Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/UNrFSZhw7AAj0vODYp6fFZB8alA.roa
File: UNrFSZhw7AAj0vODYp6fFZB8alA.roa (raw, json)
Hash identifier: D1to+qpTx2n/yltKu3cRB4yGc1BuM5w2dWaFGEKbmpE=
Subject key identifier: 50:DA:C5:49:98:70:EC:00:23:D2:F3:83:62:9E:9F:15:90:7C:6A:50
Certificate issuer: /CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Certificate serial: 01921503932A2E5922F48E9630541DCC7AA2
Authority key identifier: 6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/UNrFSZhw7AAj0vODYp6fFZB8alA.roa
Signing time: Sat 21 Sep 2024 14:36:48 +0000
ROA not before: Sat 21 Sep 2024 14:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215232
IP address blocks: 91.209.135.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 29 Sep 2024 17:25:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:15:03:93:2a:2e:59:22:f4:8e:96:30:54:1d:cc:7a:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d088cef28e02af7d00f297816c55f8e3c43d535
Validity
Not Before: Sep 21 14:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=50dac5499870ec0023d2f383629e9f15907c6a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ed:cd:a0:36:f9:18:e3:fd:cd:44:7b:50:b4:
fc:e9:9d:3d:57:c7:39:7f:3a:07:0d:d5:a6:e8:e8:
e9:da:24:cc:e5:56:90:e6:e8:26:4d:f9:43:1e:d9:
2f:6f:0a:be:a2:30:bd:79:85:0c:ff:a3:81:fc:00:
77:3b:49:6c:15:a1:99:da:42:76:93:84:4c:71:d1:
56:d3:b0:23:99:f5:18:1a:b5:84:18:2b:4a:e9:9c:
80:db:51:a9:9d:00:05:b8:6b:3f:2a:37:e2:60:f3:
06:58:28:3f:90:97:97:d1:d7:3a:60:7e:c4:03:8d:
40:a6:c8:56:22:3c:77:fe:a4:5b:f9:5f:46:4d:29:
55:d5:40:20:fb:7e:45:a7:1c:a3:85:83:da:dc:99:
c6:29:11:47:04:40:67:3f:ba:02:42:c1:b1:37:0b:
4c:c5:fc:6c:03:5e:7f:78:4e:1b:32:6e:33:92:08:
67:b7:59:82:1d:74:96:5e:85:12:ae:7f:2b:05:78:
1f:35:19:b9:9a:dd:18:64:1c:6f:aa:3b:dc:f1:c1:
7b:9e:df:f5:1f:5a:2a:35:56:6d:8c:e2:db:a4:d9:
1e:c1:28:b7:d9:08:da:43:a3:66:a1:17:29:81:41:
e2:da:24:1f:20:b8:77:7c:b1:21:b5:48:90:c9:62:
bd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:DA:C5:49:98:70:EC:00:23:D2:F3:83:62:9E:9F:15:90:7C:6A:50
X509v3 Authority Key Identifier:
keyid:6D:08:8C:EF:28:E0:2A:F7:D0:0F:29:78:16:C5:5F:8E:3C:43:D5:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQiM7yjgKvfQDyl4FsVfjjxD1TU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/UNrFSZhw7AAj0vODYp6fFZB8alA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3f/d57a64-bd32-4c91-be06-fee8eaf73b0d/1/bQiM7yjgKvfQDyl4FsVfjjxD1TU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.135.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:e5:d3:e0:2a:e6:f3:1e:d1:a9:d0:24:a2:a6:11:43:7d:8b:
21:0c:32:8a:d9:20:0b:72:dd:38:a5:71:19:94:8b:94:29:76:
a9:e6:ef:98:23:72:77:c2:22:f0:45:35:97:0f:92:76:ba:e3:
20:15:e6:bb:3c:9c:8b:13:57:d0:77:11:a9:e0:d4:0c:e7:58:
58:7d:de:66:5d:aa:0c:08:15:aa:75:a2:04:f1:b4:14:6e:f4:
69:29:e2:60:92:d2:4c:b8:70:c6:a3:83:60:bd:81:d5:7b:aa:
ef:02:4f:ad:35:0e:80:da:fb:1f:30:01:82:37:9e:c7:33:bb:
df:ed:e6:a1:23:35:7e:3e:48:f7:ae:8b:d4:50:05:21:22:f1:
4f:a7:85:0d:39:38:d9:b1:dc:1a:df:af:d2:4e:b3:a5:9e:1e:
42:22:30:4c:7e:ce:cd:dd:0f:6f:dd:90:44:a9:01:ad:63:0e:
45:4e:a9:23:5f:c6:11:d7:44:ce:d2:51:c2:f8:90:33:37:15:
26:47:c2:3f:21:09:63:0e:93:4e:05:73:1b:1b:f3:22:28:8c:
47:55:6b:93:33:5b:db:0b:29:1c:ee:8f:75:77:fc:60:ae:03:
f0:d6:1a:70:b1:c2:cc:01:37:3b:2b:8f:50:8a:ed:7e:02:9d:
21:7c:d7:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 29 18:14:20 2024 by rpki-client on console-fra.rpki-client.org