Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/tYTGMVL3hG8-FnpwIuxNrTRZbLs.roa
File: tYTGMVL3hG8-FnpwIuxNrTRZbLs.roa (raw, json)
Hash identifier: 73FNohIFc/pWBLLwYTbnp9rTHhifjLBehz24S0NWi6c=
Subject key identifier: B5:84:C6:31:52:F7:84:6F:3E:16:7A:70:22:EC:4D:AD:34:59:6C:BB
Certificate issuer: /CN=98d66fb9adadb6a9057bf60aaa3ff52c66540418
Certificate serial: 01856F1DB2FE92295CA5685AB817E97A31F4
Authority key identifier: 98:D6:6F:B9:AD:AD:B6:A9:05:7B:F6:0A:AA:3F:F5:2C:66:54:04:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mNZvua2ttqkFe_YKqj_1LGZUBBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/tYTGMVL3hG8-FnpwIuxNrTRZbLs.roa
Signing time: Sun 01 Jan 2023 20:54:55 +0000
ROA not before: Sun 01 Jan 2023 20:54:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199059
IP address blocks: 91.205.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:b2:fe:92:29:5c:a5:68:5a:b8:17:e9:7a:31:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98d66fb9adadb6a9057bf60aaa3ff52c66540418
Validity
Not Before: Jan 1 20:54:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b584c63152f7846f3e167a7022ec4dad34596cbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c0:f3:9f:74:f5:c7:d1:62:5a:da:27:a0:b1:
65:b2:39:47:4d:ee:37:e8:ae:4a:d5:34:30:67:b5:
5c:39:5e:b1:ba:3f:ec:8e:48:c8:d4:49:82:d9:bb:
e9:eb:74:f0:1f:4c:73:d6:02:51:4a:13:d9:30:cd:
fc:b6:d3:72:3e:9e:19:e2:53:10:f7:1a:a7:67:66:
00:a7:ce:ac:24:3d:34:11:37:7d:e9:24:8f:a0:51:
25:c7:5c:0e:45:70:e1:1c:9e:9f:d7:23:ed:a8:d2:
7c:9a:6e:48:70:e3:f2:80:30:0f:25:7d:69:ce:0e:
62:7c:d0:5a:7f:7f:01:d9:29:9f:00:df:74:9e:4c:
89:66:27:e9:97:3e:4d:5c:57:d7:7f:97:0c:60:4f:
60:73:28:38:40:81:38:f9:32:fd:bf:9b:c2:a3:f6:
52:92:f5:94:81:ae:a9:d5:03:30:5b:9f:a0:18:05:
e2:52:6f:52:b2:2e:bc:6c:34:f1:d3:df:60:5d:d9:
40:44:04:d3:82:61:0d:6e:fe:86:ee:85:d1:9d:1f:
4e:bd:4e:ef:1e:92:e6:bc:07:2c:3e:d4:22:7c:34:
e2:53:8c:23:24:62:1d:3b:9e:2d:25:d0:88:be:f5:
11:73:79:de:69:47:1d:09:45:f4:04:a8:58:dc:f4:
f3:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:84:C6:31:52:F7:84:6F:3E:16:7A:70:22:EC:4D:AD:34:59:6C:BB
X509v3 Authority Key Identifier:
keyid:98:D6:6F:B9:AD:AD:B6:A9:05:7B:F6:0A:AA:3F:F5:2C:66:54:04:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mNZvua2ttqkFe_YKqj_1LGZUBBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/tYTGMVL3hG8-FnpwIuxNrTRZbLs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/218197-7ec1-43a8-a591-73675f18113a/1/mNZvua2ttqkFe_YKqj_1LGZUBBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.205.195.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:63:66:0c:5f:91:57:7f:cd:31:7e:0d:e2:af:ed:7c:c1:e9:
a1:7f:d4:48:61:36:a6:ce:ac:74:4d:6c:62:73:72:f6:86:ab:
77:fa:f5:7e:50:30:25:99:a9:ee:09:1f:0d:a1:c9:da:0f:67:
ae:0e:03:fa:9e:e8:c3:58:e9:e5:28:d9:2e:c2:e2:fa:63:4c:
96:e1:6d:3b:77:08:df:0a:15:5a:da:a7:d1:ca:05:93:5c:0e:
6c:f1:4c:2e:c4:b3:2a:a6:4e:fe:7d:50:fa:30:05:27:9c:5a:
8f:00:8d:47:e8:3e:6b:dc:d4:3b:04:be:ac:83:9e:30:b4:d4:
84:5e:b9:75:9f:7c:38:51:fc:59:11:c8:4e:ed:f5:c4:09:52:
a9:e5:84:61:58:43:7d:44:dc:75:32:9f:dd:60:d4:65:33:9f:
2f:ae:be:ca:9e:58:3b:ee:95:4d:0b:93:8a:68:e8:c8:1e:1d:
21:c9:0c:3f:6d:50:20:a1:b0:2c:d8:b1:0b:34:e7:bb:18:3d:
9a:1c:e8:b9:a6:33:73:24:a8:e1:30:82:a7:a8:c8:6b:7e:5d:
cd:43:2a:5a:dc:d2:b1:c2:14:9c:92:f9:ae:4f:52:14:6a:49:
c1:12:51:97:59:ec:a8:84:75:20:ff:32:24:ef:07:70:e9:ca:
5d:cd:05:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:42 2024 by rpki-client on console-ams.rpki-client.org