Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/58e8f8-1b27-41a4-92ab-fe8484f7079d/1/8fxt16zwJ3frly_FCOaKcCSkQNE.roa
File: 8fxt16zwJ3frly_FCOaKcCSkQNE.roa (raw, json)
Hash identifier: TgCfWnuYWLgtgaob8barBoMgwnBwEZMpS3Iymqhxyis=
Subject key identifier: F1:FC:6D:D7:AC:F0:27:77:EB:97:2F:C5:08:E6:8A:70:24:A4:40:D1
Certificate issuer: /CN=0d32172261c9509e57352137ba0192a8486b6fdd
Certificate serial: 018AF5A4D12A1C2DB09BF714C690AA74D892
Authority key identifier: 0D:32:17:22:61:C9:50:9E:57:35:21:37:BA:01:92:A8:48:6B:6F:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DTIXImHJUJ5XNSE3ugGSqEhrb90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/58e8f8-1b27-41a4-92ab-fe8484f7079d/1/8fxt16zwJ3frly_FCOaKcCSkQNE.roa
Signing time: Tue 03 Oct 2023 13:05:33 +0000
ROA not before: Tue 03 Oct 2023 13:05:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212552
IP address blocks: 91.216.104.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 12:29:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:a4:d1:2a:1c:2d:b0:9b:f7:14:c6:90:aa:74:d8:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d32172261c9509e57352137ba0192a8486b6fdd
Validity
Not Before: Oct 3 13:05:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f1fc6dd7acf02777eb972fc508e68a7024a440d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:6e:e7:7c:f7:95:f5:3b:e7:d5:96:5b:b5:0e:
4d:7a:dd:d7:2b:10:9d:ba:be:77:e9:76:3c:fc:c3:
6a:24:ca:25:1b:f6:48:b9:13:26:36:6f:f5:03:6b:
46:ac:fb:ab:1f:cd:79:4e:2b:df:9d:40:11:4e:0d:
a2:12:b1:50:15:70:45:30:c6:21:ca:59:38:fd:59:
59:69:8f:d7:37:1a:68:ea:71:6d:e4:18:ed:b9:d6:
9f:63:a6:83:54:92:84:dd:10:39:84:16:45:f1:a1:
03:05:89:b8:fb:67:08:ee:b6:db:70:5b:4a:25:8b:
b1:aa:d9:ff:ad:08:e8:b9:59:38:81:1e:fd:b4:ca:
fa:22:c0:56:f6:29:f3:95:44:25:0f:a0:13:21:25:
64:d5:68:ff:53:ae:20:79:bf:37:53:5c:eb:77:3c:
32:b8:5e:0f:7f:b6:26:da:f7:4c:96:d5:e8:89:b6:
b2:2d:84:b1:db:50:fd:76:af:b5:50:9f:60:41:75:
8c:f4:b8:9d:fc:69:96:a0:38:10:24:de:dd:f8:4b:
3a:21:90:60:f5:0b:28:c8:69:6a:a8:8e:a5:e9:8b:
cb:bd:be:2e:a7:1d:90:a0:95:d7:3c:cf:11:32:22:
4f:81:aa:78:8c:79:bb:28:ca:d0:f5:85:e6:2a:2b:
96:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:FC:6D:D7:AC:F0:27:77:EB:97:2F:C5:08:E6:8A:70:24:A4:40:D1
X509v3 Authority Key Identifier:
keyid:0D:32:17:22:61:C9:50:9E:57:35:21:37:BA:01:92:A8:48:6B:6F:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DTIXImHJUJ5XNSE3ugGSqEhrb90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/58e8f8-1b27-41a4-92ab-fe8484f7079d/1/8fxt16zwJ3frly_FCOaKcCSkQNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/58e8f8-1b27-41a4-92ab-fe8484f7079d/1/DTIXImHJUJ5XNSE3ugGSqEhrb90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.104.0/24
Signature Algorithm: sha256WithRSAEncryption
93:d7:e2:d1:22:6e:bd:6c:26:ad:82:9c:8d:7e:b5:99:a4:d0:
05:ab:ba:12:47:9b:f3:8b:58:ff:36:b3:4e:d2:30:60:9a:97:
8e:f9:29:da:28:15:cc:8f:40:5e:0c:c0:08:26:bb:a4:94:b4:
d9:27:d3:14:ac:b3:ba:b2:3b:5a:65:3a:a0:60:f0:7d:84:47:
28:c0:39:84:c1:e2:29:08:de:1b:8d:f4:15:31:eb:e9:c6:eb:
1b:f8:4f:06:7c:27:fa:a1:f9:a8:64:df:05:ae:c1:fd:2b:76:
a3:86:5b:c4:86:a8:a8:cd:19:88:77:f3:5a:cb:a6:1c:27:4e:
2f:94:e6:f2:49:88:93:02:77:f1:f4:ce:84:8a:b4:15:0d:b5:
98:d6:95:71:96:f3:e7:8b:da:6a:2b:b1:ae:f6:4d:97:46:67:
b3:58:22:b1:2f:67:ba:80:84:29:86:23:1f:a5:7a:44:f8:86:
da:14:4f:ec:71:28:8b:c6:00:b8:d9:f0:d0:5f:0b:79:fb:54:
67:18:1c:da:c1:d5:f8:33:4f:0f:54:3f:53:8a:76:46:2e:61:
35:04:67:66:c1:af:2b:f9:d9:2f:a5:37:5d:c6:6d:d5:9a:0d:
f9:c0:34:bb:24:d8:04:43:f8:21:33:29:37:c1:1a:c4:0d:c6:
a1:39:80:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:40 2024 by rpki-client on console-fra.rpki-client.org