Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/dybaUnStKlHG1UaxivkIIvEkU8M.roa
File: dybaUnStKlHG1UaxivkIIvEkU8M.roa (raw, json)
Hash identifier: KfaofiMZNlWUmOnIbsyXSsdBtVPQzkJKFdTwJYijoW8=
Subject key identifier: 77:26:DA:52:74:AD:2A:51:C6:D5:46:B1:8A:F9:08:22:F1:24:53:C3
Certificate issuer: /CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12
Certificate serial: 01857270FAC7BAC5DB935AD4796AF3DAEE0E
Authority key identifier: 98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/dybaUnStKlHG1UaxivkIIvEkU8M.roa
Signing time: Mon 02 Jan 2023 12:24:44 +0000
ROA not before: Mon 02 Jan 2023 12:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2914
IP address blocks: 91.212.152.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:70:fa:c7:ba:c5:db:93:5a:d4:79:6a:f3:da:ee:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98fd440cbbb04b969b92bb6b39c0bbb41634cd12
Validity
Not Before: Jan 2 12:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7726da5274ad2a51c6d546b18af90822f12453c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:fe:5f:f9:36:85:97:a0:c7:54:4a:c5:74:85:
0e:13:64:8e:c1:68:f5:4e:da:85:e3:ad:f3:74:44:
f8:ea:83:f6:a6:37:08:aa:e8:bb:e4:b3:eb:41:dd:
3f:c9:61:2a:74:54:f7:e1:36:61:96:03:10:d9:5a:
09:a0:a2:bf:56:1e:fa:fc:dc:22:e5:c6:38:70:c3:
82:cc:69:e3:ea:85:97:01:be:58:26:68:6e:50:a6:
0b:6f:c3:03:d8:4c:71:29:b0:43:01:7e:be:1e:26:
e4:a2:89:bc:37:38:85:1d:85:84:d0:35:97:10:ce:
b7:b3:89:01:02:61:1c:6e:62:37:30:69:b4:91:10:
a0:3f:18:62:c3:ff:e2:26:15:6a:97:7b:da:ca:c4:
ec:d7:87:e8:e1:6e:b8:c8:40:b3:94:3d:d8:40:12:
f7:6a:4e:06:7e:db:4c:17:4c:3c:a8:d3:01:d8:41:
3f:3b:58:bb:f5:23:e6:fc:c9:71:98:73:59:9d:8f:
33:58:6f:2d:9c:5c:bd:2d:1b:15:61:79:20:be:41:
98:d5:e7:ef:d5:b6:84:78:88:d7:9e:e6:5a:2b:11:
bd:77:a8:91:10:d6:d8:d2:eb:65:72:e5:b4:26:58:
4d:3e:a8:b7:b3:af:e9:b4:d5:1c:21:5d:63:21:53:
73:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:26:DA:52:74:AD:2A:51:C6:D5:46:B1:8A:F9:08:22:F1:24:53:C3
X509v3 Authority Key Identifier:
keyid:98:FD:44:0C:BB:B0:4B:96:9B:92:BB:6B:39:C0:BB:B4:16:34:CD:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mP1EDLuwS5abkrtrOcC7tBY0zRI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/dybaUnStKlHG1UaxivkIIvEkU8M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/66908c-d5cb-47c8-bfce-c9c12b866078/1/mP1EDLuwS5abkrtrOcC7tBY0zRI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.152.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:8d:f6:12:eb:5e:c7:35:c3:1f:45:3d:ea:04:85:c4:78:80:
ac:e3:3c:2d:5f:25:85:e6:9b:8e:45:30:83:69:2b:14:57:86:
3e:03:c7:82:24:ec:3b:e2:0c:50:43:5b:c2:06:1a:8f:7e:03:
86:17:44:ca:b5:79:07:1e:75:03:1f:88:06:a9:ee:db:0e:f6:
20:3e:d4:f9:b8:b1:d1:7d:8c:aa:9e:43:ed:25:c4:90:1c:c9:
00:07:5f:56:ce:ad:94:45:13:65:88:c2:c9:e1:3f:f8:b0:d2:
35:cc:0a:3f:b5:6e:a1:a8:fa:a9:43:77:69:fc:1a:fa:d2:c1:
7b:90:68:5a:62:28:d9:10:42:81:f5:0c:87:36:79:83:0a:a4:
2f:3f:02:13:fa:93:15:3e:c3:ce:4f:c6:6b:81:49:ab:5d:cb:
a8:de:a0:2a:14:58:b9:fd:c7:05:3a:7e:1b:07:db:92:bd:38:
64:c6:f2:7d:28:ef:2e:ec:8b:ec:ea:80:9e:51:2a:dd:64:d1:
01:75:70:5b:bc:5c:42:43:ba:9a:ca:ec:5c:ef:b7:2a:bd:97:
a3:6f:05:c2:46:e1:70:ce:66:c0:1f:f5:7d:f0:8b:92:bf:cf:
d3:7f:23:82:f9:83:4f:78:ba:34:f0:62:08:e2:ba:df:05:23:
fe:7c:e2:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:30:16 2024 by rpki-client on console-ams.rpki-client.org