Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/yzVAOenBm3FD-uXbk18yRhTGCRo.roa
File: yzVAOenBm3FD-uXbk18yRhTGCRo.roa (raw, json)
Hash identifier: oaekVDEG69tZGsMIr+HjzsSjJ2oMtE3stnoJNymumYM=
Subject key identifier: CB:35:40:39:E9:C1:9B:71:43:FA:E5:DB:93:5F:32:46:14:C6:09:1A
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 01880E8B9DE921CBC85E98DD5785E3B3F8BF
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/yzVAOenBm3FD-uXbk18yRhTGCRo.roa
Signing time: Fri 12 May 2023 06:00:10 +0000
ROA not before: Fri 12 May 2023 06:00:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200017
IP address blocks: 91.216.215.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0e:8b:9d:e9:21:cb:c8:5e:98:dd:57:85:e3:b3:f8:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 12 06:00:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cb354039e9c19b7143fae5db935f324614c6091a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c6:80:bc:a6:4f:9e:e4:b6:b0:da:8f:65:39:
57:57:50:e3:76:71:b6:99:c7:2b:7a:bf:5f:e5:24:
a7:9f:55:28:6d:41:25:ae:06:46:bf:61:9f:00:5d:
46:94:cb:15:43:ae:f0:b5:6b:96:57:b0:80:87:f3:
fe:0a:17:73:ed:f8:77:39:da:ce:c7:99:41:e6:48:
ce:e9:45:8b:56:f4:8f:0b:ff:d5:bf:5f:4f:a2:15:
e5:0e:b3:d3:6e:ac:90:45:bd:15:ab:22:51:5b:90:
65:7d:08:a8:34:6b:73:fb:80:5b:e2:2e:c3:2e:a2:
9b:67:4c:6f:02:ed:81:8f:aa:95:d0:5c:69:ba:df:
e4:06:2b:b1:b0:b1:ca:c1:d3:65:4b:db:78:25:96:
19:9e:37:84:13:d6:75:ee:b9:5e:fe:36:be:28:b5:
50:7d:61:1e:d9:4d:33:26:cf:e7:97:b2:00:0b:4a:
c3:4a:27:03:55:ba:d6:29:9f:82:cc:bb:80:ee:67:
af:4d:6c:82:cd:d4:42:9a:ed:18:29:0b:28:e9:62:
62:8e:02:37:15:f3:a1:83:f9:a6:d1:fd:0f:c0:e0:
18:fc:96:59:59:24:8f:c4:db:21:0b:3b:4a:59:95:
f2:5c:18:27:30:b0:6b:1c:c7:3f:3e:90:d5:0a:00:
50:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:35:40:39:E9:C1:9B:71:43:FA:E5:DB:93:5F:32:46:14:C6:09:1A
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/yzVAOenBm3FD-uXbk18yRhTGCRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.215.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:6b:72:b2:27:ea:a2:fd:28:c2:7f:7f:bc:e2:8f:4c:78:59:
93:ad:97:8a:a8:f2:ee:c4:8a:f9:65:ce:0f:26:af:e4:a8:43:
7f:99:4e:b5:7e:c9:09:ab:e1:1a:c2:6b:6b:b7:fd:71:cf:64:
4d:31:87:a8:d9:d4:21:76:4c:46:7f:d3:af:20:6f:dc:4b:b1:
d0:1d:53:cd:ad:81:9b:e3:b0:aa:c6:fd:8c:5c:7f:8a:75:41:
f9:d4:c7:80:b3:c7:89:b8:cf:b0:62:90:2c:4a:d5:da:ae:88:
a7:b1:4e:7f:94:28:f8:e3:69:36:dc:8e:92:d8:8e:36:23:b6:
dd:d5:01:c4:9e:36:a5:f3:e4:a1:ab:22:32:78:68:e3:5c:f5:
9c:e0:dc:fa:d6:77:b0:8b:12:f2:32:84:30:1e:71:3c:9d:6a:
47:74:43:f8:22:d0:ed:3c:91:f8:dc:d7:6c:4f:93:6c:9d:2a:
fd:e2:54:54:11:05:46:f7:5c:d0:a4:6e:39:77:18:0e:65:e0:
51:8e:04:3f:29:82:68:1e:11:d4:18:27:e4:77:13:ec:ad:02:
4b:39:fa:cd:65:47:68:63:bd:a3:80:e9:d7:35:84:8f:68:3c:
10:92:2a:f9:7d:54:9d:69:51:65:b1:e8:d3:21:48:f1:25:b8:
da:6d:83:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 15:15:04 2024 by rpki-client on console-fra.rpki-client.org