Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2bcf31-6277-4e87-a007-bbe2c4d88c2f/1/4sdw5gl-Gq1NSLtk8oIgKnCkz-Y.roa
File: 4sdw5gl-Gq1NSLtk8oIgKnCkz-Y.roa (raw, json)
Hash identifier: EGxbgcR3H+lRCY/DYeaJmufsHjkoL9XBfQ0TRiawkrs=
Subject key identifier: E2:C7:70:E6:09:7E:1A:AD:4D:48:BB:64:F2:82:20:2A:70:A4:CF:E6
Certificate issuer: /CN=2ad59994f2af79599cfb3ff2e3e98e518f914fba
Certificate serial: 018AD106A0B939EBC482060B37E758C54239
Authority key identifier: 2A:D5:99:94:F2:AF:79:59:9C:FB:3F:F2:E3:E9:8E:51:8F:91:4F:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KtWZlPKveVmc-z_y4-mOUY-RT7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2bcf31-6277-4e87-a007-bbe2c4d88c2f/1/4sdw5gl-Gq1NSLtk8oIgKnCkz-Y.roa
Signing time: Tue 26 Sep 2023 10:26:27 +0000
ROA not before: Tue 26 Sep 2023 10:26:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206065
IP address blocks: 91.239.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:d1:06:a0:b9:39:eb:c4:82:06:0b:37:e7:58:c5:42:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ad59994f2af79599cfb3ff2e3e98e518f914fba
Validity
Not Before: Sep 26 10:26:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2c770e6097e1aad4d48bb64f282202a70a4cfe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:bc:b8:e9:ff:6c:5a:a2:4e:d6:9d:7f:c4:f3:
5c:a1:a2:91:42:1e:6a:b4:76:0b:62:8f:1e:6a:37:
a2:98:9b:47:7c:0c:a1:41:5b:be:f1:40:05:fb:27:
e5:49:31:03:ee:70:a2:91:56:26:b6:58:6d:3a:96:
e6:0f:2c:e7:50:d9:cf:92:50:d6:64:13:8b:33:6c:
a8:41:72:df:41:2f:92:08:13:80:cd:9e:c5:11:47:
bd:33:23:2e:5f:1d:29:29:c7:31:ba:2a:1c:9d:37:
e2:58:62:c1:87:d8:94:1c:33:c9:07:ff:ce:9f:78:
70:2a:03:74:c7:2f:be:fa:9f:71:d6:55:97:6c:1d:
e0:c5:37:48:87:43:a9:ea:c4:bb:f3:fd:44:e5:27:
f6:50:06:42:ce:a1:d0:ed:67:79:62:20:19:33:b3:
ef:bb:cc:74:4c:b8:1a:f6:08:e8:30:bc:8b:a7:4d:
f0:b2:97:63:cd:4b:d9:47:2b:09:c5:b3:7c:64:52:
2f:09:da:1a:76:db:38:43:b1:e3:8e:10:1d:21:97:
fc:26:a2:e8:53:08:cf:fc:71:d7:42:d6:57:f9:75:
01:3f:6f:49:4f:ea:2d:46:35:29:b2:15:e3:e7:97:
d6:c4:28:60:7e:b9:60:05:ad:28:d2:81:fc:ba:1a:
5b:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C7:70:E6:09:7E:1A:AD:4D:48:BB:64:F2:82:20:2A:70:A4:CF:E6
X509v3 Authority Key Identifier:
keyid:2A:D5:99:94:F2:AF:79:59:9C:FB:3F:F2:E3:E9:8E:51:8F:91:4F:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KtWZlPKveVmc-z_y4-mOUY-RT7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2bcf31-6277-4e87-a007-bbe2c4d88c2f/1/4sdw5gl-Gq1NSLtk8oIgKnCkz-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2bcf31-6277-4e87-a007-bbe2c4d88c2f/1/KtWZlPKveVmc-z_y4-mOUY-RT7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.108.0/22
Signature Algorithm: sha256WithRSAEncryption
88:91:48:25:64:90:a1:62:da:a0:bd:ba:8b:87:38:4b:55:ec:
98:f4:fd:8d:f1:4e:7d:72:10:8c:00:da:73:a2:4e:a3:9b:55:
da:e9:f6:a2:a3:15:fd:40:2c:73:9d:99:fc:7b:84:ea:2c:ae:
ed:1d:34:e2:b8:5e:d2:26:53:59:0e:d0:44:c1:22:58:7c:2b:
00:24:37:96:55:ab:6f:af:f0:9b:79:87:eb:89:35:fa:1d:92:
82:6b:e9:d7:0b:ec:37:b2:da:2f:13:c3:69:a6:01:69:9a:fb:
a5:78:ee:79:8e:54:43:25:74:03:8f:b2:62:a2:47:32:ad:7d:
2f:25:1f:de:4e:e6:b1:7e:c8:41:0b:f2:61:c4:20:cd:27:04:
b1:18:05:a2:a7:95:af:dc:69:c9:c8:5a:96:a0:37:d9:67:65:
63:06:82:86:63:90:6b:5a:9f:c1:e3:54:8f:40:5e:a5:b8:26:
73:ac:8f:c7:fd:03:9b:2a:1e:31:b8:fe:79:ad:5d:b2:70:66:
bf:d1:fb:6b:4b:2f:34:31:35:71:ff:77:df:a0:2d:21:05:85:
d3:5f:c1:c8:de:a4:39:4d:3e:f6:8b:34:d2:c0:7a:ba:cc:af:
f6:b3:74:c2:6d:b4:5b:c8:ed:35:a6:81:39:e7:6a:c4:f5:c7:
2e:3b:d2:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:34 2024 by rpki-client on console-ams.rpki-client.org