Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/4641f6-87c0-4d17-a58a-6163564d9704/1/PyCpnRFoqN36aIYHQsKxfWv_PnE.roa
File: PyCpnRFoqN36aIYHQsKxfWv_PnE.roa (raw, json)
Hash identifier: Spe5f4WywGG9Y0apzIZ2lL2rjz6bUYDzMyAWuwKvokQ=
Subject key identifier: 3F:20:A9:9D:11:68:A8:DD:FA:68:86:07:42:C2:B1:7D:6B:FF:3E:71
Certificate issuer: /CN=0e51516767d9a8508c6e14d58deeffbfab8080dd
Certificate serial: 0188BF60AD783426720B746C67CA1B6B9AD5
Authority key identifier: 0E:51:51:67:67:D9:A8:50:8C:6E:14:D5:8D:EE:FF:BF:AB:80:80:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DlFRZ2fZqFCMbhTVje7_v6uAgN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/4641f6-87c0-4d17-a58a-6163564d9704/1/PyCpnRFoqN36aIYHQsKxfWv_PnE.roa
Signing time: Thu 15 Jun 2023 14:06:04 +0000
ROA not before: Thu 15 Jun 2023 14:06:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61999
IP address blocks: 91.224.123.0/24 maxlen: 24
91.224.122.0/24 maxlen: 24
91.224.122.0/23 maxlen: 23
Validation: Failed, certificate revoked on Mon 01 Jan 2024 18:30:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:bf:60:ad:78:34:26:72:0b:74:6c:67:ca:1b:6b:9a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e51516767d9a8508c6e14d58deeffbfab8080dd
Validity
Not Before: Jun 15 14:06:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f20a99d1168a8ddfa68860742c2b17d6bff3e71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5f:8d:8e:fb:b8:b4:ac:9a:00:16:af:98:93:
33:97:79:64:8d:ac:bc:6a:ad:e1:13:f0:ce:70:b0:
cd:17:f6:a8:6f:d1:45:9c:81:60:d1:c8:f9:64:23:
45:67:fe:61:48:65:ff:e9:41:cf:35:83:f6:ae:b2:
90:ba:af:e5:1b:f3:9d:b2:05:1a:3d:a4:bd:6b:8e:
55:a3:14:67:23:e5:37:91:79:05:30:8d:b6:e1:87:
7b:ce:e7:f6:ce:5d:b4:f5:15:23:1d:13:38:4c:b0:
3b:ed:a6:5c:ab:ac:02:2e:bc:10:91:12:45:aa:16:
0e:70:cd:4a:26:d1:d6:46:71:e6:4d:51:d2:dd:45:
a1:71:63:07:85:73:01:84:15:ce:41:49:49:b2:0b:
65:43:9e:77:08:c5:64:fc:8a:d7:55:b7:c5:ed:bb:
68:92:f9:5a:f2:55:fb:3c:bc:a4:5c:6a:42:e6:79:
f5:c5:d2:92:9e:1a:84:c8:75:14:d4:b1:2e:3c:5a:
59:20:07:29:c3:66:c1:16:30:b9:1f:ef:94:01:16:
67:16:24:7e:e0:e8:19:ac:9b:1a:c8:2b:2c:3f:d7:
86:1b:0f:f6:23:00:17:40:cc:19:af:99:09:98:76:
35:e4:ea:eb:62:0a:04:54:f0:5e:55:00:04:1c:9f:
55:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:20:A9:9D:11:68:A8:DD:FA:68:86:07:42:C2:B1:7D:6B:FF:3E:71
X509v3 Authority Key Identifier:
keyid:0E:51:51:67:67:D9:A8:50:8C:6E:14:D5:8D:EE:FF:BF:AB:80:80:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DlFRZ2fZqFCMbhTVje7_v6uAgN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4641f6-87c0-4d17-a58a-6163564d9704/1/PyCpnRFoqN36aIYHQsKxfWv_PnE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/4641f6-87c0-4d17-a58a-6163564d9704/1/DlFRZ2fZqFCMbhTVje7_v6uAgN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.122.0/23
Signature Algorithm: sha256WithRSAEncryption
67:4b:bc:3f:af:1c:11:78:0a:63:5c:93:b9:4e:0f:1a:56:29:
29:e6:dd:57:de:ef:e9:3e:b8:75:45:48:34:60:fd:f1:d2:31:
35:ce:3a:05:22:b1:c0:73:5f:1f:18:a8:d2:58:9b:ed:3b:3f:
4f:56:ba:56:04:a3:b6:9d:50:d2:9e:c7:91:62:e8:cb:aa:3d:
d9:62:0b:5e:34:a6:d8:55:d3:2c:b0:8c:8c:ad:8a:ea:af:59:
14:ad:5a:ec:cb:9d:59:3f:4c:cf:7d:b1:30:1c:e7:c6:44:21:
43:f8:b1:9a:1c:87:e8:1e:51:e5:4d:8d:dc:e1:6f:f5:66:5e:
0c:11:45:56:b2:0d:95:41:06:f1:32:ee:aa:33:02:32:69:b0:
ea:16:31:0f:da:da:25:24:bd:7c:2f:74:41:39:9f:87:19:56:
6a:36:46:8a:e8:22:a3:e8:68:e0:25:ff:e6:ca:fe:3c:e1:56:
ef:bc:a6:58:fe:3d:f1:11:54:d7:e1:54:1b:3f:e6:9f:8e:ae:
79:fa:97:8d:7a:a9:31:57:04:cb:53:df:eb:41:f3:7c:a2:2f:
ec:c9:e2:0a:6c:b7:3e:11:f3:cf:2f:f9:74:96:e1:24:95:91:
e3:fa:5e:ce:3e:61:f4:a6:4c:47:67:59:a6:57:78:53:f0:28:
37:93:8e:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:29 2024 by rpki-client on console-fra.rpki-client.org