Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/pYJKpsfhT7fUe4MvoZj7VvNwzNA.roa
File: pYJKpsfhT7fUe4MvoZj7VvNwzNA.roa (raw, json)
Hash identifier: QnFIV0/5gV0Eyd7FCtEbDnifdzHey8DcSv9dRLTI8sU=
Subject key identifier: A5:82:4A:A6:C7:E1:4F:B7:D4:7B:83:2F:A1:98:FB:56:F3:70:CC:D0
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 018F32ADE62BAB41D104AAE1D0638A0464E5
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/pYJKpsfhT7fUe4MvoZj7VvNwzNA.roa
Signing time: Wed 01 May 2024 05:43:28 +0000
ROA not before: Wed 01 May 2024 05:43:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 263759
IP address blocks: 185.91.206.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 01 May 2024 06:22:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:32:ad:e6:2b:ab:41:d1:04:aa:e1:d0:63:8a:04:64:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: May 1 05:43:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a5824aa6c7e14fb7d47b832fa198fb56f370ccd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2d:08:ac:5c:6c:0a:96:db:ba:48:ed:89:37:
42:98:d3:2e:03:14:21:72:33:6d:f6:0a:38:bc:55:
5a:04:9c:79:b8:9f:a3:5c:86:0d:c2:9f:0e:f7:62:
a6:99:4b:de:5a:2a:4a:91:04:35:43:28:35:b1:fc:
54:53:af:94:04:60:83:9d:6d:26:38:ba:4d:32:cb:
25:70:74:fb:a3:49:98:94:18:2f:97:30:02:29:af:
66:3e:c1:85:db:e4:60:01:7e:d5:a4:c5:38:36:fd:
a2:a4:89:ba:f7:0b:62:5c:82:8a:38:f9:32:15:6d:
03:55:dc:04:9d:1b:ea:61:3e:5e:1a:de:ce:c5:cf:
d0:ea:7b:d9:00:a2:94:a8:42:c3:1b:0d:a0:5d:6e:
bd:b2:e3:2d:bf:ee:d9:07:a9:c3:58:64:15:bc:57:
54:d8:74:c5:50:10:3b:e5:1d:a7:ef:da:56:00:73:
a5:4c:64:72:da:16:1f:9e:78:25:9e:1a:82:48:7e:
ed:d2:46:ea:95:c0:8a:4d:11:9f:16:6a:ca:45:e6:
bb:32:7d:63:2f:43:a7:a4:fa:fb:0e:73:be:25:9f:
0d:7b:00:a6:13:0c:43:4b:7c:8a:a1:8b:ca:e6:1d:
7f:37:b4:c4:f5:44:96:35:41:3a:b4:f7:5e:5f:bc:
dd:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:82:4A:A6:C7:E1:4F:B7:D4:7B:83:2F:A1:98:FB:56:F3:70:CC:D0
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/pYJKpsfhT7fUe4MvoZj7VvNwzNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.206.0/23
Signature Algorithm: sha256WithRSAEncryption
31:d7:7b:13:d5:bb:69:a3:b6:2c:b7:9e:05:ca:52:7a:27:1c:
08:87:9e:9c:39:b1:36:17:d7:c1:6a:fc:5c:31:03:20:dc:1b:
31:f4:24:c0:dd:63:cd:16:37:0e:97:9c:ec:ff:aa:43:9e:68:
94:be:af:d2:28:42:f3:0d:6c:71:ac:7e:ef:b4:d3:33:47:8c:
cb:59:2b:26:da:68:9e:f5:dc:0f:d9:89:68:f1:80:55:8a:cc:
e1:ec:9d:82:b8:a7:11:48:5b:8c:a4:bc:e2:71:eb:ab:40:39:
71:e4:a5:c1:f0:b7:9d:24:dd:13:fb:c1:42:b2:ed:b3:07:e5:
99:5e:95:94:1e:c2:1a:33:5c:ad:43:14:c8:ae:fe:09:3e:3f:
40:45:1c:11:99:ec:d7:ad:79:ca:f2:f5:24:52:98:3a:00:50:
6f:1e:d7:fb:b0:9a:f6:6d:8f:a9:20:31:08:12:2f:e9:9d:0a:
c1:96:fc:78:10:96:74:e2:af:78:65:be:56:29:89:8e:e8:b6:
c1:5a:ba:54:7d:03:55:e9:33:1b:67:13:52:e9:97:0a:d3:d2:
de:08:21:0e:51:4b:1f:3e:0e:8d:97:24:e1:2c:3a:81:21:4b:
21:82:90:e2:35:aa:ca:dd:a0:d3:0e:1d:0c:62:39:0f:fd:65:
60:81:64:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:47 2024 by rpki-client on console-ams.rpki-client.org