Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/v96T3zigg41x_gGvJisRmn9AwA0.roa
File: v96T3zigg41x_gGvJisRmn9AwA0.roa (raw, json)
Hash identifier: Mk/hgarP1cztYS5IPGre9HpDBvG8UZ38GqeW9nb6b9U=
Subject key identifier: BF:DE:93:DF:38:A0:83:8D:71:FE:01:AF:26:2B:11:9A:7F:40:C0:0D
Certificate issuer: /CN=2f2a0fa20383332a3f414f054753a0b60b25ba10
Certificate serial: 018FE88D0950BA89196EFD4031871DB23110
Authority key identifier: 2F:2A:0F:A2:03:83:33:2A:3F:41:4F:05:47:53:A0:B6:0B:25:BA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyoPogODMyo_QU8FR1OgtgsluhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/v96T3zigg41x_gGvJisRmn9AwA0.roa
Signing time: Wed 05 Jun 2024 13:18:28 +0000
ROA not before: Wed 05 Jun 2024 13:18:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.197.32.0/23 maxlen: 23
91.197.34.0/23 maxlen: 23
193.108.80.0/22 maxlen: 22
193.108.84.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 05 Jun 2024 14:24:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e8:8d:09:50:ba:89:19:6e:fd:40:31:87:1d:b2:31:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2a0fa20383332a3f414f054753a0b60b25ba10
Validity
Not Before: Jun 5 13:18:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfde93df38a0838d71fe01af262b119a7f40c00d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:91:5b:07:17:3a:09:4c:9b:91:5a:35:8c:67:
f3:0b:b2:a5:0f:71:78:22:38:4b:e9:81:21:f6:16:
e8:49:85:2e:b8:f0:e7:26:a2:70:89:11:e5:dc:48:
43:ee:76:79:9b:ca:d4:c3:fe:9f:dd:99:ca:bb:87:
ec:d7:d8:b1:99:0e:ad:cc:dd:e5:87:c9:e4:30:b9:
fe:fe:d4:d8:8a:72:72:d5:fe:f5:83:e2:36:b1:87:
14:39:4e:0c:9d:0b:63:02:26:d2:9d:56:6e:ef:c8:
c1:5d:0c:a8:8a:48:e5:01:bd:d4:33:6d:3c:d7:92:
f4:75:7b:b7:00:30:e8:34:bd:74:ee:9b:65:51:21:
5c:59:c8:35:66:db:ac:71:e6:91:e5:01:02:3e:f0:
35:2a:ed:95:c9:ea:8f:7f:90:83:40:c7:61:12:a8:
fa:34:e7:29:87:06:89:30:94:bb:43:ce:ae:50:32:
76:d8:b6:35:76:73:d3:54:20:d9:84:c4:3a:4f:e5:
ef:7d:64:16:1e:10:28:52:0e:0c:00:ad:57:6d:37:
d2:ff:40:95:24:d1:1a:89:5e:d5:a9:e4:f4:9c:18:
f8:20:99:73:80:e7:d7:38:74:25:c8:98:58:46:54:
4b:0c:e0:6d:c4:e2:27:22:fb:c0:41:cf:68:99:e5:
47:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:DE:93:DF:38:A0:83:8D:71:FE:01:AF:26:2B:11:9A:7F:40:C0:0D
X509v3 Authority Key Identifier:
keyid:2F:2A:0F:A2:03:83:33:2A:3F:41:4F:05:47:53:A0:B6:0B:25:BA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyoPogODMyo_QU8FR1OgtgsluhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/v96T3zigg41x_gGvJisRmn9AwA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/LyoPogODMyo_QU8FR1OgtgsluhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.197.32.0/22
193.108.80.0/21
Signature Algorithm: sha256WithRSAEncryption
07:46:d8:3a:e9:a5:51:ed:21:41:7e:42:a5:a7:79:17:47:44:
33:17:a1:38:32:8e:d6:05:aa:e7:b5:f8:b8:45:ea:b0:f7:1c:
44:13:cd:9b:63:58:73:e3:17:7b:0e:93:76:93:99:03:bb:0b:
91:7a:d3:8a:71:bd:ca:6a:50:1d:6a:2a:36:21:63:81:1b:9f:
e2:fc:b8:85:51:f0:9c:5e:96:e0:ad:6c:b0:06:34:83:5d:4c:
2c:e4:ce:f5:79:3b:0c:b7:36:7f:05:95:ee:08:06:e8:3c:51:
13:c1:6b:05:4f:cd:ca:d0:7c:21:c8:3a:84:5e:16:73:76:b1:
27:2d:4f:1d:0a:87:60:26:1e:f5:e4:bb:75:54:8b:ba:31:88:
07:4e:ab:a7:f6:7a:40:f2:af:89:78:ad:fd:fc:35:ae:e8:f9:
eb:97:33:5d:0f:65:ec:c2:58:e4:71:b1:28:27:c7:e0:ff:59:
35:83:0d:dd:80:4a:ba:a6:32:05:4a:3f:96:a7:d9:f0:95:4e:
e4:bf:cd:4a:b7:1e:ef:a7:cb:13:f8:51:fc:fc:63:92:8b:72:
6d:e4:4d:7b:39:3b:9f:2a:5e:fa:a3:e3:93:8a:57:f3:f0:a6:
4a:39:4e:69:a0:ee:2e:cf:9f:c2:84:2c:00:5c:23:87:78:50:
96:c3:e1:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:11 2024 by rpki-client on console-ams.rpki-client.org