db:86:
77:00:76:ee:39:16:cc:dc:04:04:56:95:6c:48:e2:3a:db:c7:
cf:21:42:d4:20:ac:80:bc:9f:27:2a:00:d4:67:2b:e3:c6:83:
9f:42:f9:4d:4e:70:64:78:17:b7:f7:de:46:e7:29:99:b6:8f:
18:32:c0:e3:41:2e:b3:9b:13:cd:d4:f3:85:d4:cb:23:da:f4:
8e:27:47:f9:24:b1:d2:1b:1c:5b:da:47:77:1a:f0:43:7f:ee:
cb:37:2d:2a:d4:7a:d8:93:6d:fb:4c:8b:b1:a6:25:f9:90:f7:
a4:5d:65:53:4a:34:57:12:8b:0f:bb:f6:d4:2d:9c:a8:1c:e3:
89:ec:3d:50:59:c1:11:6d:fa:26:d7:ea:c7:ff:37:00:2a:53:
c1:90:d9:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:03 2024 by rpki-client on console-fra.rpki-client.org