Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/cEdwerYOROMQREs9TTyBNDTUBOw.roa
File: cEdwerYOROMQREs9TTyBNDTUBOw.roa (raw, json)
Hash identifier: wLi0nbxBW9EYhX8rOJjdgJZkruAbAJwn2mvwdA+Hb0M=
Subject key identifier: 70:47:70:7A:B6:0E:44:E3:10:44:4B:3D:4D:3C:81:34:34:D4:04:EC
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 01856D4AD4507354AFE93C31A65E97A3640C
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/cEdwerYOROMQREs9TTyBNDTUBOw.roa
Signing time: Sun 01 Jan 2023 12:24:58 +0000
ROA not before: Sun 01 Jan 2023 12:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 91.221.117.0/24 maxlen: 24
91.221.233.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 Feb 2023 04:29:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:4a:d4:50:73:54:af:e9:3c:31:a6:5e:97:a3:64:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Jan 1 12:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7047707ab60e44e310444b3d4d3c813434d404ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:e8:28:9e:62:13:06:8f:4e:5e:1f:40:1a:84:
66:62:39:6b:a2:9d:e2:73:2f:3b:52:f8:00:db:94:
03:cb:eb:50:57:15:e6:aa:15:46:23:b9:b0:99:0b:
14:5b:65:31:24:4d:ed:95:02:d8:29:fd:a5:d4:a5:
34:1d:b9:1f:ac:7a:df:dc:c2:bd:21:53:50:ee:73:
a7:62:04:7a:0b:b9:84:80:24:e0:97:df:0a:b6:cb:
39:05:43:34:81:b3:8e:17:bb:d1:5a:a8:96:f4:39:
e5:18:97:3b:83:2e:3c:c2:33:8d:3c:eb:71:ea:0b:
c2:be:3c:4d:1d:0a:db:19:ff:ea:d6:6d:8d:84:5a:
10:f5:b3:55:ce:96:8c:73:a6:c2:3e:86:62:41:05:
04:17:2d:bc:36:ee:b2:ba:ef:f7:b8:b5:2e:80:16:
48:14:5c:ad:97:a4:5d:e8:4b:44:60:89:b7:45:0c:
30:5c:34:e3:db:6f:41:67:64:9f:51:68:d0:57:2f:
3f:9b:56:73:50:b6:2f:9b:69:de:98:f0:9b:2e:c1:
92:4a:8f:bc:52:92:f3:e1:25:e5:d3:13:bf:6a:e5:
b0:44:ac:f9:a1:5f:4b:90:8b:9b:f7:f7:c0:ef:73:
82:9d:e4:28:a8:f3:06:3b:61:9a:77:5f:d0:2a:f2:
dd:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:47:70:7A:B6:0E:44:E3:10:44:4B:3D:4D:3C:81:34:34:D4:04:EC
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/cEdwerYOROMQREs9TTyBNDTUBOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.117.0/24
91.221.233.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:21:5b:e4:4b:90:64:4d:f5:7a:95:b3:0f:87:18:15:67:b7:
31:3f:0a:33:b0:2a:03:24:fc:1e:a1:ef:88:5a:8f:e1:8a:da:
b9:fd:e6:09:ef:d4:eb:4c:b4:13:4b:53:85:5a:48:33:b1:de:
99:d3:e9:27:e6:46:d3:68:db:30:ef:8a:43:00:5a:a4:c4:04:
18:63:ea:f5:ff:f4:85:5d:88:94:7f:ed:71:d9:de:ba:e7:96:
bf:43:84:f4:21:4d:db:42:eb:21:d5:de:b0:e1:9e:66:78:9d:
46:89:b1:0a:ea:8c:bf:17:d1:d4:0c:de:98:1c:2a:63:70:92:
29:c0:27:e7:2f:51:30:0d:ae:35:de:05:2d:5d:e8:af:2b:96:
05:fc:32:d9:31:63:66:55:b2:75:7f:3f:5c:c0:44:50:cc:df:
41:54:87:94:41:7a:9d:3a:b4:08:23:65:6b:61:ee:2f:94:93:
31:74:ab:c0:c5:b2:09:ad:81:e5:ae:bf:67:19:c6:ea:5e:30:
43:4e:b1:3f:cd:52:3f:f9:25:f6:77:79:47:7d:13:03:d6:f4:
3a:26:32:69:31:80:d4:38:79:f7:71:47:2f:22:76:20:1f:ff:
aa:86:68:f9:a7:22:db:d6:8a:8f:b7:5b:2e:27:f8:07:66:6b:
47:e7:95:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:45 2024 by rpki-client on console-fra.rpki-client.org