Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/2NLIoj_1ChRGvNYqiZ-WYPfZHUM.roa
File: 2NLIoj_1ChRGvNYqiZ-WYPfZHUM.roa (raw, json)
Hash identifier: PTiCWsieB7oNqjo1VjOwpiPl0d8OGzKiu18RP9cZL2Q=
Subject key identifier: D8:D2:C8:A2:3F:F5:0A:14:46:BC:D6:2A:89:9F:96:60:F7:D9:1D:43
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0188923B2E8D5C3F8A691D71C29DCF2F1BC6
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/2NLIoj_1ChRGvNYqiZ-WYPfZHUM.roa
Signing time: Tue 06 Jun 2023 19:42:11 +0000
ROA not before: Tue 06 Jun 2023 19:42:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 91.235.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 06 Jul 2023 00:09:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:92:3b:2e:8d:5c:3f:8a:69:1d:71:c2:9d:cf:2f:1b:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jun 6 19:42:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8d2c8a23ff50a1446bcd62a899f9660f7d91d43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:56:a5:3d:b7:22:07:62:2e:a4:45:4b:94:47:
51:8f:06:d1:d8:d5:9e:c1:2f:9c:49:3b:8b:48:97:
63:74:a8:57:70:5c:7f:e2:02:1f:16:89:fe:ba:5c:
92:f7:07:79:75:87:12:d8:94:77:9b:8b:57:6c:a2:
5f:77:46:0d:03:79:9d:a3:48:e0:56:64:53:18:99:
94:af:88:cb:73:34:8b:37:fd:29:63:2f:c1:f4:a5:
e9:8f:1f:79:ae:88:3a:71:f1:ee:8f:0b:c0:fe:b4:
58:fe:a6:0d:0f:9b:98:8d:d2:51:66:c7:fb:f8:13:
bf:9e:81:c4:00:2d:52:4a:0f:23:05:9b:de:85:30:
f7:11:5c:41:38:1a:fb:46:90:2f:05:f7:aa:1f:ad:
a7:c6:dd:f6:d8:ec:94:78:08:0f:e0:ea:8e:7a:4c:
ce:6f:eb:20:31:62:8d:f2:42:47:79:e0:86:ea:36:
c6:df:67:1e:c4:62:c3:b8:a5:84:32:0b:34:28:c7:
5b:42:ab:f8:7a:60:ed:94:7c:4b:c0:08:6e:eb:09:
d1:1d:0d:48:84:26:16:3f:10:cf:9b:62:de:cd:af:
73:a9:df:5c:ab:f3:3e:1b:69:1d:58:e3:f8:81:e9:
c8:6e:6e:f4:22:d1:70:28:62:be:cc:30:16:03:36:
05:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D2:C8:A2:3F:F5:0A:14:46:BC:D6:2A:89:9F:96:60:F7:D9:1D:43
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/2NLIoj_1ChRGvNYqiZ-WYPfZHUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
38:0a:11:9d:0b:9b:b9:7b:a4:9c:e9:66:3e:e7:65:fc:9a:de:
c5:59:e8:23:64:6d:44:72:21:fe:5e:b8:31:b1:72:a2:53:f9:
1b:06:b8:0a:10:e9:01:18:d4:8c:4a:89:14:de:5a:99:86:6b:
8a:ed:f4:c1:84:32:cb:14:2f:d0:80:d8:35:42:aa:c7:83:33:
25:11:41:bb:9e:19:26:00:9d:7c:03:f7:f4:d0:94:0b:4a:71:
76:86:ef:b6:6a:ae:37:29:6e:92:f2:ba:24:67:13:5d:b8:6c:
6b:56:26:65:01:f5:f2:30:e1:8c:58:2f:96:cc:58:4f:45:0d:
c8:45:1d:67:1a:7f:9b:bb:d7:c3:e0:97:18:e1:c7:3a:e1:ac:
60:6e:e5:36:8c:23:8e:c7:4f:cb:a3:24:5d:25:57:41:c0:82:
ac:1a:66:a3:5a:10:83:e4:11:5c:0d:56:b0:d2:7e:f6:1a:43:
b6:42:57:49:41:3e:aa:06:4b:36:37:96:92:a7:0c:c0:48:a6:
fc:ed:cd:25:cd:c0:64:93:69:f0:37:56:28:c4:55:08:1e:fe:
59:07:37:4d:e0:bc:91:f0:49:8e:3d:dd:de:eb:25:05:1d:be:
37:4a:74:ef:0f:31:b2:65:62:44:47:5d:10:42:4b:61:32:ea:
fa:4c:82:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org