Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/etHiUSZHacZa8NV749WHozh7Pe0.roa
File: etHiUSZHacZa8NV749WHozh7Pe0.roa (raw, json)
Hash identifier: XRvSQ5+kc7JC9WOM5N039BR2gtr/UW+ZTZ0KgNLoIpc=
Subject key identifier: 7A:D1:E2:51:26:47:69:C6:5A:F0:D5:7B:E3:D5:87:A3:38:7B:3D:ED
Certificate issuer: /CN=480b4e6530f58db338e41d434e5c248eb8b49eb5
Certificate serial: 018A5CB95646C31DE9F44E1FE96CF7731B46
Authority key identifier: 48:0B:4E:65:30:F5:8D:B3:38:E4:1D:43:4E:5C:24:8E:B8:B4:9E:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SAtOZTD1jbM45B1DTlwkjri0nrU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/etHiUSZHacZa8NV749WHozh7Pe0.roa
Signing time: Sun 03 Sep 2023 20:26:04 +0000
ROA not before: Sun 03 Sep 2023 20:26:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48674
IP address blocks: 91.211.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:5c:b9:56:46:c3:1d:e9:f4:4e:1f:e9:6c:f7:73:1b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=480b4e6530f58db338e41d434e5c248eb8b49eb5
Validity
Not Before: Sep 3 20:26:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7ad1e251264769c65af0d57be3d587a3387b3ded
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a7:c3:d4:e9:ca:ca:2d:50:43:b8:3d:60:ee:
ff:15:cb:c2:d6:d0:80:db:9f:e0:3e:81:24:45:71:
91:23:c4:9c:1e:bd:d0:49:49:27:8b:26:51:80:0a:
f8:6b:d8:8b:29:94:5e:8b:fa:3e:2e:08:f7:8f:e6:
3f:e6:7b:e8:20:cd:d9:92:b6:da:1e:9c:88:19:fe:
6d:20:d9:c7:9a:47:c3:b6:16:0e:13:e9:b0:06:c5:
19:8a:f6:af:7f:9f:27:01:7b:d1:b6:18:c2:23:a2:
a7:11:05:e6:d3:61:04:4a:fa:a5:d8:03:04:d9:86:
c4:4a:fb:30:51:81:53:2c:32:a7:54:92:16:4b:9f:
ef:cb:6d:b7:f0:3c:cd:e2:11:c2:7c:2e:10:47:c4:
91:96:c3:43:57:13:d8:2e:9c:75:23:c1:f7:26:4b:
ac:0a:75:77:c3:5d:b4:b3:5d:df:f3:1c:4a:2a:c5:
76:09:d3:e9:6d:52:1f:eb:cb:df:d9:83:71:86:64:
a9:9c:ba:8c:21:54:2c:a2:24:cd:a2:d6:dd:95:91:
da:fe:2b:8b:79:db:4c:28:ae:57:39:00:4f:c7:a6:
03:63:55:e7:d8:15:02:66:c8:73:ee:7b:d3:44:fd:
f6:0b:df:4a:71:22:ed:bc:0d:c4:4b:c3:a6:09:9b:
0c:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:D1:E2:51:26:47:69:C6:5A:F0:D5:7B:E3:D5:87:A3:38:7B:3D:ED
X509v3 Authority Key Identifier:
keyid:48:0B:4E:65:30:F5:8D:B3:38:E4:1D:43:4E:5C:24:8E:B8:B4:9E:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SAtOZTD1jbM45B1DTlwkjri0nrU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/etHiUSZHacZa8NV749WHozh7Pe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/2a72ee-ec1f-40c6-ad9d-5a4df896fc3e/1/SAtOZTD1jbM45B1DTlwkjri0nrU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.176.0/24
Signature Algorithm: sha256WithRSAEncryption
27:6b:3c:d2:cc:38:bd:17:33:62:cc:27:5b:c6:0e:e3:a9:80:
2d:d6:c6:c6:e2:6e:51:a6:4a:e1:db:44:94:ea:73:9c:5c:8a:
cf:44:ad:30:ed:1c:f6:62:ad:91:e1:1b:83:fa:3b:98:f8:47:
15:f6:a9:4d:1b:94:1c:80:f4:f8:d9:c2:49:71:6d:ee:92:9a:
52:50:3a:bf:e9:82:38:35:4d:c3:0d:ec:70:fa:be:ed:da:80:
ab:66:71:b0:ac:20:f3:ee:ec:b2:8b:3e:04:f4:ab:c7:c1:99:
c0:a6:9f:96:7c:82:11:a6:a7:97:3c:74:2f:21:a8:67:1a:c6:
db:50:ff:a4:32:c7:2b:ed:96:a0:d2:40:2c:fd:87:f5:ea:04:
d3:02:ba:f3:60:06:11:5b:44:d6:49:54:c0:2d:05:be:9d:33:
14:c8:7a:8f:5c:6a:10:dc:20:6b:ff:a0:32:a9:fb:bb:94:5e:
46:b6:a0:72:5e:b8:5c:e2:19:8e:ac:75:c3:4e:2e:ca:f1:2e:
1f:14:fb:ce:37:a6:bf:4b:ae:5b:3c:30:6d:48:53:fc:b8:76:
31:e4:9c:7f:e9:14:e0:d6:52:bc:1a:63:68:0b:d9:94:7f:2e:
d7:da:43:1c:2e:b4:2a:ca:b0:ff:1a:41:ab:cc:f8:4d:a7:2c:
5b:db:0c:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:39:01 2024 by rpki-client on console-fra.rpki-client.org