Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/UDV-nmz5dYI1lOWsW6428ZQ2jHw.roa
File: UDV-nmz5dYI1lOWsW6428ZQ2jHw.roa (raw, json)
Hash identifier: 5Cu/gYvsyNRqkA+xEvDeO1xxP0aPCEKHFEXXvbtPHYQ=
Subject key identifier: 50:35:7E:9E:6C:F9:75:82:35:94:E5:AC:5B:AE:36:F1:94:36:8C:7C
Certificate issuer: /CN=bf1f6cd6fab95d241cd9ac5f85f4d05f9de58f9b
Certificate serial: 01856D13CE705AC70193E64CEB92AB470D29
Authority key identifier: BF:1F:6C:D6:FA:B9:5D:24:1C:D9:AC:5F:85:F4:D0:5F:9D:E5:8F:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vx9s1vq5XSQc2axfhfTQX53lj5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/UDV-nmz5dYI1lOWsW6428ZQ2jHw.roa
Signing time: Sun 01 Jan 2023 11:24:52 +0000
ROA not before: Sun 01 Jan 2023 11:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213172
IP address blocks: 91.217.240.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:30:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:13:ce:70:5a:c7:01:93:e6:4c:eb:92:ab:47:0d:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1f6cd6fab95d241cd9ac5f85f4d05f9de58f9b
Validity
Not Before: Jan 1 11:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50357e9e6cf975823594e5ac5bae36f194368c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:c9:31:a3:56:cb:ec:5a:e2:34:ee:60:3c:5a:
7a:8f:be:b5:d6:80:ba:1f:0a:05:33:c6:ec:a3:6f:
23:39:d4:a3:fd:ac:6e:3e:32:cb:47:6c:8e:32:57:
94:c9:a4:75:2d:1c:6c:5e:51:ab:c8:b6:95:fc:7b:
f3:39:b5:04:17:de:3c:91:42:54:f2:3e:8c:3d:5e:
5d:5d:62:b2:93:47:61:3d:4e:f8:7a:3c:e7:22:ae:
34:37:9a:6b:25:d6:87:49:86:91:98:a8:85:bd:25:
c0:ba:e6:2e:8a:c1:de:e3:5d:a7:5a:80:43:72:78:
47:66:8c:d1:11:1e:48:52:6b:ef:12:2b:65:3d:91:
5e:ff:dd:bc:af:2c:ca:86:54:f8:26:97:ad:0f:47:
ee:1b:34:d4:91:e4:56:af:c2:bd:dc:f9:2f:0e:ea:
ee:2c:19:ef:e1:32:2a:5a:ac:66:49:b6:cf:b4:38:
7e:4c:f7:c4:2d:76:ef:07:6a:8c:62:c1:3b:25:88:
9e:42:a9:bb:23:e2:35:2f:d1:24:34:12:23:55:c7:
e7:b7:a8:8e:52:8b:b5:e8:6b:b3:e3:88:5a:cc:17:
d2:7c:c0:6c:b8:57:82:89:48:55:28:d1:5a:c6:0f:
17:31:62:c5:3f:29:5a:46:48:23:6c:3e:58:f5:a1:
a9:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:35:7E:9E:6C:F9:75:82:35:94:E5:AC:5B:AE:36:F1:94:36:8C:7C
X509v3 Authority Key Identifier:
keyid:BF:1F:6C:D6:FA:B9:5D:24:1C:D9:AC:5F:85:F4:D0:5F:9D:E5:8F:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vx9s1vq5XSQc2axfhfTQX53lj5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/UDV-nmz5dYI1lOWsW6428ZQ2jHw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/e3c971-5324-4134-bead-597c43598577/1/vx9s1vq5XSQc2axfhfTQX53lj5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.240.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b1:ed:7e:78:39:c2:fd:91:34:dc:0e:77:3e:41:a4:01:65:
f1:85:26:86:bc:41:37:9f:1e:76:c1:59:b0:af:a8:31:72:72:
d7:6d:13:c8:c4:0d:c1:a1:c0:1c:23:45:0f:3b:c6:a3:41:8f:
df:68:6a:39:06:fd:24:6a:85:2f:90:61:9d:4b:0c:3d:e8:7f:
80:6b:b2:3a:d3:72:7c:b6:30:5b:50:0e:9f:a6:50:d9:c2:5a:
dc:57:7d:74:bf:64:2f:38:f0:84:bb:60:8b:d4:d2:1f:1a:34:
e2:24:92:c6:2e:dd:a7:0a:71:51:47:1b:0e:da:da:82:d4:75:
ef:ff:bb:44:3f:04:e2:2d:f5:d5:b4:37:9a:dd:bc:bf:56:c3:
94:07:58:99:8a:07:39:1a:05:09:aa:73:11:4f:b5:6c:0b:82:
4e:fc:8a:a8:be:b5:da:9a:94:0f:9e:fd:39:a5:7c:a4:62:17:
9a:1a:51:59:9d:87:b0:6d:c2:2b:5f:ba:90:d2:d0:6c:fe:d5:
cc:e7:f0:60:ec:10:51:86:87:1b:71:0e:e5:83:f4:38:09:27:
81:10:ef:ac:8f:90:b6:17:02:bb:7a:01:75:51:89:5d:05:cb:
4e:17:e3:19:39:1e:70:d2:f7:6a:4b:d5:5a:bf:88:6e:97:ae:
84:a6:35:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:08 2024 by rpki-client on console-ams.rpki-client.org