Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/0CyywatiIvMNLTsizpaAYMqEriw.roa
File: 0CyywatiIvMNLTsizpaAYMqEriw.roa (raw, json)
Hash identifier: xzLrEg/V8tt2vtx6hnb9exdTTIsU/w9JmG9Wo+dtfxw=
Subject key identifier: D0:2C:B2:C1:AB:62:22:F3:0D:2D:3B:22:CE:96:80:60:CA:84:AE:2C
Certificate issuer: /CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Certificate serial: 018C8348F710F1382DD26F51C382092E1907
Authority key identifier: 36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/0CyywatiIvMNLTsizpaAYMqEriw.roa
Signing time: Tue 19 Dec 2023 18:14:06 +0000
ROA not before: Tue 19 Dec 2023 18:14:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21859
IP address blocks: 79.98.246.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 26 Dec 2023 13:14:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:83:48:f7:10:f1:38:2d:d2:6f:51:c3:82:09:2e:19:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=368bfb8a5eee49082ea628df25a4a5d50f3aa9b3
Validity
Not Before: Dec 19 18:14:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d02cb2c1ab6222f30d2d3b22ce968060ca84ae2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:1e:bc:d6:46:f6:6e:2d:d6:e3:05:4f:f7:f9:
c9:77:85:49:06:ee:8e:6a:0e:fd:2c:d5:62:bb:da:
ba:ae:df:b0:aa:f5:a5:28:ba:93:af:1d:e9:e1:f4:
4e:76:89:37:77:55:de:36:8d:47:7b:82:27:69:ba:
8f:68:5d:79:c5:9f:cf:32:7f:51:f9:5d:c0:65:07:
bd:3e:91:92:72:33:26:89:df:e1:79:c1:49:c1:f9:
e1:79:63:2c:7e:13:f7:9f:4f:55:64:7c:d6:7c:e5:
2d:fb:a4:14:13:12:66:78:ba:d9:66:7c:82:82:1f:
cb:31:e1:98:96:7c:a1:e0:35:28:32:45:2b:54:4e:
0e:de:e5:1f:3d:b9:d3:22:77:d2:4a:4a:8c:61:62:
c7:d7:fb:dc:0c:3c:1d:1f:b4:54:24:a5:20:be:e7:
13:9d:36:bd:f1:c1:7e:8a:a4:64:14:65:96:01:33:
77:d7:c7:68:d1:00:5b:e6:98:48:ea:89:36:70:10:
41:b7:4b:fe:d9:81:99:3a:0e:dc:8d:92:45:4b:c8:
98:e7:a2:58:cf:70:10:e6:05:be:d9:fb:7f:71:eb:
89:50:a7:1e:d9:c6:76:09:07:5e:37:0d:44:44:f7:
d7:cd:75:e6:73:a1:0b:a1:e0:4f:cc:1d:6a:35:c2:
68:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:2C:B2:C1:AB:62:22:F3:0D:2D:3B:22:CE:96:80:60:CA:84:AE:2C
X509v3 Authority Key Identifier:
keyid:36:8B:FB:8A:5E:EE:49:08:2E:A6:28:DF:25:A4:A5:D5:0F:3A:A9:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nov7il7uSQgupijfJaSl1Q86qbM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/0CyywatiIvMNLTsizpaAYMqEriw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/aa58c3-e706-4a49-a7c5-0ae2e922a292/1/Nov7il7uSQgupijfJaSl1Q86qbM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.98.246.0/23
Signature Algorithm: sha256WithRSAEncryption
b8:15:11:87:06:0a:dd:b3:69:ee:d3:14:84:b4:9d:87:f7:20:
18:4d:60:97:07:c3:82:d4:90:35:e0:03:4d:1c:6a:05:6c:34:
a7:ef:42:2e:4c:63:be:b0:1e:fa:d6:c6:0e:53:23:9f:3f:d7:
82:d6:f5:dd:7e:4e:f8:1d:3c:c7:71:ea:99:ce:24:58:a9:2d:
00:3d:3d:23:16:5b:f4:93:97:c9:7c:3c:12:0b:c3:32:5e:2a:
1e:bb:26:e1:3c:10:04:c7:cd:af:9b:06:1e:b1:0c:35:58:53:
44:f0:58:b1:4a:f2:29:f3:33:1d:99:5d:09:ba:45:6d:90:69:
07:47:9a:42:60:37:4a:24:67:04:f1:44:5d:96:3d:cc:55:31:
13:79:b4:99:98:c1:79:5a:0a:42:a1:51:77:eb:84:1b:9d:95:
1f:2e:3b:96:75:f3:28:44:0d:b4:a3:4d:85:fb:1c:76:82:9f:
5e:9e:1a:48:8e:d0:46:a3:32:55:2c:0e:91:6a:41:9f:be:c1:
38:ac:bf:e1:52:32:45:b2:75:92:be:e6:2f:9d:19:1e:d1:01:
e9:0f:b0:dd:76:55:f9:2e:50:61:a9:f8:0a:9f:20:27:16:0a:
4b:35:f1:01:10:fe:4e:91:b1:2e:c7:92:ca:5f:20:97:39:de:
88:0a:c1:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:13 2024 by rpki-client on console-fra.rpki-client.org