Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gTnuyL4D2dZnf4dvUz2hrcSzM9o.roa
File: gTnuyL4D2dZnf4dvUz2hrcSzM9o.roa (raw, json)
Hash identifier: l96MBq2vHGT3YEsQv0hW+IsuhqAET1BIrlEqfF7N8VE=
Subject key identifier: 81:39:EE:C8:BE:03:D9:D6:67:7F:87:6F:53:3D:A1:AD:C4:B3:33:DA
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 01856ED4DC1FF12A63FF46C088EB8F741E91
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gTnuyL4D2dZnf4dvUz2hrcSzM9o.roa
Signing time: Sun 01 Jan 2023 19:35:21 +0000
ROA not before: Sun 01 Jan 2023 19:35:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 91.226.56.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 08 Jul 2023 14:05:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:dc:1f:f1:2a:63:ff:46:c0:88:eb:8f:74:1e:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jan 1 19:35:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8139eec8be03d9d6677f876f533da1adc4b333da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b8:63:0a:ec:cf:56:4c:6c:57:0f:14:c2:0a:
b2:80:19:1e:0d:71:09:30:ea:80:24:8c:0f:6e:99:
9d:05:cd:6d:35:5a:1a:78:5d:f5:40:27:8d:ff:21:
d0:15:ba:92:eb:47:f4:0d:aa:f9:f1:39:fc:45:9a:
3b:8c:81:7e:21:b9:59:b7:cb:7d:32:b9:8f:72:ae:
b3:30:f7:e4:f3:db:fe:34:ac:b6:09:ca:e2:05:de:
70:a8:d5:74:84:74:0e:20:aa:bf:dc:0c:36:c3:73:
d6:3b:b0:19:85:60:2c:c6:04:6a:76:30:10:cc:7b:
af:f8:42:e4:26:af:16:f9:0c:96:a8:fe:1b:13:fa:
cf:20:97:fa:bd:8d:44:ab:cf:5a:82:8f:b8:a2:9e:
9e:71:1f:d1:44:35:fb:25:50:94:01:61:6e:aa:cc:
fd:e0:4d:a0:7a:76:cb:85:df:3e:4d:30:f6:fd:e9:
3e:83:80:61:ce:2f:ba:55:54:d0:fe:62:be:41:ea:
1b:6e:70:dd:37:4e:1e:d4:e4:5d:06:c5:a9:ed:e2:
6d:be:23:0d:e2:3c:f2:3f:2c:e7:cd:07:61:61:17:
3c:ba:36:70:1e:7f:0f:7e:4d:a6:0f:16:d6:60:45:
05:2d:31:45:83:9f:3f:76:41:bc:49:ba:a3:75:a7:
1c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:39:EE:C8:BE:03:D9:D6:67:7F:87:6F:53:3D:A1:AD:C4:B3:33:DA
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gTnuyL4D2dZnf4dvUz2hrcSzM9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.56.0/24
Signature Algorithm: sha256WithRSAEncryption
27:d3:9c:b2:8d:25:00:86:5e:e5:c4:5a:3c:97:9c:39:f2:61:
3e:66:81:d0:65:95:18:2f:e6:89:9d:eb:ac:ec:38:3e:83:71:
c8:55:a0:95:a9:49:de:d8:90:2e:d4:f6:ac:54:f0:f3:10:9f:
e2:2d:0e:56:4e:9a:23:a0:e7:65:be:bb:47:88:79:ec:a0:f0:
f4:e8:06:71:eb:ec:0b:84:e5:a0:b3:45:f9:cb:fa:a1:59:06:
d6:00:85:52:b4:25:36:a4:33:e2:b5:51:0d:af:73:f7:8d:0d:
fe:f9:a5:1f:d6:d8:c0:73:e7:5e:a6:4c:a6:e9:56:8e:3d:d3:
34:9d:7f:4a:fe:e5:49:6f:60:13:ac:44:79:23:6a:2f:e1:d9:
9b:a6:8d:8f:ad:c5:85:c6:9e:d2:04:10:12:95:d7:98:be:d5:
aa:8c:4e:d0:9a:c2:f9:03:53:17:bb:b7:46:c5:6c:71:e4:54:
36:52:68:5a:0e:5c:f5:a2:25:aa:d4:07:d9:ae:5d:9f:9d:dc:
df:34:1a:c8:c8:b7:9a:e0:45:22:f3:9d:dc:f8:9e:88:02:50:
8d:22:49:27:05:86:51:1c:4e:2f:a0:76:bf:75:e7:3a:6e:5a:
3d:d1:52:2f:e5:9a:9c:21:79:44:17:78:e2:3e:1e:6c:75:e9:
e1:1a:e2:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org