Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/4r_zF5KytxUW6Iaw6TKemuw4XSE.roa
File: 4r_zF5KytxUW6Iaw6TKemuw4XSE.roa (raw, json)
Hash identifier: jKzjHyFQigYtjCXeFfX4zWLvum8Dg2NfmqG3jFPo38s=
Subject key identifier: E2:BF:F3:17:92:B2:B7:15:16:E8:86:B0:E9:32:9E:9A:EC:38:5D:21
Certificate issuer: /CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Certificate serial: 018572559A0847F9318A38BCD0B5D3D73765
Authority key identifier: CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/4r_zF5KytxUW6Iaw6TKemuw4XSE.roa
Signing time: Mon 02 Jan 2023 11:54:50 +0000
ROA not before: Mon 02 Jan 2023 11:54:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15664
IP address blocks: 91.213.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:9a:08:47:f9:31:8a:38:bc:d0:b5:d3:d7:37:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd20bcaf72123e2d9f5e27886b3839b7424410b7
Validity
Not Before: Jan 2 11:54:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2bff31792b2b71516e886b0e9329e9aec385d21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:79:f4:ac:a7:94:16:d8:f5:72:6d:7d:9b:64:
9d:2a:ca:60:66:72:55:96:ac:86:71:f1:7f:15:02:
c0:f7:d2:05:d5:30:a7:53:36:97:ae:0b:4e:dc:66:
e7:cd:06:69:49:11:01:80:a5:d8:30:21:ab:f2:f1:
62:6d:73:c9:34:ab:d2:38:17:7b:d8:ba:0a:84:a8:
d0:7f:bc:46:cb:99:ce:4a:59:e3:ad:5e:38:b2:d4:
af:d9:b0:89:90:f6:c3:0b:16:e6:a8:9c:6a:6e:a4:
6b:60:ac:03:42:b0:ae:5c:50:67:d1:86:ae:f7:eb:
a3:eb:b7:f4:d6:aa:47:fd:83:cc:34:d9:6b:6b:e8:
c9:13:7a:4c:28:a6:b7:e1:48:7b:e5:65:f4:1a:8f:
f8:0a:5a:36:0f:7e:e2:83:02:e9:11:cc:ea:5a:87:
a5:d5:67:b8:ce:55:88:5b:c6:be:93:b2:56:43:87:
80:05:a3:af:b2:4c:95:f2:40:bc:cd:72:14:85:26:
90:39:fc:69:9b:08:c3:99:35:76:d1:07:aa:7a:ff:
2f:ea:3a:49:7f:e5:9f:5e:c4:6b:bc:34:b1:87:27:
0a:3c:fd:d5:eb:80:df:6d:0f:04:ec:46:79:52:34:
87:73:77:ac:ca:e1:83:36:6c:ba:9e:c3:0c:c1:96:
9b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:BF:F3:17:92:B2:B7:15:16:E8:86:B0:E9:32:9E:9A:EC:38:5D:21
X509v3 Authority Key Identifier:
keyid:CD:20:BC:AF:72:12:3E:2D:9F:5E:27:88:6B:38:39:B7:42:44:10:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zSC8r3ISPi2fXieIazg5t0JEELc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/4r_zF5KytxUW6Iaw6TKemuw4XSE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/44cf6a-dcbf-4335-9bdf-0f82c1ba1806/1/zSC8r3ISPi2fXieIazg5t0JEELc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.89.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:90:23:46:f2:77:e1:91:b2:09:6f:87:47:96:50:20:b3:6b:
0d:ca:e2:25:0f:c9:81:6f:a5:b9:db:55:4b:d1:ac:32:4d:f6:
4b:67:95:39:cf:c2:85:8b:8c:d9:b3:27:fd:54:11:f8:4e:ee:
f7:0d:48:ec:fd:b4:f2:80:2e:f7:a4:39:51:f9:92:dd:99:4b:
e4:4c:ba:00:13:61:84:d4:d6:fa:39:d0:8d:6f:d4:9e:6d:10:
44:1f:db:e8:84:97:3e:31:c8:61:d9:8c:dd:97:7b:ef:35:4f:
8a:f2:50:8d:85:5a:3f:bc:7f:77:07:8c:3a:72:11:2e:88:64:
8c:64:0c:75:67:0d:f3:3f:23:ad:d0:98:0d:07:a2:4b:3c:3c:
97:3d:73:ec:74:13:77:d8:6e:78:af:70:4b:b6:df:44:54:94:
62:3a:2d:8f:ed:89:7a:8c:ae:a2:1c:6a:9e:36:8a:7c:13:37:
96:6f:d7:0e:8b:b6:c5:42:24:e9:32:d6:3c:57:f9:6d:85:52:
a0:58:73:fa:65:2e:c5:e3:e0:b4:39:32:84:d4:31:47:95:ea:
b9:77:7c:90:cf:30:c4:5c:0e:29:c6:63:47:9b:95:a2:32:8f:
8c:02:98:b1:4b:cd:e3:82:d1:f2:7b:08:c1:87:6d:3c:0a:6e:
ac:ca:e3:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:18 2024 by rpki-client on console-fra.rpki-client.org