Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/6Yr698gTp5WwKgldiddpf46-ICk.roa
File: 6Yr698gTp5WwKgldiddpf46-ICk.roa (raw, json)
Hash identifier: j28lLrh8b92R4ZuPAEKMqkjRWwfgUYulbzjO6lb6fvc=
Subject key identifier: E9:8A:FA:F7:C8:13:A7:95:B0:2A:09:5D:89:D7:69:7F:8E:BE:20:29
Certificate issuer: /CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Certificate serial: 018570CBF852A315FE020823661344D85AB0
Authority key identifier: 2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/6Yr698gTp5WwKgldiddpf46-ICk.roa
Signing time: Mon 02 Jan 2023 04:44:53 +0000
ROA not before: Mon 02 Jan 2023 04:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43477
IP address blocks: 91.198.173.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:cb:f8:52:a3:15:fe:02:08:23:66:13:44:d8:5a:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3d5db900e081b213ea1f071ec5c00347a6fd95
Validity
Not Before: Jan 2 04:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e98afaf7c813a795b02a095d89d7697f8ebe2029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:9f:3c:25:5a:d8:7a:96:67:ae:8a:9b:4f:71:
85:ec:6d:9e:af:e0:bb:a0:f1:0c:16:09:40:d0:2e:
84:73:2f:a3:4e:e3:76:9f:2b:e6:10:18:09:12:e5:
ac:81:fa:e8:2d:4f:51:7c:ed:eb:0d:e9:a2:79:5a:
64:ec:c8:7f:10:f4:82:d6:e4:bc:25:41:af:48:7c:
b5:8b:ea:51:2b:c4:7f:79:84:ef:17:95:39:10:f9:
36:a2:d0:a3:90:4c:c2:a8:96:1e:db:b4:4f:08:8b:
d8:2e:55:a1:90:1a:7c:9f:a6:ce:58:03:5d:e2:ba:
2f:ae:67:ba:5e:22:9b:aa:ad:3c:c4:48:90:bc:43:
5b:6e:94:1c:99:e7:11:72:99:d0:70:70:a7:66:e1:
0d:d0:7f:57:54:2f:4a:36:bf:7a:e1:ec:65:24:2c:
6e:4b:6e:09:dc:8f:e8:28:e6:cb:8c:68:ec:bc:28:
0e:1a:9f:72:d8:a4:00:1c:49:d0:f0:e2:f0:a2:94:
92:e4:c8:7c:44:a1:71:bd:9d:23:5c:3d:9b:2a:3b:
b9:17:56:bf:d6:ee:04:75:ae:20:61:4d:06:f7:ce:
b1:4a:10:fa:c4:e4:6c:3e:cd:78:02:e7:c0:3c:15:
f7:06:49:f2:65:ea:ef:eb:4e:d1:55:0f:51:5a:fc:
88:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:8A:FA:F7:C8:13:A7:95:B0:2A:09:5D:89:D7:69:7F:8E:BE:20:29
X509v3 Authority Key Identifier:
keyid:2B:3D:5D:B9:00:E0:81:B2:13:EA:1F:07:1E:C5:C0:03:47:A6:FD:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz1duQDggbIT6h8HHsXAA0em_ZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/6Yr698gTp5WwKgldiddpf46-ICk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/65f8e2-f4ed-424d-9b91-47dd0c04b550/1/Kz1duQDggbIT6h8HHsXAA0em_ZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.173.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:5d:dd:4a:5b:b1:09:e8:41:c0:1c:92:24:42:c5:be:c9:cc:
29:91:77:9b:55:0c:61:92:59:c9:60:ac:43:09:d8:a9:d4:1d:
6a:64:42:9b:5c:f5:c1:b3:bc:52:ab:36:b5:36:18:cc:e7:17:
e5:dc:b2:a5:06:52:3e:9e:b3:7d:3b:b5:92:cf:84:79:6f:35:
6d:35:b9:c7:fd:61:c0:95:37:0a:ef:b6:e5:c3:a2:44:68:2a:
83:9e:bc:97:cf:51:6e:14:3a:ef:b6:06:05:80:58:dc:29:17:
ae:4c:92:1e:49:46:11:d5:e2:3e:cd:ea:bc:c8:0c:60:a0:89:
b6:67:bb:46:a5:a6:a2:97:3e:21:6b:71:27:01:c1:38:3d:7c:
b2:45:b4:3d:65:20:a1:31:a2:e2:82:52:e0:60:ad:2e:ee:4f:
f7:c5:e0:db:ff:a0:42:80:96:45:3a:67:d9:3d:0c:7c:cc:bb:
38:83:9f:18:49:a8:14:c0:c0:33:c4:a8:28:1e:0d:40:55:2d:
17:3b:63:fb:63:3e:3f:f2:2b:e3:62:74:ee:75:a5:71:9b:e6:
d4:99:bc:f5:0f:d9:36:e0:06:4b:95:94:0c:e2:30:3b:d6:98:
7c:13:7b:d1:92:30:1a:89:19:95:f3:3f:31:85:9a:ba:3a:49:
0f:d8:92:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:01 2024 by rpki-client on console-fra.rpki-client.org