Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/e81781-ba83-47a3-aa6b-8cbd81aef494/1/OvkYdaEzRWVH3kwsEV3xmCx6e7g.roa
File: OvkYdaEzRWVH3kwsEV3xmCx6e7g.roa (raw, json)
Hash identifier: Sndf9bjLPuUUJCbzsiTX6zwAcC1NeD58DLeT4XCu27U=
Subject key identifier: 3A:F9:18:75:A1:33:45:65:47:DE:4C:2C:11:5D:F1:98:2C:7A:7B:B8
Certificate issuer: /CN=05ccb1770ef70619bcad6baac7a8372bc900711f
Certificate serial: 01867FAD1EBFC1FC9B87A2D223EAEF6747E7
Authority key identifier: 05:CC:B1:77:0E:F7:06:19:BC:AD:6B:AA:C7:A8:37:2B:C9:00:71:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bcyxdw73Bhm8rWuqx6g3K8kAcR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/e81781-ba83-47a3-aa6b-8cbd81aef494/1/OvkYdaEzRWVH3kwsEV3xmCx6e7g.roa
Signing time: Thu 23 Feb 2023 19:08:17 +0000
ROA not before: Thu 23 Feb 2023 19:08:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210439
IP address blocks: 91.246.59.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:7f:ad:1e:bf:c1:fc:9b:87:a2:d2:23:ea:ef:67:47:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05ccb1770ef70619bcad6baac7a8372bc900711f
Validity
Not Before: Feb 23 19:08:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3af91875a133456547de4c2c115df1982c7a7bb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6b:be:29:16:4a:27:f7:e0:65:6d:40:b8:f1:
42:e7:cd:37:39:42:07:06:bd:1d:49:18:a3:32:b3:
1b:90:73:19:d6:21:02:09:8b:64:50:00:64:ff:ba:
16:6a:4f:82:43:3e:24:8a:0f:16:d3:ae:31:79:a2:
ff:9d:7b:22:5a:56:14:ec:54:43:5a:d1:2b:81:23:
6a:a6:f9:49:ef:82:60:62:aa:dd:4f:57:e8:ee:37:
c8:dd:d0:fe:2b:da:37:95:bb:27:6f:29:b2:50:53:
11:94:fc:01:f0:ad:bc:cf:1a:be:6f:30:02:b0:a5:
e7:e6:11:61:a6:8a:4b:c8:4b:a7:a3:87:dd:5c:c7:
e2:6e:0f:fb:bf:98:0f:e5:99:7a:69:55:22:b0:14:
7e:28:81:89:5d:f8:51:da:3b:fa:db:b0:18:14:05:
6c:ed:e7:87:05:2a:97:07:80:c7:b3:a7:e7:8a:4e:
0f:0e:f9:bc:7e:68:12:1e:81:57:26:42:6a:b2:41:
ff:c5:f9:f6:da:b8:49:a6:18:79:b9:e4:85:23:41:
ea:27:d4:7b:33:03:f3:ef:26:21:dc:33:14:18:95:
32:56:6c:ee:54:b8:f6:38:6e:34:cb:de:f2:8a:dd:
ba:2e:4e:f6:8c:42:9d:b9:08:f3:b7:b0:11:3f:f2:
46:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:F9:18:75:A1:33:45:65:47:DE:4C:2C:11:5D:F1:98:2C:7A:7B:B8
X509v3 Authority Key Identifier:
keyid:05:CC:B1:77:0E:F7:06:19:BC:AD:6B:AA:C7:A8:37:2B:C9:00:71:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bcyxdw73Bhm8rWuqx6g3K8kAcR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e81781-ba83-47a3-aa6b-8cbd81aef494/1/OvkYdaEzRWVH3kwsEV3xmCx6e7g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/e81781-ba83-47a3-aa6b-8cbd81aef494/1/Bcyxdw73Bhm8rWuqx6g3K8kAcR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.59.0/24
Signature Algorithm: sha256WithRSAEncryption
2a:d5:97:22:ba:ca:81:4a:12:26:5b:4a:86:06:33:cf:ff:3b:
2e:6a:ea:2c:7b:f0:d1:ae:b6:e9:d0:ed:0c:13:0a:a3:7f:01:
8b:9d:a4:42:a5:94:57:42:78:09:2e:70:55:40:a8:d8:14:4f:
ff:16:ea:45:70:c4:03:40:08:b1:53:d8:9b:ec:67:1b:e4:9b:
79:18:e1:e0:10:81:c0:f6:a7:12:34:76:c0:1c:f9:9b:9f:1c:
07:72:69:14:1e:e8:5e:95:df:7a:44:c0:37:a0:06:4b:28:1e:
12:08:28:a0:00:16:7b:36:3e:a3:83:58:f6:c6:4c:2b:5a:03:
df:97:7c:ce:24:26:2e:ef:4d:e6:0d:24:72:3b:52:04:e5:f0:
8d:2f:41:ef:8e:0f:96:75:c8:50:12:f3:3e:26:43:74:3c:0b:
78:35:a5:28:58:35:c1:3c:d8:a1:ae:25:7b:09:48:2a:93:0a:
ee:0a:7b:a8:e8:0e:ab:1f:1b:59:b4:79:5e:71:a9:b9:27:c5:
6a:29:78:b5:f5:8c:c1:1f:33:dd:9a:71:ff:13:9a:0b:43:8a:
2a:bb:64:a0:57:0d:20:bb:af:81:1f:77:2b:f6:0d:ed:82:62:
18:cd:d0:12:ef:eb:ad:47:83:09:a8:ed:39:7b:6a:70:6c:ea:
eb:a9:2b:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:15 2023 by rpki-client on console-fra.rpki-client.org