Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/aYEn85R-nYEDmzI_dKTL6iRxU4c.roa
File: aYEn85R-nYEDmzI_dKTL6iRxU4c.roa (raw, json)
Hash identifier: hf1T2ZG25Y/4iPY6Flrmt9lbZwTeEuYcROmzvdNyaBc=
Subject key identifier: 69:81:27:F3:94:7E:9D:81:03:9B:32:3F:74:A4:CB:EA:24:71:53:87
Certificate issuer: /CN=6dbd51576b4a93460a465af35e6bf550f5548894
Certificate serial: 01856D81ABAFA8BCA8347BC2B046EEC80480
Authority key identifier: 6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/aYEn85R-nYEDmzI_dKTL6iRxU4c.roa
Signing time: Sun 01 Jan 2023 13:24:52 +0000
ROA not before: Sun 01 Jan 2023 13:24:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39406
IP address blocks: 91.212.68.0/24 maxlen: 24
188.68.82.0/23 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 06:31:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:ab:af:a8:bc:a8:34:7b:c2:b0:46:ee:c8:04:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dbd51576b4a93460a465af35e6bf550f5548894
Validity
Not Before: Jan 1 13:24:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=698127f3947e9d81039b323f74a4cbea24715387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:34:db:24:3f:6d:db:b9:80:f8:34:25:12:69:
88:1f:33:b3:c0:95:88:22:6f:9e:a7:dc:75:c0:ee:
eb:03:74:67:af:8e:e0:2c:b9:6d:4b:1b:8e:39:92:
56:9b:04:82:b2:a2:1e:22:a6:1b:0b:5c:9f:74:2c:
a7:f1:38:09:d2:8b:4b:76:77:eb:92:15:3e:fe:ef:
89:32:a0:eb:3c:3d:1a:8e:95:a5:27:c9:8b:57:34:
ee:84:28:0e:e1:02:b1:7d:73:15:c2:af:c0:dc:4f:
a0:5c:fa:88:5a:28:66:3e:f4:9a:77:5a:be:c3:fe:
e8:17:60:0f:71:67:e6:f6:60:fa:b0:77:83:d3:e2:
c5:bf:42:84:55:bf:98:ec:2e:f9:f0:a2:20:0f:bd:
e4:8b:ff:4a:01:90:a3:7d:95:8c:30:18:2f:f7:a1:
15:1d:d5:9e:dc:be:c9:a5:6c:b2:66:cc:18:d4:67:
3c:f3:91:0f:50:cb:2d:6e:f0:bb:c8:4c:f4:c6:54:
4a:c5:d1:55:f5:8a:22:4d:42:36:f0:ca:2f:1f:f4:
46:9d:e6:5e:02:fd:09:2e:ec:78:b8:87:91:3f:ab:
6e:fc:e1:0a:30:51:a8:53:48:98:15:7e:b1:14:41:
45:38:14:86:5f:cb:31:16:1f:53:c0:0f:85:21:59:
a0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:81:27:F3:94:7E:9D:81:03:9B:32:3F:74:A4:CB:EA:24:71:53:87
X509v3 Authority Key Identifier:
keyid:6D:BD:51:57:6B:4A:93:46:0A:46:5A:F3:5E:6B:F5:50:F5:54:88:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/aYEn85R-nYEDmzI_dKTL6iRxU4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/8ff537-71e0-403b-979e-1ef7ef17fa43/1/bb1RV2tKk0YKRlrzXmv1UPVUiJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.68.0/24
188.68.82.0/23
Signature Algorithm: sha256WithRSAEncryption
14:60:5e:26:f7:c4:94:9d:51:06:c8:51:03:1c:19:95:39:d9:
81:20:dd:ac:f4:71:1f:f3:96:58:fd:75:54:31:e1:d9:f9:97:
6c:0c:c4:fe:f2:aa:fc:62:a2:bb:1c:47:92:71:fc:d2:be:01:
9b:26:61:6e:ad:27:2f:0a:1a:04:69:5c:13:12:34:e3:25:d4:
6e:e2:7e:fe:55:4d:08:a6:b0:59:75:df:94:3e:dc:46:5c:40:
8d:58:9f:70:3f:be:73:bc:65:a2:a0:b7:6e:45:a4:5b:67:f8:
48:4b:1d:02:d7:e2:b2:87:1b:4b:8d:65:b2:49:28:4b:b2:54:
1a:97:e6:66:b5:0f:4c:9f:c2:21:4f:c2:30:b6:73:ab:0b:0f:
ba:c2:bf:4f:97:01:54:25:95:8c:68:f2:20:62:ef:00:77:92:
f2:54:0b:89:5c:e5:55:3d:84:05:57:ab:31:98:d6:2a:12:f7:
36:91:ef:ec:0e:fd:fe:93:ca:85:76:b7:db:4d:f8:ad:93:1e:
d1:c9:f3:53:6f:50:ea:85:38:f6:a7:f4:69:fe:65:b4:4f:1a:
3c:d4:72:ea:e9:40:3a:88:79:89:59:97:6b:85:ff:a2:9a:c3:
80:9d:2b:36:54:68:a4:82:38:ff:1d:64:ff:ac:47:62:cf:29:
3b:03:5b:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:42 2024 by rpki-client on console-ams.rpki-client.org