Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/e2831a-4e74-4ea5-9097-0e445895a172/1/dIBe75dI1ro-50IAVeQgj9-uc5Y.roa
File: dIBe75dI1ro-50IAVeQgj9-uc5Y.roa (raw, json)
Hash identifier: Jpc5nfs0/KoVuLRtG64rVPElHI2oDQylxoivCcjgd0I=
Subject key identifier: 74:80:5E:EF:97:48:D6:BA:3E:E7:42:00:55:E4:20:8F:DF:AE:73:96
Certificate issuer: /CN=e99125e9ea822e034667c821a85ca5ab14ec0ad8
Certificate serial: 01856BDCAD76B30A46B36EBF2EA59FFCBC8C
Authority key identifier: E9:91:25:E9:EA:82:2E:03:46:67:C8:21:A8:5C:A5:AB:14:EC:0A:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6ZEl6eqCLgNGZ8ghqFylqxTsCtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/e2831a-4e74-4ea5-9097-0e445895a172/1/dIBe75dI1ro-50IAVeQgj9-uc5Y.roa
Signing time: Sun 01 Jan 2023 05:45:02 +0000
ROA not before: Sun 01 Jan 2023 05:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 59571
IP address blocks: 91.243.68.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 10:33:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:dc:ad:76:b3:0a:46:b3:6e:bf:2e:a5:9f:fc:bc:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e99125e9ea822e034667c821a85ca5ab14ec0ad8
Validity
Not Before: Jan 1 05:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74805eef9748d6ba3ee7420055e4208fdfae7396
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8c:ab:8b:1d:d6:77:c1:fa:89:fe:59:30:02:
7e:e3:c2:4b:20:a3:b9:2a:25:41:bd:a1:94:5e:c8:
b1:cd:53:58:ac:8b:26:34:3b:4e:43:61:10:e5:a8:
58:a9:9f:ef:d1:7e:3b:78:12:29:ed:8d:4e:a8:ff:
32:4d:4a:b8:32:ce:d8:05:43:1d:e4:fc:78:e5:1d:
99:06:ba:b6:ad:23:a4:e7:8d:7e:bc:b3:e6:58:fd:
4a:bb:5c:3e:a2:e9:c7:b8:02:3d:9f:c4:cc:ac:a7:
04:4f:0c:33:ba:63:0f:05:01:49:b9:5f:a7:15:23:
04:a3:55:5b:81:d7:e4:33:8c:ab:d8:84:db:c1:5b:
d4:37:5f:65:e9:d5:5d:9c:8b:3f:1f:7d:58:12:3d:
e3:4d:89:2c:11:3c:92:06:a8:0d:ee:08:04:8a:1e:
68:64:fb:f1:e4:43:d0:ad:15:54:44:36:3e:0c:6a:
83:7f:66:6b:47:78:ea:ae:ee:87:55:f7:73:b1:cc:
f1:05:72:85:12:77:b9:d5:2a:20:98:08:ae:3b:7f:
03:2a:72:f3:cf:fa:ad:76:01:51:f6:4c:4e:ba:e5:
13:5f:b0:ec:33:79:72:9b:24:f9:2e:4e:cb:35:80:
1a:e2:64:88:9c:bc:7a:70:dc:df:b7:fa:db:af:c1:
5a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:80:5E:EF:97:48:D6:BA:3E:E7:42:00:55:E4:20:8F:DF:AE:73:96
X509v3 Authority Key Identifier:
keyid:E9:91:25:E9:EA:82:2E:03:46:67:C8:21:A8:5C:A5:AB:14:EC:0A:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6ZEl6eqCLgNGZ8ghqFylqxTsCtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/e2831a-4e74-4ea5-9097-0e445895a172/1/dIBe75dI1ro-50IAVeQgj9-uc5Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/e2831a-4e74-4ea5-9097-0e445895a172/1/6ZEl6eqCLgNGZ8ghqFylqxTsCtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.243.68.0/24
Signature Algorithm: sha256WithRSAEncryption
33:2c:f4:0f:82:a0:46:3c:40:9d:95:37:fc:21:67:62:6b:c6:
8a:9f:d3:d0:fa:92:64:f8:5b:cb:32:fd:97:0d:2f:5f:45:22:
a9:3c:0c:6d:f2:05:a6:e7:05:88:41:26:63:0a:6f:3e:95:d2:
95:c9:e5:04:d1:59:b2:3f:78:e7:ef:da:18:fb:96:36:6b:ab:
3b:c6:65:9b:dd:01:f6:0a:1a:33:10:3c:22:08:3e:c9:48:50:
e8:c4:c2:4d:89:6e:2e:82:3e:3e:98:5e:ca:d5:50:83:98:b3:
dc:e8:15:73:c7:f8:49:7c:b6:5b:e5:bb:37:12:e0:13:39:43:
b1:f4:f6:0d:fa:eb:d9:66:e1:bf:d6:73:38:22:6c:d8:83:50:
6f:9f:5e:80:c0:da:bd:87:f9:69:78:f9:ed:62:a7:d2:e6:21:
1a:24:c2:13:47:52:a6:42:0d:04:75:fa:53:1b:4e:24:6d:55:
9f:91:0b:75:4f:65:a7:fe:16:bf:33:4c:45:a8:a5:e2:dc:02:
c7:12:b3:f2:41:28:fb:b0:df:45:b6:e3:5a:90:5c:ff:c9:7b:
fa:e7:e1:65:16:60:b5:88:35:8f:53:57:23:74:1c:08:31:7f:
9e:b2:aa:c2:f7:be:68:4d:a1:f3:ba:d5:e7:88:17:27:5d:64:
57:5b:cc:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:35 2024 by rpki-client on console-ams.rpki-client.org