Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/SHLEbbkkXBX9XbmOmKgkcRyw5g8.roa
File: SHLEbbkkXBX9XbmOmKgkcRyw5g8.roa (raw, json)
Hash identifier: blWvTTOQ5kFUTZUOzVucPrdN1T472nhTdYSYIEuNkLk=
Subject key identifier: 48:72:C4:6D:B9:24:5C:15:FD:5D:B9:8E:98:A8:24:71:1C:B0:E6:0F
Certificate issuer: /CN=10721ead6a4575643cb703062c0968755e8281eb
Certificate serial: 01856D8196873048C5619F715587024CC839
Authority key identifier: 10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/SHLEbbkkXBX9XbmOmKgkcRyw5g8.roa
Signing time: Sun 01 Jan 2023 13:24:47 +0000
ROA not before: Sun 01 Jan 2023 13:24:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47967
IP address blocks: 91.236.216.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:32:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:96:87:30:48:c5:61:9f:71:55:87:02:4c:c8:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10721ead6a4575643cb703062c0968755e8281eb
Validity
Not Before: Jan 1 13:24:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4872c46db9245c15fd5db98e98a824711cb0e60f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6b:d2:fc:8b:a1:7b:bd:cd:f6:eb:a6:84:2f:
5a:17:87:eb:6a:bd:9d:57:d1:5e:94:36:b1:8d:20:
48:7c:30:e2:b8:94:d4:e9:58:c3:bb:ca:27:d7:a3:
14:9e:46:43:89:3e:a1:86:7e:9c:bc:ed:f2:9d:61:
42:67:eb:8e:3b:c7:11:1d:9d:31:36:5b:77:f8:27:
2d:c5:49:52:e3:13:75:c1:9d:ee:e6:7c:84:9c:eb:
07:ae:06:71:af:e6:f3:e9:ed:8e:e4:f9:d9:1a:cc:
33:30:b0:cb:97:ce:f7:1a:5e:b3:92:a5:0e:25:3d:
78:4a:88:e1:c2:dc:3e:e8:34:c3:eb:ce:de:3c:eb:
79:f6:cd:e7:e7:f8:b5:fb:e0:6d:7a:40:7b:3d:c8:
81:a1:94:04:c1:21:a1:83:9e:bd:c8:b8:55:d1:c5:
62:a5:ab:a7:3a:ad:3b:88:64:c8:a8:5e:08:74:8b:
04:40:58:bc:1a:0b:82:70:53:09:7f:87:cc:26:15:
d1:cf:a3:30:12:f5:7c:6b:c2:9c:d3:4d:7c:0f:ce:
c9:e4:34:80:16:d7:89:42:c8:6f:e9:be:40:83:a5:
3b:70:32:56:10:e0:5d:72:2e:3d:19:b1:a8:9d:c1:
ce:19:f6:69:38:7c:90:e6:79:2b:4f:a3:5f:1e:bd:
e4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:72:C4:6D:B9:24:5C:15:FD:5D:B9:8E:98:A8:24:71:1C:B0:E6:0F
X509v3 Authority Key Identifier:
keyid:10:72:1E:AD:6A:45:75:64:3C:B7:03:06:2C:09:68:75:5E:82:81:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EHIerWpFdWQ8twMGLAlodV6Cges.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/SHLEbbkkXBX9XbmOmKgkcRyw5g8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/ca935b-2484-4020-b814-3d4ae80fc45d/1/EHIerWpFdWQ8twMGLAlodV6Cges.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.236.216.0/22
Signature Algorithm: sha256WithRSAEncryption
6b:87:e4:b9:a3:95:73:42:43:21:ff:f6:e5:89:0d:18:a1:5b:
0a:58:da:d4:1f:57:14:28:5a:19:de:e9:59:6f:ad:09:13:4c:
e6:4c:1b:bb:49:d8:76:e1:5b:c2:93:e9:62:a0:f2:3d:e8:0c:
6b:27:70:bd:30:c9:c1:76:f8:3a:08:fe:6c:00:31:56:98:64:
0e:c5:1a:a4:b1:dc:6f:a1:0e:ab:93:ad:80:b8:bd:85:d0:db:
a5:74:10:68:c6:cd:d9:f0:05:67:ed:69:3c:9e:9d:a4:a2:4f:
cf:33:f8:de:76:66:a3:91:07:be:7e:87:e7:b7:e1:cb:57:1a:
dc:9e:67:8f:35:f0:a1:4c:b6:1a:1c:ae:4c:17:3f:5d:99:c5:
af:ed:87:fc:22:44:ed:64:45:28:9f:00:16:8e:b2:5e:26:fe:
e3:ec:91:4a:0d:a8:8f:66:d6:db:1b:e8:92:91:1f:0c:ac:2d:
bd:b2:de:82:1c:14:92:a8:19:35:d2:1e:56:da:2d:6f:9d:9f:
e5:a7:8a:0e:b7:a1:28:c9:4e:82:f8:2d:e1:62:b6:66:b5:cb:
50:7b:3f:47:b2:83:74:6f:7c:84:a9:af:e4:3d:3e:1e:93:d8:
a8:e2:32:21:dc:c4:46:59:83:0d:66:aa:f6:d4:96:04:a5:a2:
2a:f9:fe:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:59 2024 by rpki-client on console-ams.rpki-client.org