Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/2fe112-d63e-40ce-a8bc-f3f7bd31a0fe/1/UgsWvVNpLaAdBWuTLDoGNoQ9_pk.roa
File: UgsWvVNpLaAdBWuTLDoGNoQ9_pk.roa (raw, json)
Hash identifier: djEWDsLSv9wW/KDZO7EK/PAgit/sJ7nuWvzn4JT/+hU=
Subject key identifier: 52:0B:16:BD:53:69:2D:A0:1D:05:6B:93:2C:3A:06:36:84:3D:FE:99
Certificate issuer: /CN=cc81d54dc0fd16ac92534b9a780e26764b2f8f7b
Certificate serial: 01856F26CF0AB144E72DE72E3B3287600BCF
Authority key identifier: CC:81:D5:4D:C0:FD:16:AC:92:53:4B:9A:78:0E:26:76:4B:2F:8F:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zIHVTcD9FqySU0uaeA4mdksvj3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/2fe112-d63e-40ce-a8bc-f3f7bd31a0fe/1/UgsWvVNpLaAdBWuTLDoGNoQ9_pk.roa
Signing time: Sun 01 Jan 2023 21:04:52 +0000
ROA not before: Sun 01 Jan 2023 21:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51434
IP address blocks: 91.217.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:31:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:26:cf:0a:b1:44:e7:2d:e7:2e:3b:32:87:60:0b:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc81d54dc0fd16ac92534b9a780e26764b2f8f7b
Validity
Not Before: Jan 1 21:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=520b16bd53692da01d056b932c3a0636843dfe99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:85:fe:fc:2a:72:52:ea:45:f6:d8:d4:1a:b9:
5b:2f:e1:bb:1c:92:a1:e2:20:d5:e2:7b:de:f2:9a:
20:2b:57:5d:0c:99:6f:88:f0:d8:65:96:c4:96:92:
9a:17:9f:05:51:d4:1e:89:81:d2:86:bb:2f:fa:ce:
e7:0d:2c:fb:ce:80:0f:3e:79:0a:36:17:c6:06:5f:
74:43:18:ff:3a:15:03:b8:32:d8:a1:7c:26:13:d1:
12:a2:b8:1c:0d:d7:f3:cd:66:aa:5a:3a:56:e6:e1:
e6:33:84:5e:8d:45:27:89:17:bd:b3:69:f3:47:49:
7d:72:86:e4:73:9e:f6:67:4f:89:1b:98:3f:99:ee:
02:e5:99:80:cf:d6:bf:4a:8c:5d:1b:4d:fb:40:81:
76:2b:e7:32:7a:0f:43:89:b6:dc:10:13:22:2d:d2:
19:01:b1:c3:f1:e9:2e:71:9d:ed:12:f4:9c:96:dc:
62:8d:c6:ff:6d:a9:45:c3:04:c5:1e:b1:30:89:00:
d2:a7:a9:78:b2:94:97:76:c6:53:c6:8a:a8:2c:21:
fb:3e:37:17:e0:9c:1a:24:8c:ae:21:e7:d6:2e:a8:
f5:1b:f3:a0:8f:b4:5a:72:29:b1:2b:ee:b3:31:ab:
dc:fc:10:75:9d:78:d2:02:96:d6:0d:17:08:33:96:
5d:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0B:16:BD:53:69:2D:A0:1D:05:6B:93:2C:3A:06:36:84:3D:FE:99
X509v3 Authority Key Identifier:
keyid:CC:81:D5:4D:C0:FD:16:AC:92:53:4B:9A:78:0E:26:76:4B:2F:8F:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zIHVTcD9FqySU0uaeA4mdksvj3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2fe112-d63e-40ce-a8bc-f3f7bd31a0fe/1/UgsWvVNpLaAdBWuTLDoGNoQ9_pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/2fe112-d63e-40ce-a8bc-f3f7bd31a0fe/1/zIHVTcD9FqySU0uaeA4mdksvj3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.138.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:50:c5:25:b2:8e:26:b5:68:57:74:03:02:07:57:e3:3a:d1:
bb:27:7c:e3:47:25:37:f8:fc:cf:8a:d6:39:58:08:02:55:b9:
ba:43:62:f1:75:96:e1:6c:4f:2b:6e:6d:24:41:6f:f9:e1:3c:
a2:a5:2c:6e:ad:e6:c3:fb:0b:53:64:de:6f:2d:c5:f0:53:f0:
b1:74:e7:41:39:00:b7:cd:73:5d:c3:c8:7a:e5:b9:71:32:3f:
a1:71:e6:bd:07:6b:ea:ce:b6:37:cd:5e:b5:84:09:ba:a7:10:
27:49:b8:13:96:9f:39:28:96:d7:78:72:90:38:72:c1:f2:c3:
77:ad:2b:97:fe:fd:bd:32:b9:06:18:d7:88:16:97:03:5a:11:
d3:bc:95:44:78:48:d5:44:7a:af:76:42:da:2f:96:9a:33:0a:
84:47:b4:be:7a:d1:bc:bc:44:d4:8e:d3:9c:85:06:0a:3b:1d:
1d:0a:7d:da:59:d6:d0:c0:1d:d6:cd:f6:cf:86:21:d4:da:3d:
6e:a6:a2:a4:57:a9:cb:ea:09:23:8a:21:7c:42:88:2c:df:48:
2f:c9:d4:8e:fc:94:67:0a:90:68:d1:4d:8e:b0:16:06:96:36:
b4:b2:19:6d:f3:8a:a5:90:7f:d9:67:23:4c:eb:09:d7:f7:0d:
a1:ba:27:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:08 2024 by rpki-client on console-ams.rpki-client.org