Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/q4waeeNc7FW4UxM8WqDBTvsGWCY.roa
File: q4waeeNc7FW4UxM8WqDBTvsGWCY.roa (raw, json)
Hash identifier: M+4thgvGy3Scsq96iqTftfqKbOrTpCRfYInALJsPy/0=
Subject key identifier: AB:8C:1A:79:E3:5C:EC:55:B8:53:13:3C:5A:A0:C1:4E:FB:06:58:26
Certificate issuer: /CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Certificate serial: 018C6C8FB54C68ED3D666EC50B8BA11EA0AD
Authority key identifier: 63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/q4waeeNc7FW4UxM8WqDBTvsGWCY.roa
Signing time: Fri 15 Dec 2023 08:20:06 +0000
ROA not before: Fri 15 Dec 2023 08:20:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 91.221.116.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:6c:8f:b5:4c:68:ed:3d:66:6e:c5:0b:8b:a1:1e:a0:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6363bb65895f3a54a4b324a10c79ac98efe2a1ca
Validity
Not Before: Dec 15 08:20:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ab8c1a79e35cec55b853133c5aa0c14efb065826
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:0a:6e:15:ba:cf:af:27:9a:f8:9b:9b:0f:46:
7f:51:63:c4:3c:c1:65:75:e5:68:2b:82:85:9e:26:
89:00:2c:85:a7:e4:84:73:ac:8a:3a:48:6d:65:b8:
5a:2b:1e:bc:9a:d1:1d:14:c2:bc:80:51:30:22:88:
b4:8c:2a:84:b9:c1:59:6b:b4:86:36:86:21:ad:20:
a5:67:37:00:97:7e:15:31:d4:5c:d2:3b:dd:57:18:
03:cb:64:e7:bc:8c:fa:e5:b3:ff:14:d6:d0:51:95:
12:ac:5e:dd:90:ba:74:5b:e8:80:30:47:65:8f:e6:
ba:e1:83:26:18:8e:6d:83:27:8b:d6:99:d5:79:96:
fc:e8:47:b5:4c:18:64:a2:f3:f0:44:4e:cc:8a:a3:
0c:82:15:58:e3:0a:62:e3:ac:49:eb:2d:9c:e3:94:
19:86:34:d4:4f:e5:73:fb:52:22:99:4f:11:cc:dd:
13:79:2f:a7:a3:bc:50:f5:61:13:ad:2f:c2:b7:e8:
cf:06:72:f3:43:53:81:da:fa:d6:79:3a:3b:c3:8b:
9d:66:1b:bb:1e:ef:a9:e7:aa:60:a1:1c:e1:cb:7d:
df:ae:6a:58:5e:96:07:5a:68:2b:50:40:cc:77:0a:
14:6c:b6:2f:9a:22:05:c8:26:7b:f1:71:fb:6f:8b:
7c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:8C:1A:79:E3:5C:EC:55:B8:53:13:3C:5A:A0:C1:4E:FB:06:58:26
X509v3 Authority Key Identifier:
keyid:63:63:BB:65:89:5F:3A:54:A4:B3:24:A1:0C:79:AC:98:EF:E2:A1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y2O7ZYlfOlSksyShDHmsmO_ioco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/q4waeeNc7FW4UxM8WqDBTvsGWCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db9bf1-e019-45a4-8663-a6ca454db2d7/1/Y2O7ZYlfOlSksyShDHmsmO_ioco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.116.0/23
Signature Algorithm: sha256WithRSAEncryption
59:2b:78:83:3d:5d:ce:25:fd:9a:60:97:42:cd:6c:2a:31:77:
9d:6f:96:a6:1e:43:a3:81:ea:e2:4a:4e:da:15:c1:80:8b:80:
2b:7e:82:8d:e2:9f:e3:74:20:b4:61:87:b3:a9:c6:9a:83:0f:
08:ea:fb:5f:ba:86:0f:bf:b5:f1:2e:f1:75:5a:a2:6f:f1:5f:
49:97:a2:a9:3b:34:2e:cc:f8:08:e7:bc:56:9d:92:fe:97:fb:
67:e9:32:24:b1:d5:76:c5:09:4d:b4:98:c2:56:05:ac:36:30:
23:72:34:de:b8:e4:88:58:8a:3e:2a:0c:7c:23:ce:e2:aa:20:
23:7f:70:97:e4:5f:1a:d0:e5:9c:bf:35:d5:38:bf:bd:7a:02:
5b:36:d0:6c:1f:1f:ce:b1:71:b0:dd:e4:6a:3e:a8:16:b2:a9:
60:0d:3b:86:49:4c:fe:6a:08:76:63:26:6d:9a:51:bd:66:a8:
58:42:2b:33:88:ce:4b:ca:45:bb:e9:6a:26:e9:d2:54:0f:05:
8f:bf:ea:21:37:98:0e:24:f0:f7:49:c5:e6:63:34:00:ae:3a:
56:4d:ae:26:53:43:61:e2:cd:a0:6b:e8:b4:67:cc:70:79:92:
fe:5f:64:92:ec:90:43:8c:c9:cb:64:cf:76:b1:63:99:34:c0:
4e:d0:2e:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:38 2024 by rpki-client on console-ams.rpki-client.org