Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/b5c810-9109-4729-b41d-b491f5b39ef2/1/Xoy5F-YtavUvuv1GD1T5S8qFk6s.roa
File: Xoy5F-YtavUvuv1GD1T5S8qFk6s.roa (raw, json)
Hash identifier: yc08UgN0fbnwTuNkls+j7zgaItth4iHbmhFVhWVjbjY=
Subject key identifier: 5E:8C:B9:17:E6:2D:6A:F5:2F:BA:FD:46:0F:54:F9:4B:CA:85:93:AB
Certificate issuer: /CN=bfd76a7458b19d165f32f0ec33d71569e5f4fef9
Certificate serial: 018FECF40B63F3BF6FCA1AD396BECE901961
Authority key identifier: BF:D7:6A:74:58:B1:9D:16:5F:32:F0:EC:33:D7:15:69:E5:F4:FE:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v9dqdFixnRZfMvDsM9cVaeX0_vk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/b5c810-9109-4729-b41d-b491f5b39ef2/1/Xoy5F-YtavUvuv1GD1T5S8qFk6s.roa
Signing time: Thu 06 Jun 2024 09:49:27 +0000
ROA not before: Thu 06 Jun 2024 09:49:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 91.227.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 19 Jun 2024 20:55:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:ec:f4:0b:63:f3:bf:6f:ca:1a:d3:96:be:ce:90:19:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfd76a7458b19d165f32f0ec33d71569e5f4fef9
Validity
Not Before: Jun 6 09:49:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e8cb917e62d6af52fbafd460f54f94bca8593ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d3:8f:57:28:a0:24:1b:89:77:d1:ea:7b:88:
6c:68:eb:d9:91:a9:9f:b5:4d:91:a4:7d:7f:db:e6:
0c:d9:54:7e:3b:f9:7a:26:72:11:20:45:ac:0b:4a:
4a:0e:df:e5:f0:a7:f8:47:c9:d4:2d:b3:e0:08:d7:
4b:79:b0:59:5e:2a:38:78:54:fa:b1:a6:9e:f7:51:
e6:15:3a:9a:cf:01:d9:71:a3:6c:78:e2:46:cd:dd:
8a:0d:06:25:fd:c7:cd:65:c2:ec:b5:ba:d6:ef:70:
7a:78:47:b7:8e:f3:a1:ac:ff:33:99:b6:fc:73:9b:
48:63:d2:4d:f3:25:ef:d6:f7:ed:6c:db:49:a1:fa:
29:bb:e3:c8:32:5a:6d:b2:c1:77:c3:21:d2:e2:ff:
33:01:d5:81:c3:e2:aa:60:72:71:31:a3:63:e2:bc:
cb:25:c6:ab:a6:0a:3f:68:23:0d:45:7b:d4:64:1e:
62:f0:2e:e3:2d:1e:cb:60:9f:c4:e7:a5:fe:70:79:
66:68:00:83:fa:4f:0c:02:57:0d:d3:08:b4:da:d0:
4c:36:27:4b:75:18:68:8a:ee:b9:7a:e7:77:3d:22:
21:8f:e1:f6:41:55:89:69:9b:86:40:23:52:89:84:
2b:ca:f2:af:33:0e:54:8d:e3:ed:29:05:8b:0b:53:
fe:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:8C:B9:17:E6:2D:6A:F5:2F:BA:FD:46:0F:54:F9:4B:CA:85:93:AB
X509v3 Authority Key Identifier:
keyid:BF:D7:6A:74:58:B1:9D:16:5F:32:F0:EC:33:D7:15:69:E5:F4:FE:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v9dqdFixnRZfMvDsM9cVaeX0_vk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b5c810-9109-4729-b41d-b491f5b39ef2/1/Xoy5F-YtavUvuv1GD1T5S8qFk6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b5c810-9109-4729-b41d-b491f5b39ef2/1/v9dqdFixnRZfMvDsM9cVaeX0_vk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.186.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:a7:83:da:0e:9c:61:f1:ea:3f:ab:8a:a6:0d:e6:31:41:7c:
2d:eb:b4:76:bf:de:b1:b4:2d:e4:78:ca:13:21:e2:e6:48:7f:
cb:7e:74:f0:81:a9:ce:7a:43:e0:27:4d:98:1a:62:0a:ed:7e:
09:43:04:e7:48:0c:b5:bc:65:02:11:8c:2a:78:60:fe:be:b0:
44:19:74:2b:17:ce:7a:e3:a9:fa:9d:59:8d:ce:42:52:2e:27:
e9:45:3f:87:87:3a:ad:64:74:06:e9:3f:7e:c2:6e:bc:d7:09:
14:06:eb:36:08:6c:fa:97:39:69:e6:94:00:d6:89:48:b6:20:
03:d9:c5:e8:4f:4e:40:f8:2b:9e:c4:b5:3b:11:0e:17:ca:ef:
08:a6:4f:d5:c5:f3:45:ba:a2:6c:17:03:bf:bb:4e:1c:c8:e0:
08:54:32:c3:44:3c:29:f6:de:60:e0:e2:c5:47:54:7e:b7:9d:
41:8a:fe:2c:eb:27:34:20:d8:6f:1c:72:50:9b:ae:00:1b:33:
fd:96:3e:07:9f:5a:09:5f:02:c6:f9:42:9b:ba:dc:32:29:5b:
58:b1:21:4c:31:5b:54:45:47:ff:63:44:c3:ce:79:38:6c:80:
2e:97:e3:ce:56:24:45:2f:94:67:77:76:59:55:87:d5:d4:9e:
d8:f0:8e:b8
-----BEGIN CERTIFICATE-----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Generated at Thu Jun 20 00:31:54 2024 by rpki-client on console-fra.rpki-client.org