Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/lcY0H8Y9QZBeveawhLXODa6HolE.roa
File: lcY0H8Y9QZBeveawhLXODa6HolE.roa (raw, json)
Hash identifier: MBX5Y7hJPMLiafenoFn1wS8ItlNAIiI1vbqMviN3gJw=
Subject key identifier: 95:C6:34:1F:C6:3D:41:90:5E:BD:E6:B0:84:B5:CE:0D:AE:87:A2:51
Certificate issuer: /CN=17eb3e00450198c8ad45ebf83e130219b93643a5
Certificate serial: 01857246B5138172D266D9933B5A4A525199
Authority key identifier: 17:EB:3E:00:45:01:98:C8:AD:45:EB:F8:3E:13:02:19:B9:36:43:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F-s-AEUBmMitRev4PhMCGbk2Q6U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/lcY0H8Y9QZBeveawhLXODa6HolE.roa
Signing time: Mon 02 Jan 2023 11:38:34 +0000
ROA not before: Mon 02 Jan 2023 11:38:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49256
IP address blocks: 91.214.13.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:46:b5:13:81:72:d2:66:d9:93:3b:5a:4a:52:51:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17eb3e00450198c8ad45ebf83e130219b93643a5
Validity
Not Before: Jan 2 11:38:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=95c6341fc63d41905ebde6b084b5ce0dae87a251
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ab:62:6d:96:0d:6f:df:3a:8e:3f:40:3c:f6:
86:cb:a2:07:f4:5d:a8:e7:ac:e8:98:ba:a9:42:3e:
86:42:5c:c4:d2:f1:01:30:35:ec:7d:6e:9a:ec:d3:
c4:6f:56:e2:75:a2:7a:ee:35:1a:db:14:69:96:99:
6f:f8:ad:8b:3f:f5:ea:49:66:e7:df:c4:b2:1b:3f:
03:aa:5f:8c:7a:49:45:03:f0:0b:41:ee:70:54:2a:
a8:41:78:fc:90:2d:1c:f1:4a:61:06:e9:a3:46:51:
b2:7a:6c:ab:85:db:10:2c:fb:5b:78:3b:4d:37:95:
a3:94:78:a8:dc:04:e1:a2:bb:20:3c:4d:c0:78:26:
90:ff:ff:01:a4:bc:0e:2f:14:e4:5b:db:84:3d:b4:
95:75:f5:1c:fa:e5:13:1a:44:21:2b:b9:dc:31:25:
22:91:ff:7c:b6:0c:a4:00:bd:61:9c:21:f3:9f:e5:
e3:ac:fc:ca:c0:0f:62:f3:22:99:4c:96:7f:e7:e8:
92:6e:d8:ee:a0:ba:ab:de:50:2b:77:75:4b:c7:05:
6e:52:56:35:be:cb:8a:0b:43:aa:2a:16:25:71:e8:
de:dd:88:96:f1:45:e6:19:fd:e3:d3:c0:35:79:e3:
21:50:0c:89:dd:be:f0:84:b2:17:7b:5f:b4:54:46:
a6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:C6:34:1F:C6:3D:41:90:5E:BD:E6:B0:84:B5:CE:0D:AE:87:A2:51
X509v3 Authority Key Identifier:
keyid:17:EB:3E:00:45:01:98:C8:AD:45:EB:F8:3E:13:02:19:B9:36:43:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F-s-AEUBmMitRev4PhMCGbk2Q6U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/lcY0H8Y9QZBeveawhLXODa6HolE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/23640c-3065-43b8-b955-1888845ca859/1/F-s-AEUBmMitRev4PhMCGbk2Q6U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.214.13.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:a9:85:4d:e3:b8:dc:c9:a3:15:db:d8:b5:73:d3:a5:4c:5a:
66:a9:af:d8:12:7f:af:16:ff:51:1c:7f:af:6b:b5:58:ec:5e:
b1:7f:ec:79:9c:02:47:2c:54:0f:ae:0f:f6:5e:8d:a2:57:bb:
81:01:14:b6:a9:3c:da:e8:da:e7:b7:03:89:c1:84:66:9f:14:
69:be:65:34:22:b3:b8:25:4a:0d:82:1a:b2:e9:80:3c:68:00:
92:46:86:24:65:78:12:62:d3:26:5f:78:2a:76:99:11:7b:4c:
5d:56:a0:94:ee:e6:19:6d:e3:94:f7:48:76:2c:89:15:ec:c6:
1f:93:0c:7d:c4:50:06:99:40:a1:7e:9b:8c:83:4d:00:ed:f9:
2a:a9:b7:82:76:05:62:39:08:85:6c:72:6d:13:93:45:05:b5:
da:ba:f3:a6:05:6a:c4:d2:a0:89:26:06:9f:3c:6e:e6:56:0e:
76:ef:e1:4d:85:67:30:67:56:16:c0:a5:a8:71:36:33:04:f5:
aa:ed:74:03:35:14:95:c3:7f:db:c8:33:24:51:4a:a5:61:11:
be:e8:2f:e1:15:f9:86:41:df:aa:f0:81:b7:39:13:36:1f:1a:
b7:83:7c:33:2f:95:46:70:3f:80:62:71:2d:d2:4a:0f:b3:30:
1c:06:ff:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:18 2023 by rpki-client on console-fra.rpki-client.org