Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/67T8_Rrdyzy54EiZPganLfyKJsc.roa
File: 67T8_Rrdyzy54EiZPganLfyKJsc.roa (raw, json)
Hash identifier: 8hliA44wlIiq+rZXYMHG7IzPXPsW0MY8z72zWBO8re8=
Subject key identifier: EB:B4:FC:FD:1A:DD:CB:3C:B9:E0:48:99:3E:06:A7:2D:FC:8A:26:C7
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 018B65590A5DC34873E885A451108A67BF37
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/67T8_Rrdyzy54EiZPganLfyKJsc.roa
Signing time: Wed 25 Oct 2023 05:40:16 +0000
ROA not before: Wed 25 Oct 2023 05:40:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216415
IP address blocks: 91.132.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 03 Nov 2023 00:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:65:59:0a:5d:c3:48:73:e8:85:a4:51:10:8a:67:bf:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 25 05:40:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebb4fcfd1addcb3cb9e048993e06a72dfc8a26c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:80:07:37:d1:39:f3:bd:d6:76:22:fe:88:5d:
d0:7a:48:b2:24:58:74:f9:ea:75:ec:1d:71:da:a6:
ba:fb:25:6a:11:62:f6:2b:df:cf:9f:a6:47:6f:66:
4d:09:79:f9:a8:b9:41:4a:6d:24:9a:7c:fc:7c:e2:
a1:92:ba:59:9e:f1:8c:5b:63:ef:11:de:b1:2e:69:
92:55:b6:11:8d:a0:4e:fc:1c:d7:0a:63:97:71:51:
04:6c:6f:86:1c:86:3c:80:47:61:8d:36:f5:72:45:
73:b9:00:fb:01:45:3c:c4:af:1f:a1:61:1a:cb:45:
08:8e:1f:68:07:62:3a:9c:b2:36:ea:cc:19:5f:7d:
80:72:72:86:a1:31:39:98:5c:bb:7b:27:ca:2b:89:
2f:b8:e1:53:73:9e:8f:d5:ee:f3:d0:a4:9a:2f:2b:
0d:2f:6e:61:75:c6:10:42:8c:21:c2:18:80:89:e9:
4f:41:a1:13:b4:49:2e:91:e7:9c:38:c6:dc:34:0f:
86:be:b7:88:e6:e0:f0:57:fc:ad:00:b4:4a:4e:02:
b4:21:19:3f:56:b2:1e:3b:a6:7b:30:37:69:09:75:
00:87:b5:2b:6d:33:02:d5:23:d1:f2:f2:ca:16:1f:
18:c8:20:50:77:c6:26:bb:85:aa:55:b6:99:c4:ad:
f4:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B4:FC:FD:1A:DD:CB:3C:B9:E0:48:99:3E:06:A7:2D:FC:8A:26:C7
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/67T8_Rrdyzy54EiZPganLfyKJsc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.56.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:6f:1e:7f:09:5a:b8:9e:bc:14:71:c8:14:be:de:4f:e9:b3:
90:bd:1e:a0:16:e0:19:56:de:9c:51:a4:ef:a9:75:e0:a3:00:
2e:ec:3a:19:ae:92:53:7b:4b:ff:27:76:54:b9:0d:58:82:72:
a7:20:8a:7f:33:22:2a:9d:bb:16:0a:80:e2:10:03:49:53:82:
cc:eb:e5:20:ab:ff:91:07:22:f8:a9:83:84:30:72:e6:5d:e6:
34:d2:b5:71:8e:4d:ab:1f:f7:fa:11:8f:bd:1c:26:b0:fc:55:
fe:ab:ad:aa:96:15:45:0b:83:8c:f1:57:af:a6:8d:18:ff:a1:
8a:a8:f8:97:c8:81:e7:b3:7c:5a:bb:5e:c7:95:65:52:53:48:
24:58:04:93:1f:5d:da:6e:75:44:6c:a8:46:09:ea:53:d1:84:
fa:46:22:2b:29:b6:58:f5:2d:20:32:58:0f:cd:d1:c2:36:15:
f0:1a:2b:ba:1e:52:8c:cb:2d:4a:1d:ef:02:0b:48:87:b8:0b:
f9:08:67:82:de:a9:11:f3:2f:34:b0:ba:bb:7b:4f:21:35:df:
fe:de:42:37:27:bf:15:85:68:e5:a1:14:8b:15:c6:b0:aa:fa:
89:cf:2e:67:0c:c0:6e:95:ca:18:68:ed:38:35:5a:73:21:8f:
ad:d8:12:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:34 2024 by rpki-client on console-fra.rpki-client.org