Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/8VSoz3AOYGGkBLrDjYmZXXZNp3k.roa
File: 8VSoz3AOYGGkBLrDjYmZXXZNp3k.roa (raw, json)
Hash identifier: IkH6Sn/q3iRQbuJW0ZZyW3bhsPg00ybi/OlDfmVe8PQ=
Subject key identifier: F1:54:A8:CF:70:0E:60:61:A4:04:BA:C3:8D:89:99:5D:76:4D:A7:79
Certificate issuer: /CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Certificate serial: 01857102E53D9B64A02C6E4BE41C62B23B84
Authority key identifier: 5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/8VSoz3AOYGGkBLrDjYmZXXZNp3k.roa
Signing time: Mon 02 Jan 2023 05:44:53 +0000
ROA not before: Mon 02 Jan 2023 05:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206638
IP address blocks: 91.211.90.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:e5:3d:9b:64:a0:2c:6e:4b:e4:1c:62:b2:3b:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e6140f17312784ef62ae3be030c0c2cc661a702
Validity
Not Before: Jan 2 05:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f154a8cf700e6061a404bac38d89995d764da779
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1a:8a:b1:2b:69:5e:60:57:be:b7:66:5f:a4:
0a:ea:2e:c6:d8:77:27:13:90:4d:d0:20:d9:8c:93:
9e:2d:f1:73:ef:f6:93:75:1d:3c:ec:c7:81:1b:27:
b7:ae:3e:d3:d2:d5:58:5d:dc:14:e3:59:ab:3d:27:
64:b8:09:91:9d:97:6f:c5:e8:3b:c6:cc:db:c7:75:
25:5e:c4:16:25:1c:68:bb:bb:d9:27:d1:3d:13:9d:
d3:d3:92:d4:c5:9e:13:6c:d1:f2:da:7a:57:87:e8:
40:b0:8b:35:ac:11:14:3f:35:84:66:f3:ba:32:84:
f2:ed:8c:f0:13:fc:04:cd:a2:38:cc:19:a0:a5:0a:
21:a7:e3:b5:ef:cd:f9:b8:14:2d:4e:ad:5a:0f:9f:
c7:b4:ef:18:63:ba:b2:77:8a:89:63:5a:94:f0:2b:
58:f0:1f:11:a0:bf:80:d6:8c:b1:31:80:4d:e1:0c:
fb:3b:3e:c1:15:7b:c2:b8:2b:87:af:ac:c1:e4:f8:
ed:fc:8f:42:01:0c:4a:ac:cc:b6:a1:17:79:40:cf:
3a:38:5b:1c:51:64:c0:21:ca:2b:1c:af:81:9a:e9:
4b:86:d2:a7:d1:70:01:54:67:f1:b0:32:b8:f6:47:
43:11:43:87:ec:c5:74:dd:42:aa:51:c8:fe:62:bc:
9f:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:54:A8:CF:70:0E:60:61:A4:04:BA:C3:8D:89:99:5D:76:4D:A7:79
X509v3 Authority Key Identifier:
keyid:5E:61:40:F1:73:12:78:4E:F6:2A:E3:BE:03:0C:0C:2C:C6:61:A7:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XmFA8XMSeE72KuO-AwwMLMZhpwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/8VSoz3AOYGGkBLrDjYmZXXZNp3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/c4ce32-c220-40c9-8be8-0dbcba275417/1/XmFA8XMSeE72KuO-AwwMLMZhpwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.90.0/24
Signature Algorithm: sha256WithRSAEncryption
36:24:5f:60:5d:e2:b0:d8:70:19:b3:93:01:06:10:58:35:d2:
38:85:30:b2:4b:aa:af:c6:7c:5b:6c:74:8d:3a:9c:15:bc:5d:
69:8c:bb:8e:3b:e5:ec:f3:65:1a:71:bb:f3:48:17:ac:cb:23:
f8:72:b8:c9:93:c7:26:c0:d0:86:98:9b:1f:18:fb:6d:28:eb:
f3:de:40:2b:7d:3d:1e:65:1d:0d:3f:fb:eb:af:55:1b:56:a4:
f8:7f:fe:81:81:32:d4:35:9a:aa:23:eb:2a:9f:9b:c2:2e:de:
09:7a:2b:20:8e:e5:0f:66:93:55:10:10:a7:c0:91:84:b7:08:
0d:cf:26:c3:98:77:fd:91:63:2c:cb:a3:28:67:06:ce:0e:c7:
80:54:d0:bb:81:13:05:88:4b:9e:2d:00:06:7f:ff:f2:fe:7b:
58:fc:de:02:28:2d:ca:ec:3e:29:6f:07:a2:9f:d8:cb:46:0d:
11:73:f4:2e:51:0d:5f:58:6a:30:b7:62:7c:4d:5a:53:2f:a0:
03:a1:12:90:1a:2a:34:97:41:1e:c2:32:4f:87:55:04:60:2a:
39:ed:cd:5f:17:3e:ac:dc:2e:22:72:e7:78:59:f9:8e:62:f1:
8d:67:76:e2:9a:b2:f7:8f:cb:3a:fc:43:c8:75:fd:d2:f3:42:
42:66:18:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:45 2023 by rpki-client on console-fra.rpki-client.org