Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/c25435-d23a-41a3-bc5e-53ecc6655f6b/1/bUgzFy4jvg2e2m84z0KmrjzYHqc.roa
File: bUgzFy4jvg2e2m84z0KmrjzYHqc.roa (raw, json)
Hash identifier: RU1gxla4grw8g01uheJwMk7V1dRyvikWjHe001UsmD4=
Subject key identifier: 6D:48:33:17:2E:23:BE:0D:9E:DA:6F:38:CF:42:A6:AE:3C:D8:1E:A7
Certificate issuer: /CN=56eb6a5fa3d217a2ee7d4a62d8461a6793ed5cb3
Certificate serial: 018CC649A89B073AB6D5CBBB597BAA42B824
Authority key identifier: 56:EB:6A:5F:A3:D2:17:A2:EE:7D:4A:62:D8:46:1A:67:93:ED:5C:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VutqX6PSF6LufUpi2EYaZ5PtXLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/c25435-d23a-41a3-bc5e-53ecc6655f6b/1/bUgzFy4jvg2e2m84z0KmrjzYHqc.roa
Signing time: Mon 01 Jan 2024 18:29:25 +0000
ROA not before: Mon 01 Jan 2024 18:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213184
IP address blocks: 91.201.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jan 2024 13:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:49:a8:9b:07:3a:b6:d5:cb:bb:59:7b:aa:42:b8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56eb6a5fa3d217a2ee7d4a62d8461a6793ed5cb3
Validity
Not Before: Jan 1 18:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6d4833172e23be0d9eda6f38cf42a6ae3cd81ea7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:50:68:21:65:dc:3d:a1:9e:0a:6b:84:ef:5b:
7c:95:ce:59:f6:3f:01:ea:dd:5e:0b:ce:a0:c5:6d:
cf:95:6f:a6:42:3d:aa:ee:2a:38:03:8e:9c:56:a3:
2f:b0:fe:ab:51:bd:97:19:8c:77:29:75:ca:03:15:
6e:cb:35:c5:01:7e:a3:ee:22:f0:a2:b6:65:7b:52:
70:42:96:9c:52:c4:a4:2f:69:f5:71:88:82:64:a8:
d9:57:b7:38:11:fd:3f:1a:79:a1:8d:b0:e9:ba:43:
b3:dd:aa:d0:a6:cf:cb:56:e5:16:ee:a1:19:cb:61:
6f:ec:9a:93:15:9f:36:c0:bf:42:70:6d:89:43:15:
2c:30:ef:e8:ad:2c:1b:2c:ee:38:fa:6a:84:a4:99:
cd:65:83:71:23:7e:c9:0e:c4:d4:d4:7f:ec:e0:44:
7e:5f:7e:45:b4:14:a4:af:7d:d7:73:8e:f2:41:6c:
e3:b6:ff:69:80:c4:89:05:90:4c:0d:b3:4f:5f:ce:
aa:59:14:3e:e0:08:7c:2f:2e:b1:c4:6e:26:61:82:
5b:ed:9f:70:64:8b:e6:ad:d1:aa:a9:55:1c:59:1f:
4d:fc:4d:75:7c:1f:58:1c:d0:a4:85:83:1d:a0:27:
ae:28:e7:c4:f0:01:b9:95:74:93:b4:90:64:0e:d6:
ea:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:48:33:17:2E:23:BE:0D:9E:DA:6F:38:CF:42:A6:AE:3C:D8:1E:A7
X509v3 Authority Key Identifier:
keyid:56:EB:6A:5F:A3:D2:17:A2:EE:7D:4A:62:D8:46:1A:67:93:ED:5C:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VutqX6PSF6LufUpi2EYaZ5PtXLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c25435-d23a-41a3-bc5e-53ecc6655f6b/1/bUgzFy4jvg2e2m84z0KmrjzYHqc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/c25435-d23a-41a3-bc5e-53ecc6655f6b/1/VutqX6PSF6LufUpi2EYaZ5PtXLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.106.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:26:59:38:92:23:6f:c5:76:f9:cd:49:cc:42:92:70:ea:fb:
e4:14:8c:b1:da:5e:31:8f:ce:be:ef:89:f5:0e:b4:19:b7:1a:
5f:98:ed:40:fc:68:f8:54:83:cc:fe:5e:24:c5:4e:77:c4:8e:
09:94:db:2b:ec:5b:5d:71:e6:9d:f0:fa:c6:1f:f9:ee:91:17:
92:79:d2:04:e0:fe:ae:df:36:3c:4b:fb:de:1e:ff:59:bf:03:
80:6c:c1:bf:1a:c0:3c:08:1b:ce:24:73:f5:a7:73:a6:91:43:
7e:9a:36:52:9a:33:1d:10:0b:bd:3c:91:1b:40:41:01:bc:55:
b1:25:15:47:ce:04:83:25:59:ab:4e:94:98:9b:f7:d9:7c:ef:
83:79:1f:78:9c:40:96:ed:2c:7c:80:55:cc:b1:3d:c0:f1:a4:
e1:f3:64:aa:09:e9:6a:28:91:22:2e:a7:d9:a1:2b:25:e5:bb:
90:3c:f7:ad:05:f3:58:d2:c7:41:5d:45:d0:88:ff:5a:d5:93:
03:47:eb:02:72:d2:ec:72:82:b6:45:85:21:5e:13:02:b0:1f:
9c:a4:8e:38:4a:44:ec:e5:3f:97:e9:0b:4d:a7:6e:fb:fb:76:
85:21:56:02:fa:c3:d2:df:c6:32:2a:5e:d9:24:b4:18:ad:1f:
b0:92:fc:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:59 2025 by rpki-client