Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/vIVRN3yiU-pLiTdpvUCoj8N1D4U.roa
File: vIVRN3yiU-pLiTdpvUCoj8N1D4U.roa (raw, json)
Hash identifier: mpvsDQk1AR5nWN1povaAGij4jaGibY+fT5p9R2PvdaA=
Subject key identifier: BC:85:51:37:7C:A2:53:EA:4B:89:37:69:BD:40:A8:8F:C3:75:0F:85
Certificate issuer: /CN=d5ee40f4589d6a11b24f7bbcc29ab9f9ae689719
Certificate serial: 0185701EDF1B5AA94CC3C096D0DE0E910B4C
Authority key identifier: D5:EE:40:F4:58:9D:6A:11:B2:4F:7B:BC:C2:9A:B9:F9:AE:68:97:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1e5A9FidahGyT3u8wpq5-a5olxk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/vIVRN3yiU-pLiTdpvUCoj8N1D4U.roa
Signing time: Mon 02 Jan 2023 01:35:49 +0000
ROA not before: Mon 02 Jan 2023 01:35:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209014
IP address blocks: 91.196.155.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:1e:df:1b:5a:a9:4c:c3:c0:96:d0:de:0e:91:0b:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5ee40f4589d6a11b24f7bbcc29ab9f9ae689719
Validity
Not Before: Jan 2 01:35:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bc8551377ca253ea4b893769bd40a88fc3750f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:2e:d6:76:f8:96:08:92:44:87:1f:07:bb:bb:
e9:c8:8f:92:23:b2:8f:06:76:6c:dc:9c:5b:01:98:
09:a6:72:43:85:14:fa:7c:6f:37:dc:51:a5:b8:7e:
68:f8:4a:f9:1d:f2:73:3f:c6:11:f0:c3:a7:35:cf:
11:7a:83:d9:e9:ef:45:1d:01:f9:aa:53:c0:55:81:
72:1f:c1:fb:d0:f2:c3:bb:11:50:1f:9f:49:56:5a:
d9:4a:12:52:bc:4e:b8:d5:53:80:ab:3a:00:ac:3f:
d5:14:31:1a:0b:f1:9c:ed:f7:d7:0d:e9:3f:0b:c7:
39:bc:0c:b7:23:97:b3:7f:15:c9:38:c2:45:38:e1:
8a:ff:ad:91:4f:3c:49:75:48:e3:50:c3:c8:65:de:
ed:29:20:28:df:6a:8a:3e:0b:59:71:75:7a:18:5c:
a0:83:4e:13:a9:10:59:9e:cd:cd:4d:2a:fb:eb:56:
43:4b:52:a3:df:3f:15:27:f7:6f:e0:85:0c:df:3f:
8d:f7:0b:30:42:99:dd:34:f5:43:2d:09:3e:9a:f4:
05:0e:f7:79:44:46:03:07:89:9d:10:18:2c:47:a7:
75:bb:eb:64:42:43:25:04:a4:2f:d0:99:3e:47:98:
56:5a:d5:78:78:7b:33:f4:93:06:63:6b:f8:a6:8b:
fd:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:85:51:37:7C:A2:53:EA:4B:89:37:69:BD:40:A8:8F:C3:75:0F:85
X509v3 Authority Key Identifier:
keyid:D5:EE:40:F4:58:9D:6A:11:B2:4F:7B:BC:C2:9A:B9:F9:AE:68:97:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e5A9FidahGyT3u8wpq5-a5olxk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/vIVRN3yiU-pLiTdpvUCoj8N1D4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/8c1306-7805-417d-be63-9ea2a6fb6a81/1/1e5A9FidahGyT3u8wpq5-a5olxk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.155.0/24
Signature Algorithm: sha256WithRSAEncryption
40:b3:5c:8c:1a:b8:82:c0:b3:86:62:68:2d:45:77:f3:41:ae:
d7:13:97:5d:78:27:d0:cd:16:1e:76:fb:f2:56:1d:fa:6c:2a:
f4:d9:8e:e0:37:77:ca:d4:9b:44:69:2a:4a:de:0a:59:02:7d:
17:91:dc:75:db:c8:18:56:18:db:93:f4:31:a9:32:41:4a:5c:
6a:14:a3:a6:7c:67:c8:d3:de:3c:d7:47:f9:d1:2c:cf:68:32:
de:ee:54:8b:fe:de:49:5e:6e:a6:0e:f1:ff:13:be:92:34:94:
2b:52:a9:d3:4f:e9:2f:f3:f6:c7:c2:85:38:9d:40:99:4d:4c:
8d:21:7c:03:e0:4f:a8:2e:b4:85:ee:1b:09:a1:96:55:f8:f9:
6d:cb:b5:49:1f:c1:76:96:e5:65:d1:bf:c8:7c:be:42:7f:e5:
46:72:bc:16:3f:c9:cf:c5:49:15:ac:77:8b:b2:52:43:ef:1d:
92:6e:12:b5:89:7a:9f:88:a5:74:b2:bd:d6:96:b3:a0:6a:c8:
94:d1:93:ea:1f:ba:04:a7:56:52:08:1b:7f:74:7b:89:96:33:
a7:44:6f:97:be:2d:79:83:ee:8e:6d:b7:d1:36:05:36:c4:4d:
c6:a3:06:1e:be:b4:56:49:d5:0f:a7:8a:9c:fb:1a:ba:5a:af:
79:37:79:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:37:03 2024 by rpki-client on console-fra.rpki-client.org