Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/37a0af-c3f6-45d6-a144-a3d3dedb2608/1/a-8PFJ-zTYuLyl_HWgDKLGQ2Jv4.roa
File: a-8PFJ-zTYuLyl_HWgDKLGQ2Jv4.roa (raw, json)
Hash identifier: /LBeRApfjAI0ukp9S7qhcSaM+V4Yh20azFB/als70iY=
Subject key identifier: 6B:EF:0F:14:9F:B3:4D:8B:8B:CA:5F:C7:5A:00:CA:2C:64:36:26:FE
Certificate issuer: /CN=602d570b542e7302885d367418df802f99494f26
Certificate serial: 018C06451C9F4687BFD45355DBDD11494998
Authority key identifier: 60:2D:57:0B:54:2E:73:02:88:5D:36:74:18:DF:80:2F:99:49:4F:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YC1XC1QucwKIXTZ0GN-AL5lJTyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/37a0af-c3f6-45d6-a144-a3d3dedb2608/1/a-8PFJ-zTYuLyl_HWgDKLGQ2Jv4.roa
Signing time: Sat 25 Nov 2023 11:37:21 +0000
ROA not before: Sat 25 Nov 2023 11:37:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216131
IP address blocks: 91.223.116.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 04:29:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:06:45:1c:9f:46:87:bf:d4:53:55:db:dd:11:49:49:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=602d570b542e7302885d367418df802f99494f26
Validity
Not Before: Nov 25 11:37:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6bef0f149fb34d8b8bca5fc75a00ca2c643626fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d9:64:bc:78:f3:79:1e:b3:e4:19:2b:33:56:
20:57:7b:49:cc:8a:26:5b:7f:04:d4:c0:80:bf:53:
ad:2e:15:0c:eb:ab:b1:98:cd:62:76:7e:47:34:88:
5f:a1:6c:cb:45:94:ec:ec:60:75:3e:39:cd:b9:c4:
12:c0:81:1d:1b:cd:71:6b:59:02:af:02:42:f4:4e:
cc:2d:ea:b5:eb:61:0e:e9:91:cf:d7:a2:b9:de:a5:
03:88:d4:09:b9:f2:7f:fe:e2:ce:6b:5b:5c:f0:d5:
7f:6e:ca:67:3f:a2:0e:f7:c8:51:9b:77:bb:a2:f2:
60:01:53:d7:bf:7c:cb:56:5c:77:c2:85:02:71:b6:
0b:0f:59:93:b2:06:96:89:4b:e3:5b:e4:91:ca:54:
09:97:d0:f9:88:4d:fb:52:95:7f:45:ff:e1:67:04:
bb:2f:0e:0a:ae:9a:2d:e6:aa:14:a2:0a:ff:df:20:
bb:74:eb:71:fa:3c:85:ef:7a:49:ab:2c:05:75:6d:
6f:fe:d8:81:c4:f2:ef:37:1a:c1:d2:0e:0e:41:55:
27:f4:f2:58:0e:99:16:56:17:ac:ec:3b:33:99:4a:
15:4d:3c:be:a2:ff:1a:82:cc:ae:2d:8f:1b:c4:d3:
31:32:a8:82:7f:c9:02:76:e9:a1:d4:88:9a:af:12:
f3:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:EF:0F:14:9F:B3:4D:8B:8B:CA:5F:C7:5A:00:CA:2C:64:36:26:FE
X509v3 Authority Key Identifier:
keyid:60:2D:57:0B:54:2E:73:02:88:5D:36:74:18:DF:80:2F:99:49:4F:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YC1XC1QucwKIXTZ0GN-AL5lJTyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/37a0af-c3f6-45d6-a144-a3d3dedb2608/1/a-8PFJ-zTYuLyl_HWgDKLGQ2Jv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/37a0af-c3f6-45d6-a144-a3d3dedb2608/1/YC1XC1QucwKIXTZ0GN-AL5lJTyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.116.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:2b:b8:08:81:5d:d5:a9:ed:48:c1:a3:7d:f4:e8:80:f4:b8:
fa:ce:f8:f0:79:b6:bd:01:45:51:eb:93:5c:b5:6e:7a:34:61:
08:fe:0e:ae:65:85:7c:f6:66:60:29:83:11:24:4c:91:2f:a5:
da:76:ac:b7:fd:e0:03:7b:00:8b:57:96:6c:4a:49:ae:20:46:
b7:61:75:95:03:cb:7e:47:a4:c6:06:9b:aa:88:f2:81:91:5a:
b4:71:ca:46:d4:63:4e:30:d7:eb:7f:46:8d:a1:ad:52:f7:e9:
a5:08:e0:38:e5:cd:3d:af:cd:61:bb:b3:df:09:8e:66:0d:79:
b4:c4:e6:d7:b3:5e:6e:26:a6:02:ac:cc:e2:7d:01:1f:96:c1:
d4:59:2c:fa:fa:a7:0f:68:0e:a2:c7:a5:c7:d6:5b:77:5f:b7:
39:41:3e:57:80:9f:93:52:72:48:9c:49:85:4c:1e:db:80:9c:
71:4d:01:bd:bc:89:18:bc:5c:18:25:3e:f8:4f:d5:b6:4e:a5:
10:71:41:4e:c2:de:46:2e:2b:4a:0d:d3:8b:d1:d1:a2:41:b7:
07:c0:0d:25:45:27:59:b6:fb:c2:da:9d:ce:ab:65:d5:da:81:
d5:c2:75:54:2f:ec:f3:d5:56:38:36:8c:9f:be:62:d7:b1:6a:
80:d8:02:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:13 2024 by rpki-client on console-ams.rpki-client.org