Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/jyljXFyQthtOxyHKyf-3oI9cx2E.roa
File: jyljXFyQthtOxyHKyf-3oI9cx2E.roa (raw, json)
Hash identifier: DhpFmA9511rUNFerUA1Zmg8KdLikVNl9qSgPGaaXJc8=
Subject key identifier: 8F:29:63:5C:5C:90:B6:1B:4E:C7:21:CA:C9:FF:B7:A0:8F:5C:C7:61
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018ACAADB8FCB5209BA1C99380E135A2007F
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/jyljXFyQthtOxyHKyf-3oI9cx2E.roa
Signing time: Mon 25 Sep 2023 04:51:37 +0000
ROA not before: Mon 25 Sep 2023 04:51:37 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 91.226.57.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Oct 2023 09:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ca:ad:b8:fc:b5:20:9b:a1:c9:93:80:e1:35:a2:00:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Sep 25 04:51:37 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f29635c5c90b61b4ec721cac9ffb7a08f5cc761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b8:6f:a4:02:15:7f:c2:9b:54:46:b9:68:f3:
27:56:33:a8:e1:d6:8b:ae:db:3d:b2:02:f7:a1:32:
d1:ae:a5:14:f4:c8:ab:b2:99:83:49:50:51:1d:c5:
a1:7e:94:de:4e:2d:1a:97:9b:f3:54:da:7b:08:83:
11:c9:20:c8:06:5e:b1:8a:1e:60:c4:64:77:a9:3a:
07:ed:56:35:3d:41:e6:8e:14:41:18:e7:b5:81:6f:
15:fd:c9:5c:9c:3b:27:7c:cd:93:b2:14:0d:e7:b8:
31:33:b7:84:c5:aa:d2:03:8a:49:c5:30:25:2e:4c:
de:14:4d:08:a9:78:4b:7b:1b:35:da:cc:44:c3:65:
b6:c0:21:60:49:09:ba:8b:85:7e:29:48:36:c6:7f:
10:1a:5a:d9:56:8c:e3:68:59:89:e8:54:22:d7:72:
34:b5:18:9f:7f:f4:cc:50:d4:6a:c2:49:c2:a1:8d:
9f:c3:7a:b3:61:04:32:1a:78:88:ad:eb:69:86:d5:
d5:b3:b3:f0:6e:0b:de:aa:f1:35:de:a5:fb:c0:29:
36:86:cd:d8:06:1a:3f:02:cd:6d:8c:a8:bb:ea:61:
71:34:38:7f:f2:28:62:4d:af:de:91:d3:b8:c9:4c:
65:32:1a:33:e8:90:f8:8d:98:64:b3:c7:3d:9a:8a:
83:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:29:63:5C:5C:90:B6:1B:4E:C7:21:CA:C9:FF:B7:A0:8F:5C:C7:61
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/jyljXFyQthtOxyHKyf-3oI9cx2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.226.57.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:85:36:96:d5:c8:ff:85:82:e7:fd:02:e4:12:96:d5:07:b2:
02:cf:7b:c4:25:ea:e7:73:58:28:21:2c:a5:4a:77:96:55:17:
44:bf:aa:6b:47:a8:50:96:6d:f4:48:b4:ff:53:e9:32:80:92:
6b:7e:b2:29:a7:6e:23:bd:cb:98:39:b7:bc:cd:03:af:18:e4:
f2:5c:b8:a0:c3:19:50:7c:6f:8a:fe:19:df:47:f0:09:44:f2:
22:50:e5:ec:89:10:ec:aa:32:06:f1:e6:78:fc:f7:26:cf:77:
77:56:8a:54:41:b2:b3:24:b8:c8:65:d8:c2:ac:f1:81:ab:fb:
1a:55:62:a9:83:ea:76:f5:41:49:c8:41:95:82:ee:8a:51:9e:
82:be:f3:39:c6:88:7b:7b:fd:54:db:f6:52:57:9b:5a:71:b2:
95:9a:3c:2d:83:c1:fb:23:2d:85:f8:3b:03:3c:f0:e1:8e:a9:
49:30:66:b5:35:8d:39:7b:19:22:d1:60:69:59:dd:b4:4e:1a:
10:fd:42:24:d2:65:3e:3b:aa:5e:49:be:c5:fb:27:76:8a:7e:
39:eb:1d:ad:b6:1c:4f:dc:9d:6c:56:51:56:76:47:3e:a5:75:
56:0f:a9:81:69:aa:cc:bb:8d:87:d2:62:eb:f0:6f:82:bf:5f:
32:ed:90:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:37 2024 by rpki-client on console-fra.rpki-client.org