Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/a0ba88-4d88-4691-aa6c-b5b8f5784dfe/1/8-Y4UQpCCINJtJUxCVbL0Q-4-7w.roa
File: 8-Y4UQpCCINJtJUxCVbL0Q-4-7w.roa (raw, json)
Hash identifier: aoAPXBX+dedXkz4lwSN9bPF84CTZN3wTRWUJyjH9BW8=
Subject key identifier: F3:E6:38:51:0A:42:08:83:49:B4:95:31:09:56:CB:D1:0F:B8:FB:BC
Certificate issuer: /CN=18b7377ce5efa3ca030ebb4dd77567fc032fcd01
Certificate serial: 018571A795024C750357594E904520F34B29
Authority key identifier: 18:B7:37:7C:E5:EF:A3:CA:03:0E:BB:4D:D7:75:67:FC:03:2F:CD:01
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GLc3fOXvo8oDDrtN13Vn_AMvzQE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/a0ba88-4d88-4691-aa6c-b5b8f5784dfe/1/8-Y4UQpCCINJtJUxCVbL0Q-4-7w.roa
Signing time: Mon 02 Jan 2023 08:44:46 +0000
ROA not before: Mon 02 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 199638
IP address blocks: 91.245.193.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:a7:95:02:4c:75:03:57:59:4e:90:45:20:f3:4b:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18b7377ce5efa3ca030ebb4dd77567fc032fcd01
Validity
Not Before: Jan 2 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3e638510a42088349b495310956cbd10fb8fbbc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:c3:62:ad:23:ca:88:db:da:e8:42:c5:93:4b:
a7:5b:6c:9c:fd:b7:35:e7:34:3d:e7:4c:0d:ed:d7:
01:93:82:17:1a:88:44:2a:18:f6:69:49:f0:5d:99:
2c:a3:47:d4:e4:4a:b5:74:c5:01:f6:f6:e6:5f:25:
13:8b:21:84:be:33:ed:39:87:28:6b:6f:49:95:bc:
62:25:ff:91:6d:04:8e:14:9a:e5:b6:ee:45:8d:89:
5e:70:a3:65:89:08:0c:fa:af:ef:2f:f4:6e:4d:ee:
f2:c5:41:73:00:9f:a6:84:da:da:b4:38:ea:ba:0f:
e2:ba:d6:80:d5:c5:3d:7e:80:5b:f2:2d:90:ba:42:
06:08:0a:c1:af:fb:6f:08:be:cd:97:3a:01:07:40:
19:48:ba:82:5f:1a:50:1d:f3:c2:92:95:e4:92:d8:
a3:d8:82:75:98:13:c3:67:ff:e4:71:2a:d5:e2:34:
e8:24:d1:c4:69:66:69:33:42:54:a4:75:a1:f7:d6:
95:a3:91:f3:2f:78:88:47:28:fb:b3:b9:2d:fa:f2:
ac:c8:91:d5:66:48:25:65:2d:cf:03:e0:c0:58:4e:
08:b6:b4:c6:99:16:e5:f8:a4:a8:04:ac:3e:ef:8c:
0c:73:76:7a:dd:91:73:44:3f:b4:22:ac:cd:d7:be:
42:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:E6:38:51:0A:42:08:83:49:B4:95:31:09:56:CB:D1:0F:B8:FB:BC
X509v3 Authority Key Identifier:
keyid:18:B7:37:7C:E5:EF:A3:CA:03:0E:BB:4D:D7:75:67:FC:03:2F:CD:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GLc3fOXvo8oDDrtN13Vn_AMvzQE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a0ba88-4d88-4691-aa6c-b5b8f5784dfe/1/8-Y4UQpCCINJtJUxCVbL0Q-4-7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a0ba88-4d88-4691-aa6c-b5b8f5784dfe/1/GLc3fOXvo8oDDrtN13Vn_AMvzQE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.245.193.0/24
Signature Algorithm: sha256WithRSAEncryption
32:35:d8:2b:18:60:e4:82:8c:1b:b0:bd:52:51:5b:e9:8d:00:
8d:7c:6c:0d:87:2e:76:aa:d5:21:6c:b7:86:1d:82:cc:c8:e3:
70:2a:f4:8d:cd:92:99:c8:f3:c1:7b:ff:e8:d0:00:56:11:da:
e7:33:e3:71:09:4a:cf:08:bf:39:a6:f4:2c:23:a6:16:f2:b9:
2d:12:b7:30:0b:14:63:52:4a:5f:9c:8f:95:3d:16:9e:f6:b1:
ab:2c:30:37:54:13:84:31:82:3f:b8:d7:a3:8b:d7:21:ce:1b:
2b:bd:33:e8:3d:f9:0d:0d:3e:5f:6b:76:21:1d:d1:52:7f:5c:
a6:fa:7a:61:8f:b6:7c:08:1b:6b:2c:0b:14:90:ba:69:39:6c:
b3:75:1f:da:a4:df:8a:af:0d:75:7d:08:5b:08:c3:60:1a:ca:
b3:e7:08:f1:bc:2c:01:53:67:01:d2:19:9e:78:c3:50:10:09:
f9:af:8f:4c:49:d9:d7:48:33:7f:36:34:72:2f:87:c4:f2:02:
b8:09:0e:fd:9b:68:ea:fc:8b:c3:76:f1:38:85:8a:18:cc:ff:
75:27:d4:57:eb:bf:81:60:72:d7:0d:20:4a:d7:64:fd:cd:43:
d0:4a:32:99:07:5d:21:49:f8:1a:da:9c:0d:7a:01:84:66:f1:
e3:7a:63:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 11:51:17 2024 by rpki-client on console-fra.rpki-client.org