Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/417d77-0e9e-4091-b510-946018241c51/1/GLYJ0MtCsx8aNbSAM4M5nakExNs.roa
File: GLYJ0MtCsx8aNbSAM4M5nakExNs.roa (raw, json)
Hash identifier: 8fGl/k2Fl6cIOgPK6J1rbvLCSyPZ5XJhLs00YaK+j7A=
Subject key identifier: 18:B6:09:D0:CB:42:B3:1F:1A:35:B4:80:33:83:39:9D:A9:04:C4:DB
Certificate issuer: /CN=1b420b799c5206a19ef7717ee3c7312fd88330ae
Certificate serial: 0188F7726EF4E1782F493EBC2C88D83F48E6
Authority key identifier: 1B:42:0B:79:9C:52:06:A1:9E:F7:71:7E:E3:C7:31:2F:D8:83:30:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G0ILeZxSBqGe93F-48cxL9iDMK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/417d77-0e9e-4091-b510-946018241c51/1/GLYJ0MtCsx8aNbSAM4M5nakExNs.roa
Signing time: Mon 26 Jun 2023 11:24:11 +0000
ROA not before: Mon 26 Jun 2023 11:24:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51067
IP address blocks: 91.216.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Jul 2023 15:25:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:f7:72:6e:f4:e1:78:2f:49:3e:bc:2c:88:d8:3f:48:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b420b799c5206a19ef7717ee3c7312fd88330ae
Validity
Not Before: Jun 26 11:24:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=18b609d0cb42b31f1a35b4803383399da904c4db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5d:a2:c9:3e:96:fd:53:af:8f:db:d8:92:ad:
82:ba:97:46:2c:93:70:e3:0a:eb:bf:a3:1e:0a:d9:
84:04:c2:e2:82:4f:87:54:a5:76:91:33:d6:80:e6:
fe:39:ad:e4:68:7e:9e:f2:7a:e2:28:77:9d:06:df:
87:66:76:a8:ae:e9:9e:74:02:78:aa:b3:67:1f:f1:
e8:64:a8:19:24:fe:2b:94:3e:19:70:d3:b6:a9:fb:
9d:60:c6:f1:62:23:19:4a:36:54:61:92:a8:bb:a0:
e4:5a:91:d8:d6:f3:7e:76:37:64:5e:83:f9:4b:e0:
c2:33:17:5c:0b:a5:ed:39:f0:ae:89:b8:88:6a:76:
b5:36:84:19:72:2b:4c:d1:5f:ef:3f:1b:c9:7a:fc:
c6:95:49:4c:98:a7:ea:c7:88:bc:04:69:73:cb:bc:
bd:7f:24:82:c3:69:57:a1:ca:e0:71:a3:54:b0:ab:
9a:3b:51:9e:56:03:a2:db:70:ba:09:38:4f:a1:14:
dd:1e:20:24:25:71:37:45:cb:ff:63:f5:f1:30:d6:
82:58:95:58:5b:78:b5:29:0c:e9:1e:ff:05:9b:7d:
1b:84:ac:9e:c1:11:58:4d:2d:85:50:1f:d1:c8:e8:
3e:85:91:f4:34:69:63:6c:55:3e:fd:50:4b:f1:19:
3b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B6:09:D0:CB:42:B3:1F:1A:35:B4:80:33:83:39:9D:A9:04:C4:DB
X509v3 Authority Key Identifier:
keyid:1B:42:0B:79:9C:52:06:A1:9E:F7:71:7E:E3:C7:31:2F:D8:83:30:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G0ILeZxSBqGe93F-48cxL9iDMK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/417d77-0e9e-4091-b510-946018241c51/1/GLYJ0MtCsx8aNbSAM4M5nakExNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/417d77-0e9e-4091-b510-946018241c51/1/G0ILeZxSBqGe93F-48cxL9iDMK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.121.0/24
Signature Algorithm: sha256WithRSAEncryption
94:ad:86:e7:6c:3f:7f:30:eb:2e:b5:dc:01:72:3f:0c:f0:d7:
10:3a:ed:b8:37:06:6d:72:fb:3d:84:dd:7f:5c:3f:6e:d7:b5:
a9:a4:db:c4:b5:c3:fc:4f:8b:2d:dd:27:26:97:1e:f9:a3:94:
77:d2:72:17:7f:46:77:b0:56:3d:a5:be:53:e4:20:3f:a5:29:
55:e9:8f:62:a1:0f:9a:aa:31:cc:1c:fc:ec:86:b8:2c:24:4c:
6e:9b:5d:17:8c:1e:f5:d7:37:2b:6b:e2:35:7d:09:4b:cb:06:
40:a1:0d:97:12:40:1c:d8:a9:9a:e8:71:fa:3a:94:3a:42:26:
fd:d4:19:7b:c3:a9:52:a6:67:51:62:84:4a:e1:f9:01:ba:5a:
4f:22:49:c5:30:e4:54:cf:d1:98:3a:1f:bd:fd:a5:d5:8d:37:
33:f7:90:5c:06:58:fe:6c:3e:48:a5:ca:74:45:e1:48:f7:8c:
f3:b8:dc:1c:c5:40:50:71:ab:71:98:47:70:bb:a8:57:70:12:
36:03:12:f0:88:40:19:12:37:af:74:2b:8f:1b:15:5b:dc:22:
48:43:b4:c7:91:27:b8:67:6b:d5:d7:c9:d1:25:21:5e:21:20:
74:b5:15:1d:e3:3b:d1:0a:f6:71:17:c7:99:64:b0:86:8a:0b:
af:80:60:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:58 2024 by rpki-client on console-ams.rpki-client.org