Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/y4_1pVn5YjXw9RFYwpv6XHEIuGc.roa
File: y4_1pVn5YjXw9RFYwpv6XHEIuGc.roa (raw, json)
Hash identifier: Lv/+CUXqRd39yu6HH6nS/LTiYwgmh2uHVFDf1oBOKVs=
Subject key identifier: CB:8F:F5:A5:59:F9:62:35:F0:F5:11:58:C2:9B:FA:5C:71:08:B8:67
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018CBBA00F285EFFA64D99BE959C7D08DD82
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/y4_1pVn5YjXw9RFYwpv6XHEIuGc.roa
Signing time: Sat 30 Dec 2023 16:47:58 +0000
ROA not before: Sat 30 Dec 2023 16:47:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210107
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:bb:a0:0f:28:5e:ff:a6:4d:99:be:95:9c:7d:08:dd:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Dec 30 16:47:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb8ff5a559f96235f0f51158c29bfa5c7108b867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f9:bc:92:35:2b:2e:26:ba:a6:cd:c2:55:a3:
0c:3e:13:cd:a9:77:9c:4e:a2:ba:82:18:64:c7:f4:
b9:26:09:11:6e:4f:65:30:6b:20:91:4b:c9:e5:76:
0c:55:37:03:b3:fe:b1:eb:ea:66:d0:c7:e0:f2:f2:
83:8a:ff:34:e8:31:8d:ff:96:b7:c2:63:20:99:c8:
5e:a1:74:f6:b5:80:94:fb:02:e8:a3:03:22:bb:6c:
77:a2:df:ea:2a:92:4f:52:3e:72:6e:b3:29:db:b6:
72:5a:bb:fc:58:8e:3e:df:26:19:58:1c:4d:47:4e:
6f:4f:17:0e:79:2d:6e:35:27:cf:87:ec:bc:a6:42:
05:a8:3a:00:53:c1:d4:e6:3e:aa:b4:a1:90:a3:2a:
e4:a6:72:3f:4b:6a:8a:eb:d7:e2:14:ce:48:12:86:
77:a5:8c:b5:9e:c0:1a:d2:fc:55:a2:fc:0f:8c:19:
98:de:a3:ea:e8:27:f2:91:f9:18:e2:2b:3e:b0:45:
68:31:b6:fa:e0:e7:3f:37:b2:23:f5:b5:b4:16:3a:
93:dd:0a:ab:4d:86:9c:df:12:c8:b5:47:07:ed:db:
a7:d6:a6:3c:c5:9e:6e:3b:00:a7:9d:c0:ab:6f:79:
1a:bc:a2:09:62:c0:6e:5c:69:b6:61:31:c5:f9:4d:
a1:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:8F:F5:A5:59:F9:62:35:F0:F5:11:58:C2:9B:FA:5C:71:08:B8:67
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/y4_1pVn5YjXw9RFYwpv6XHEIuGc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:a4:6e:4c:d2:05:0a:92:29:ef:11:40:d5:2a:88:5e:f8:d9:
55:8d:d8:d1:d5:f0:70:4c:a6:01:a4:3a:c6:0e:91:1f:f9:06:
91:18:e3:be:2c:f7:f1:2d:c0:6f:e2:eb:2e:ff:8d:f4:50:b0:
68:a4:88:e4:d8:e4:fc:1a:fc:3f:f9:c6:b3:a5:1a:85:df:db:
b6:b9:e3:90:67:c1:31:a3:15:0d:4e:92:37:58:47:f9:0e:b6:
e9:4e:64:55:4d:f9:12:71:76:ae:be:70:65:e9:d9:47:18:c2:
dc:cf:0d:8d:82:5f:c9:74:76:5e:15:a4:d3:9e:04:b9:4b:cf:
9c:84:b7:f2:2d:df:b2:09:a7:e0:5b:a3:cc:db:fc:a5:5f:c2:
51:af:ba:6d:94:dc:21:94:bd:f0:2c:3a:e1:9d:eb:30:11:7a:
2e:d0:22:55:90:d7:b3:3a:c7:44:79:a1:fc:66:d0:6e:0f:ca:
38:84:93:e7:6a:9b:69:9e:78:81:5b:36:c5:f3:3a:1f:04:05:
68:af:2f:f7:db:99:7a:b6:60:39:8c:84:2e:30:2e:c0:7a:00:
05:43:9f:fb:2b:39:84:84:9d:25:f7:36:f3:e3:b6:fe:90:31:
1d:cc:dc:d7:50:ba:d8:c6:a4:99:9f:0a:73:30:17:53:98:f4:
57:5e:86:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:02 2024 by rpki-client on console-fra.rpki-client.org