Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/pdZG8pDfQhZnlzkEirBXEyGI7lQ.roa
File: pdZG8pDfQhZnlzkEirBXEyGI7lQ.roa (raw, json)
Hash identifier: EkBHS+eN8IehiA20IZrb/3vXbXFlxIB0K+kE4jxknO8=
Subject key identifier: A5:D6:46:F2:90:DF:42:16:67:97:39:04:8A:B0:57:13:21:88:EE:54
Certificate issuer: /CN=8b31967110cabeec4a66b78037e52a87b2bc8f5d
Certificate serial: 018CC9BC4C10FA3FDE5676D03D276642A784
Authority key identifier: 8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izGWcRDKvuxKZreAN-Uqh7K8j10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/pdZG8pDfQhZnlzkEirBXEyGI7lQ.roa
Signing time: Tue 02 Jan 2024 10:33:29 +0000
ROA not before: Tue 02 Jan 2024 10:33:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 12353
IP address blocks: 91.216.117.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 16 Jan 2024 12:24:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:bc:4c:10:fa:3f:de:56:76:d0:3d:27:66:42:a7:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b31967110cabeec4a66b78037e52a87b2bc8f5d
Validity
Not Before: Jan 2 10:33:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5d646f290df4216679739048ab057132188ee54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:97:22:45:8b:51:60:b1:47:5d:30:51:8a:81:
01:6e:fd:1b:c5:3e:e4:f2:67:d2:a7:0a:1b:0b:b7:
df:af:e1:45:5c:77:87:18:9b:30:91:ff:49:84:45:
1e:01:f1:90:49:93:8b:71:5f:d4:36:8d:e6:9b:e6:
39:1f:c0:25:a4:0a:03:6b:5e:9d:7a:ca:4c:b1:e8:
ce:65:a1:7e:41:a0:7d:68:13:7a:db:bb:f2:16:ac:
22:6c:d6:c1:c1:3d:ee:c8:64:ed:5a:a6:4d:04:f1:
e3:1e:4f:0a:f4:9a:4c:4e:32:fc:ff:2b:d5:5c:64:
eb:b1:ca:da:3e:80:c8:3c:e5:af:22:32:bd:2d:96:
63:da:25:07:b0:fa:96:12:47:63:b4:f1:65:5a:67:
d1:06:9c:35:37:ed:ab:08:a9:2b:d9:96:ca:0e:ed:
d7:07:e5:8a:51:17:12:d2:61:3f:d1:a9:e5:3b:65:
18:06:aa:68:31:43:cb:23:cc:f0:bc:45:25:7e:01:
29:f0:6a:3a:41:8d:d8:e1:c5:b7:2c:24:9e:c0:0c:
86:a1:e8:f9:3c:27:f5:1c:80:e3:aa:88:c4:14:5c:
85:2b:68:7c:e3:93:8c:02:1f:3e:71:3f:c7:ce:5b:
0b:13:b0:bd:6b:4f:9e:f0:bb:37:ad:16:09:08:cf:
62:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:D6:46:F2:90:DF:42:16:67:97:39:04:8A:B0:57:13:21:88:EE:54
X509v3 Authority Key Identifier:
keyid:8B:31:96:71:10:CA:BE:EC:4A:66:B7:80:37:E5:2A:87:B2:BC:8F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izGWcRDKvuxKZreAN-Uqh7K8j10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/pdZG8pDfQhZnlzkEirBXEyGI7lQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/31df07-dcb5-4a50-a704-a017c368466d/1/izGWcRDKvuxKZreAN-Uqh7K8j10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.117.0/24
Signature Algorithm: sha256WithRSAEncryption
64:16:ba:7c:43:e6:ea:ad:b0:2e:a4:08:a6:16:ea:ee:e1:c1:
ff:9a:2d:58:15:18:2f:73:bf:d5:84:d5:79:7f:8c:db:26:de:
64:d8:72:fa:fb:6e:c8:48:59:69:bf:c6:0f:2a:52:95:76:d4:
5e:bd:67:f5:8d:0c:38:e6:2d:5d:94:8f:27:6e:bd:7b:29:35:
41:53:67:56:d7:b7:a2:50:74:56:92:e4:d3:5a:38:03:85:45:
ba:d3:22:75:fc:34:f0:27:f1:5d:85:31:29:ca:51:74:8f:ea:
e6:e0:85:06:f2:f2:4e:55:ca:51:58:b7:c7:22:b2:44:e4:82:
f1:eb:ee:3f:ec:d8:96:35:57:45:20:d0:64:50:de:50:b7:27:
c3:02:b4:f8:94:a8:03:0c:27:19:b4:fe:69:a3:f6:9e:1f:7d:
88:21:d1:29:b0:69:d8:c1:0a:80:c3:e7:8d:fb:51:06:b2:37:
f7:f4:fd:06:79:08:00:e6:fd:ed:b7:f2:77:82:a7:36:30:3a:
fe:f8:a9:a9:3a:c4:97:f9:ae:ba:8a:f7:23:cc:81:18:ae:43:
dc:67:65:97:69:6b:bc:7c:1b:ca:24:44:7f:35:f7:26:b9:0a:
16:bf:9d:6a:88:67:be:ae:a8:3a:a9:43:68:f0:ec:37:06:9e:
f8:16:c9:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:00 2024 by rpki-client on console-fra.rpki-client.org