Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/YM7zwwUJ6QEOi0n0SI7zF6jHclI.roa
File: YM7zwwUJ6QEOi0n0SI7zF6jHclI.roa (raw, json)
Hash identifier: 8CZxujcoU8vRSErB6w4XSMa8dI09Uwk8Bh8ekgEllL8=
Subject key identifier: 60:CE:F3:C3:05:09:E9:01:0E:8B:49:F4:48:8E:F3:17:A8:C7:72:52
Certificate issuer: /CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Certificate serial: 0185720316D23895D4BE31AF70A41DA6FC5A
Authority key identifier: 15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/YM7zwwUJ6QEOi0n0SI7zF6jHclI.roa
Signing time: Mon 02 Jan 2023 10:24:43 +0000
ROA not before: Mon 02 Jan 2023 10:24:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57361
IP address blocks: 91.231.229.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:03:16:d2:38:95:d4:be:31:af:70:a4:1d:a6:fc:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1598d75e8e32d5e847df4aa1a35c29344c976e26
Validity
Not Before: Jan 2 10:24:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60cef3c30509e9010e8b49f4488ef317a8c77252
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:70:25:4f:06:67:52:8c:88:c1:2a:6b:6a:9c:
f4:71:bb:df:9e:e0:87:f6:a8:32:69:5d:a2:20:63:
5c:9e:d2:30:88:14:f9:1b:84:f2:d4:d3:e6:a2:20:
de:1d:63:dc:8f:80:9a:a4:1d:c5:2c:42:83:a6:b0:
fb:08:d9:8b:f3:7f:1b:de:ab:f9:1e:41:20:8a:4d:
c7:9a:d0:64:4a:49:1b:03:5e:8c:46:e1:97:1d:e0:
22:11:2e:b4:c4:a1:13:15:04:72:dc:15:38:4d:74:
35:86:6a:49:37:e3:e3:1a:7b:e1:9a:ba:cb:9e:b6:
4a:f4:c8:f4:97:6a:86:fc:2a:2a:06:a6:57:0e:a7:
7e:f6:4a:a7:c3:86:88:50:80:ba:16:38:96:fd:b3:
24:f6:86:83:fc:bf:05:75:7e:e7:11:b3:22:5c:de:
1e:5a:62:9a:fb:cd:a7:3d:b7:90:4e:97:e3:81:45:
93:94:5c:ce:09:0a:e5:ba:01:bc:c0:fb:8f:1a:8d:
64:a6:c4:ca:2a:cc:5f:84:b9:c4:00:e3:2d:38:ed:
8b:ab:32:ae:09:dc:f8:5f:06:81:d8:75:85:50:e2:
08:e7:e5:49:e2:c6:06:64:c3:4a:e6:df:3f:17:6e:
6f:99:97:86:87:2a:3a:fa:12:7f:1a:80:87:cd:6b:
40:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:CE:F3:C3:05:09:E9:01:0E:8B:49:F4:48:8E:F3:17:A8:C7:72:52
X509v3 Authority Key Identifier:
keyid:15:98:D7:5E:8E:32:D5:E8:47:DF:4A:A1:A3:5C:29:34:4C:97:6E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZjXXo4y1ehH30qho1wpNEyXbiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/YM7zwwUJ6QEOi0n0SI7zF6jHclI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/826a5b-638f-461b-a24b-3bc6bc306f89/1/FZjXXo4y1ehH30qho1wpNEyXbiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.229.0/24
Signature Algorithm: sha256WithRSAEncryption
30:f8:72:71:d8:f2:33:02:78:db:62:16:4e:93:42:a5:41:c1:
37:1f:f9:12:91:9a:92:3c:ed:09:f6:2f:14:45:35:37:0e:39:
20:6f:94:2f:64:bf:1d:c6:1a:43:70:11:6e:59:85:e3:33:af:
98:db:37:c5:31:e4:0a:17:18:e3:96:f5:3f:7e:8a:bc:0c:f6:
a1:d0:3d:65:e4:41:37:f1:55:fb:e7:bf:29:26:a2:8e:d1:5b:
5c:c2:7e:9c:82:9c:60:10:75:3d:37:4a:e7:12:3e:17:86:99:
3b:3e:7f:62:85:14:53:4f:90:0b:07:6d:c8:07:8a:ce:c2:32:
02:2c:58:34:4f:00:3e:8d:68:3f:5c:34:fb:62:47:45:bf:c2:
4e:03:1a:11:91:43:ef:b7:20:ac:5a:c1:9e:7c:b1:0f:a4:e0:
95:fa:3f:85:32:dd:a8:a1:c9:c4:23:9c:56:23:55:bb:b9:6f:
2d:a5:fd:fc:96:78:ed:ef:14:ec:8e:69:3d:e6:9f:a7:77:4b:
9c:54:9e:00:c1:49:cd:8f:8b:96:3c:1c:23:62:be:13:2a:71:
21:0c:39:d6:96:a6:0c:10:e2:34:b3:9a:85:da:03:b1:9b:8d:
b7:28:57:8e:c4:05:59:46:29:f3:92:e4:7b:da:f5:16:e6:11:
f7:9f:86:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 03:23:10 2024 by rpki-client on console-fra.rpki-client.org