Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/fMbBcRC5MhmTtxMNQpLEw9wozhE.roa
File: fMbBcRC5MhmTtxMNQpLEw9wozhE.roa (raw, json)
Hash identifier: qRpdI07NHiLJvb+cPMecTUy4ZamrWMMZI2ZgWJg/kLA=
Subject key identifier: 7C:C6:C1:71:10:B9:32:19:93:B7:13:0D:42:92:C4:C3:DC:28:CE:11
Certificate issuer: /CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Certificate serial: 01891BC646341BB4C79363A845EC05558CD4
Authority key identifier: 66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/fMbBcRC5MhmTtxMNQpLEw9wozhE.roa
Signing time: Mon 03 Jul 2023 12:42:06 +0000
ROA not before: Mon 03 Jul 2023 12:42:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58222
IP address blocks: 91.210.70.0/24 maxlen: 24
2a13:87c0::/29 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 06:29:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:1b:c6:46:34:1b:b4:c7:93:63:a8:45:ec:05:55:8c:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=66dfc89c07ae1331bfb37138568ea79a87fecf3b
Validity
Not Before: Jul 3 12:42:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7cc6c17110b9321993b7130d4292c4c3dc28ce11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:1c:c0:e5:6a:a6:b5:97:34:39:68:7b:6c:32:
7c:fb:13:84:d9:3c:8d:6d:62:91:86:a4:b9:7d:8e:
e3:97:f7:07:64:3f:fe:b3:6c:5e:7e:d7:7a:58:73:
15:d3:36:81:97:ad:cf:e0:9a:e4:8b:e5:3e:d6:08:
80:ef:eb:f3:a6:a4:22:95:ab:91:c0:b8:79:90:27:
b9:49:df:59:6a:21:e2:40:28:be:f0:1a:e1:4e:96:
17:0f:19:30:61:0c:86:a8:69:37:4b:b6:95:4a:7a:
0a:1a:1a:99:e8:67:b3:71:f2:a2:7e:9a:e6:ca:ec:
95:6e:cd:55:42:83:3a:97:e0:f9:60:e9:ff:49:85:
a2:fa:fd:3f:72:95:7d:66:9e:92:6c:f4:9d:3c:fe:
c0:07:f0:c1:ae:be:f4:5a:41:c7:72:9b:ba:f3:74:
6b:f3:1b:db:d6:35:fa:3e:1e:5b:9a:67:49:59:ea:
c6:d5:d3:fe:4a:5d:d3:45:c5:d7:dc:80:ea:10:93:
32:ef:36:52:f3:bb:f5:57:c4:58:da:c4:09:9b:08:
5c:9e:e5:8b:c6:4f:fa:5d:4b:3c:e7:85:b3:61:e2:
98:0f:27:df:5d:4f:49:34:58:3c:a9:13:0c:f0:9f:
30:0e:85:58:0f:43:c0:da:bd:27:4a:a0:ba:7c:47:
59:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:C6:C1:71:10:B9:32:19:93:B7:13:0D:42:92:C4:C3:DC:28:CE:11
X509v3 Authority Key Identifier:
keyid:66:DF:C8:9C:07:AE:13:31:BF:B3:71:38:56:8E:A7:9A:87:FE:CF:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Zt_InAeuEzG_s3E4Vo6nmof-zzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/fMbBcRC5MhmTtxMNQpLEw9wozhE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/035de6-ea5f-40a6-a673-19c9298ff5d5/1/Zt_InAeuEzG_s3E4Vo6nmof-zzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.210.70.0/24
IPv6:
2a13:87c0::/29
Signature Algorithm: sha256WithRSAEncryption
c2:32:77:e7:55:4f:cc:c0:ca:03:b5:57:f0:3c:c0:70:91:3a:
92:ff:7c:5e:b5:fd:44:60:be:d0:6d:00:bb:25:cc:18:e8:e1:
7f:89:0d:b5:c3:b5:d9:26:60:8e:ea:54:c3:90:05:e0:ba:14:
01:7f:b3:18:b1:7b:92:b3:f0:25:11:58:c1:27:64:3f:e8:7e:
b5:20:2b:5b:96:2c:71:59:e8:71:35:84:ff:07:8b:31:2a:96:
ff:7a:8e:42:fe:c3:00:d1:66:c3:2c:7d:9e:ad:fa:89:ef:12:
a0:70:96:f6:8f:39:de:41:d3:e7:9b:b6:8b:23:f7:91:4f:2c:
f5:d0:09:1c:98:66:ee:cd:d0:10:2c:c8:99:3e:23:8f:99:10:
98:00:66:97:fc:1c:99:e2:51:2b:dd:8b:23:81:4a:2c:55:8b:
73:85:45:7c:dd:e2:4f:2c:e8:4e:97:05:e5:5f:d2:e4:14:76:
d9:44:ed:ac:b6:ef:d9:ca:f4:85:d5:9b:4e:2f:6e:ae:f1:f6:
24:b1:05:16:bc:bd:f5:bf:da:1c:e1:76:2e:e5:e4:77:c0:dc:
7c:b6:6b:e1:9a:38:61:82:8f:e5:b3:72:45:1f:a7:8f:5c:65:
c2:22:35:11:a1:18:75:d9:7c:36:3b:1b:07:61:dd:ec:3b:3f:
6f:ac:2e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:30 2024 by rpki-client on console-ams.rpki-client.org