Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/CL59YUcJaiH74T6W0iWDxX5KnqE.roa
File: CL59YUcJaiH74T6W0iWDxX5KnqE.roa (raw, json)
Hash identifier: V5n2mwAXgZCq9gQeTHxbeiGtDHbIUHj9pkohboHUotw=
Subject key identifier: 08:BE:7D:61:47:09:6A:21:FB:E1:3E:96:D2:25:83:C5:7E:4A:9E:A1
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01905DA0838A82E3367D8C4B2124ECFCBC7F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/CL59YUcJaiH74T6W0iWDxX5KnqE.roa
Signing time: Fri 28 Jun 2024 06:55:18 +0000
ROA not before: Fri 28 Jun 2024 06:55:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47516
IP address blocks: 91.132.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 22 Aug 2024 10:48:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:5d:a0:83:8a:82:e3:36:7d:8c:4b:21:24:ec:fc:bc:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jun 28 06:55:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08be7d6147096a21fbe13e96d22583c57e4a9ea1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:29:1e:6f:a3:ef:b0:43:25:68:3d:18:3f:c8:
da:d5:c5:f7:31:85:75:d2:6d:39:22:b4:92:8f:b4:
b3:af:2a:3e:53:d7:20:14:10:5d:5a:be:93:29:0c:
db:e1:f2:88:be:53:be:3e:6f:4f:85:d7:7a:29:6d:
e9:c9:58:a1:f6:9f:ab:06:ea:e8:59:62:49:61:be:
76:af:11:68:3c:0e:ba:b8:f1:e8:f4:c8:35:f8:a9:
bb:c9:aa:b5:54:be:6b:76:43:3a:b4:ec:c7:9e:45:
99:12:1a:7b:e7:ab:b9:66:f2:5d:24:0d:b0:a6:e8:
2e:45:0c:9d:11:55:0e:0a:d2:ed:b7:1c:43:d1:a9:
5a:5c:5d:6c:06:21:a6:a9:c1:38:dc:e4:88:c9:11:
e5:9a:5a:f4:44:53:40:7e:e6:a5:ed:35:8d:4f:5d:
7c:ac:c7:e7:09:85:55:97:b6:fb:de:05:ea:1e:1f:
d8:00:8d:93:71:7b:d5:0c:e7:98:95:56:5c:9c:4d:
95:7d:25:5d:34:9b:f7:8d:e6:91:db:ee:28:da:1d:
00:b9:34:4f:35:6c:7f:ed:e0:0b:9b:fe:6f:27:2e:
09:75:e0:75:22:ed:39:3c:7d:58:3c:85:8d:d1:66:
5a:37:1a:48:82:dc:ec:cd:15:f3:ba:06:8c:16:1c:
f4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:BE:7D:61:47:09:6A:21:FB:E1:3E:96:D2:25:83:C5:7E:4A:9E:A1
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/CL59YUcJaiH74T6W0iWDxX5KnqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.132.49.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:1b:dd:63:01:9e:e7:8f:23:08:f8:82:69:b6:ad:7f:95:a5:
a8:5d:39:40:e3:96:d1:52:18:17:c1:05:49:fb:f8:dc:8c:e6:
42:96:a3:b6:93:34:71:b1:93:e6:c6:02:5d:ab:5d:f7:27:d2:
d7:24:ae:91:c2:eb:76:18:16:dc:63:f6:aa:ed:b9:1a:98:07:
4b:40:a7:f5:51:c5:c7:93:fe:a7:29:88:99:98:78:e8:1d:07:
68:d8:d8:81:4b:0a:07:ba:fc:32:a9:e6:c7:18:f0:6e:98:20:
17:5b:89:0b:02:18:37:95:42:1b:db:46:94:f7:d7:13:ae:37:
ee:19:ad:05:6b:a4:6f:0a:09:bd:60:35:6a:73:ff:bf:e3:a9:
02:66:63:5d:a6:7a:3d:7e:30:84:fa:3a:ac:0a:0a:35:8e:fa:
d1:66:0e:ed:31:45:9c:b4:53:de:af:26:68:8d:02:b4:17:82:
35:17:c6:eb:d1:55:a0:f8:14:c9:ba:c7:0a:47:56:3c:f0:ac:
52:27:92:06:73:7e:62:d9:e1:19:73:ea:1e:e9:38:ef:2c:e1:
fb:08:f2:49:96:c5:79:64:b2:34:de:aa:29:34:97:aa:f2:63:
44:1d:99:27:0f:30:7e:66:40:4c:5d:22:21:55:ac:99:65:0e:
03:56:61:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 22 16:53:01 2024 by rpki-client on console-ams.rpki-client.org