Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9e6ab2-03e8-48e9-86f6-563c6b52d086/1/UDV8cdTEqgGKxTy1S4lrVdMs6AY.roa
File: UDV8cdTEqgGKxTy1S4lrVdMs6AY.roa (raw, json)
Hash identifier: KlPXJiHSPmTPbRyNKNtxGOCjclToLLhVtb2UsDY/yAw=
Subject key identifier: 50:35:7C:71:D4:C4:AA:01:8A:C5:3C:B5:4B:89:6B:55:D3:2C:E8:06
Certificate issuer: /CN=6378140dbd4e6ef17020d89b0d4250dffb04811c
Certificate serial: 01856FE72D625EC23FA7B90D8E995BCCDB0C
Authority key identifier: 63:78:14:0D:BD:4E:6E:F1:70:20:D8:9B:0D:42:50:DF:FB:04:81:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3gUDb1ObvFwINibDUJQ3_sEgRw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9e6ab2-03e8-48e9-86f6-563c6b52d086/1/UDV8cdTEqgGKxTy1S4lrVdMs6AY.roa
Signing time: Mon 02 Jan 2023 00:34:59 +0000
ROA not before: Mon 02 Jan 2023 00:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198876
IP address blocks: 91.240.27.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:2d:62:5e:c2:3f:a7:b9:0d:8e:99:5b:cc:db:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6378140dbd4e6ef17020d89b0d4250dffb04811c
Validity
Not Before: Jan 2 00:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=50357c71d4c4aa018ac53cb54b896b55d32ce806
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1a:f6:93:c3:48:fe:0e:01:e8:cc:7c:e8:65:
fc:31:42:cc:b8:4e:4d:de:35:7a:c3:cb:e1:79:d4:
bc:be:d6:3b:55:a4:5b:a1:ac:c3:91:d4:fc:97:86:
ec:0f:3c:ec:3c:5c:61:ba:d8:13:05:24:62:3b:4c:
90:ef:f4:7d:fc:21:77:4c:86:15:14:66:3e:8c:ff:
04:97:f1:23:3d:d5:92:5d:5f:63:83:6b:01:20:b0:
30:2e:96:c0:bc:f2:93:af:f5:f9:a6:98:0b:bc:a7:
c0:78:af:fa:64:a7:75:0d:e2:1f:b2:9d:d1:d6:f4:
b2:3a:4d:42:ae:28:d9:ce:0a:77:96:f5:8c:b6:ce:
09:8d:c1:aa:d6:a1:fa:b5:ff:4e:e8:6c:49:30:ba:
77:fc:0e:2a:d3:1f:37:5e:17:29:ba:62:0d:76:c9:
6e:6e:ab:8d:1a:8b:5b:31:bd:92:7a:e1:8f:88:d5:
e4:77:54:c0:dc:9e:02:4e:17:7f:39:1c:2e:a6:84:
f6:08:40:e8:f0:4b:28:a8:a2:32:f0:2a:1d:18:91:
57:a9:3c:33:0d:10:36:29:4b:ca:f4:3f:92:55:6a:
b8:99:03:dd:c1:ab:50:18:1d:0d:63:d1:3c:9b:92:
89:71:b7:62:b9:a6:af:91:ec:eb:bf:8a:66:be:e9:
6b:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:35:7C:71:D4:C4:AA:01:8A:C5:3C:B5:4B:89:6B:55:D3:2C:E8:06
X509v3 Authority Key Identifier:
keyid:63:78:14:0D:BD:4E:6E:F1:70:20:D8:9B:0D:42:50:DF:FB:04:81:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3gUDb1ObvFwINibDUJQ3_sEgRw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9e6ab2-03e8-48e9-86f6-563c6b52d086/1/UDV8cdTEqgGKxTy1S4lrVdMs6AY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9e6ab2-03e8-48e9-86f6-563c6b52d086/1/Y3gUDb1ObvFwINibDUJQ3_sEgRw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.27.0/24
Signature Algorithm: sha256WithRSAEncryption
72:f4:cd:ae:8a:f0:6f:69:43:ac:b7:85:48:4d:63:17:37:a1:
e2:c3:00:bc:c1:5e:fa:9d:04:8c:de:94:d4:f0:e8:26:a0:41:
42:37:67:4d:82:11:f9:d4:e9:1b:c8:27:b5:75:fe:b5:7b:14:
f6:d7:b7:fd:01:b3:6f:09:f8:54:80:b6:cf:a4:ae:a4:a3:64:
5f:54:9d:b2:73:06:26:10:64:91:f6:6e:77:b7:3c:4c:ed:7d:
f5:78:36:d2:e0:ed:7f:93:85:ad:19:90:bd:af:d5:28:f3:96:
d3:8c:ed:57:5c:92:19:67:8b:36:10:a8:e6:d0:10:59:21:cd:
cc:5c:05:b2:c9:82:23:bd:ba:cb:69:c6:df:a7:1e:4c:32:09:
f0:f1:de:df:44:af:31:7f:23:31:bb:23:8e:a6:ce:9d:88:a5:
69:a0:2b:65:b6:a4:75:6c:92:ee:88:73:50:8e:91:f7:cd:1e:
4f:79:fa:00:69:4e:e2:bd:08:62:ed:03:ca:d6:b3:7e:53:b8:
ad:e2:32:07:b1:80:af:2a:4f:a1:91:94:36:a2:31:72:1c:e1:
8b:34:1e:0f:52:86:61:03:6a:4f:df:a3:13:27:50:f3:84:05:
c8:36:59:fa:e4:e7:e7:31:30:59:f0:d5:65:c5:c1:96:be:de:
32:07:ec:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org