Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/K-Ltqklrj4qW-nTs5YSjulcdRA0.roa
File: K-Ltqklrj4qW-nTs5YSjulcdRA0.roa (raw, json)
Hash identifier: A5H5lGoAS0ulY62D8KwB7rVeOf35II8obPcqTtK4OCQ=
Subject key identifier: 2B:E2:ED:AA:49:6B:8F:8A:96:FA:74:EC:E5:84:A3:BA:57:1D:44:0D
Certificate issuer: /CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Certificate serial: 018572836DF91AE3192955F88F9EAED5D472
Authority key identifier: 9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/K-Ltqklrj4qW-nTs5YSjulcdRA0.roa
Signing time: Mon 02 Jan 2023 12:44:54 +0000
ROA not before: Mon 02 Jan 2023 12:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44710
IP address blocks: 91.217.244.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 24 Oct 2023 06:56:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:83:6d:f9:1a:e3:19:29:55:f8:8f:9e:ae:d5:d4:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e8cd7d6a4105750bf8975a7d0b96794c1efe622
Validity
Not Before: Jan 2 12:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2be2edaa496b8f8a96fa74ece584a3ba571d440d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:eb:29:46:dd:dc:cc:d2:a2:7b:ac:9f:d9:b7:
38:41:6b:9c:a2:84:8a:19:ec:80:de:cc:8a:8c:e7:
7d:f3:1e:c4:58:91:ed:f6:2f:1c:77:85:53:c9:b4:
ea:9b:ed:70:b7:04:be:90:b4:6b:da:58:00:f0:3f:
8d:e3:5b:9e:0d:81:a1:7d:b8:e1:03:4a:65:29:6b:
79:11:d9:9b:40:f5:07:c9:4d:25:b3:b5:a7:b6:40:
6b:77:f0:0e:e6:fc:91:f3:cc:21:fd:bd:d4:41:12:
6a:93:c8:ca:98:81:ce:1f:fa:e6:58:38:ee:fc:37:
94:f7:1b:1e:3c:b8:59:c5:b1:db:86:35:e3:f3:a4:
0f:50:1d:ac:13:b9:8c:ea:34:5e:23:96:46:00:ef:
5d:62:31:00:8a:4b:ac:87:13:cf:75:fc:f2:89:70:
18:f8:b0:7f:12:78:49:74:48:bf:8d:4f:e9:76:a8:
8f:8d:e2:0f:10:ba:b1:e7:47:81:77:ba:62:c7:d5:
6b:6d:82:a0:f4:3e:a6:be:77:e7:c0:e7:7e:13:33:
93:e8:1d:44:30:db:61:e0:13:aa:eb:cb:ed:0a:69:
2e:cf:73:15:aa:3e:cd:b7:e5:6d:a7:e6:f2:7d:c7:
93:d0:01:16:72:7c:cd:2d:48:22:e8:79:8b:7b:16:
34:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:E2:ED:AA:49:6B:8F:8A:96:FA:74:EC:E5:84:A3:BA:57:1D:44:0D
X509v3 Authority Key Identifier:
keyid:9E:8C:D7:D6:A4:10:57:50:BF:89:75:A7:D0:B9:67:94:C1:EF:E6:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nozX1qQQV1C_iXWn0LlnlMHv5iI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/K-Ltqklrj4qW-nTs5YSjulcdRA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/85c6bd-6a68-4d11-b9cd-8c2df5a5c6d7/1/nozX1qQQV1C_iXWn0LlnlMHv5iI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.244.0/24
Signature Algorithm: sha256WithRSAEncryption
78:52:b2:b1:81:54:b4:76:de:79:e5:52:bf:04:b0:6e:98:36:
12:26:5f:1a:d0:b4:31:87:50:17:c0:c5:38:4f:3a:9b:0a:11:
c9:79:5a:c2:06:07:bc:68:9c:0f:04:82:09:05:dc:8e:4e:81:
cc:54:68:ba:ae:79:c2:67:c9:27:9a:1d:01:8f:88:b7:8f:a5:
8f:bd:3c:86:b1:e8:f6:35:5d:8e:db:51:40:02:21:fe:ec:39:
d4:20:e9:a6:c4:da:b5:db:6a:9b:58:98:b8:82:73:60:c2:bd:
6e:08:96:4c:b9:98:aa:10:c6:73:b3:bf:d8:03:08:b5:ad:87:
ca:df:ac:82:3f:e0:39:b3:50:0c:51:04:3a:99:7d:bc:13:c8:
98:4d:ce:fd:a7:3b:94:e8:ec:b2:78:02:f8:07:89:2d:45:29:
a5:78:3c:cb:54:ec:2d:db:0c:a5:66:ca:24:33:0a:d1:1c:ac:
6c:91:24:ec:7c:12:b5:a7:43:24:66:a3:88:ad:16:28:83:56:
cb:0a:f8:1b:f0:bb:f1:e4:bc:2e:da:5d:f2:a1:b4:5b:81:b1:
ef:e5:48:08:c0:49:29:7f:e0:e0:12:30:d1:3d:6e:df:f1:59:
27:d6:fb:d9:8e:04:70:f4:42:b3:65:47:a6:12:9d:a7:b2:67:
75:19:b7:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:21 2024 by rpki-client on console-fra.rpki-client.org