Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/PyRWcDk6cYCzbrfpfzf33WvaS_s.roa
File: PyRWcDk6cYCzbrfpfzf33WvaS_s.roa (raw, json)
Hash identifier: AKgWY+yJ77JZ4qIPc4D3ORrvgifys5uAIB+d7cMf6aQ=
Subject key identifier: 3F:24:56:70:39:3A:71:80:B3:6E:B7:E9:7F:37:F7:DD:6B:DA:4B:FB
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 01877364A66DBAAA53BB064F6B6DBFC2E1B9
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/PyRWcDk6cYCzbrfpfzf33WvaS_s.roa
Signing time: Wed 12 Apr 2023 02:56:28 +0000
ROA not before: Wed 12 Apr 2023 02:56:28 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209181
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 14 Apr 2023 05:18:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:73:64:a6:6d:ba:aa:53:bb:06:4f:6b:6d:bf:c2:e1:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Apr 12 02:56:28 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f245670393a7180b36eb7e97f37f7dd6bda4bfb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:04:f8:2a:49:51:53:db:82:f2:4b:3e:e1:ce:
b7:0f:fd:60:e2:8a:2b:69:9a:bf:52:29:dc:ba:b2:
39:c7:7c:09:e5:58:e7:ff:78:f2:ca:3a:a1:15:37:
18:5c:e5:78:fb:81:7c:10:0c:01:5f:75:97:24:fb:
b3:f9:c4:54:07:7b:44:f7:ec:3d:2c:88:2e:b1:54:
2d:5b:73:83:48:8b:af:ea:66:f3:17:5c:55:41:26:
05:e2:7c:e3:ac:ff:9b:85:3f:58:9a:94:75:7a:f3:
48:1f:a2:b1:58:6c:4b:f3:30:54:22:b2:6e:43:59:
53:13:28:85:bf:b3:0b:39:9d:97:7f:2c:7c:99:19:
bb:3f:77:95:bd:79:db:78:f7:31:8f:30:14:8d:17:
a8:ed:e3:d9:ab:54:4f:32:d1:c6:27:ba:b7:02:e2:
31:59:22:84:32:95:eb:51:8a:f7:e4:1c:1c:89:fa:
9c:34:aa:7e:12:17:b5:37:4f:31:3a:80:b3:cd:4c:
17:14:ea:35:4a:b8:9d:bc:b7:cc:99:4a:e5:82:8a:
7a:a9:23:a9:b0:77:da:2d:76:cf:a9:fa:ac:80:43:
a7:c7:ff:50:c9:08:32:28:2f:74:c2:27:d7:cd:fd:
be:0e:b0:23:38:83:3e:5a:66:90:85:f4:25:9c:2e:
37:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:24:56:70:39:3A:71:80:B3:6E:B7:E9:7F:37:F7:DD:6B:DA:4B:FB
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/PyRWcDk6cYCzbrfpfzf33WvaS_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
84:ab:a3:9c:97:c0:4a:7b:2f:6a:22:b4:ed:3e:a3:7a:ea:16:
4d:f9:52:b3:19:65:ee:03:d9:97:1d:33:bc:d1:34:32:cd:de:
9a:ca:ee:02:9e:28:b6:ab:02:a7:f6:40:de:12:60:8a:fc:92:
6c:75:94:ae:39:eb:12:00:6f:5a:cd:58:bc:9b:89:45:a0:dc:
c4:d0:16:d9:3c:33:40:48:53:8b:f9:08:1b:12:55:04:d4:80:
a2:30:f9:7d:5f:19:bb:58:eb:3c:b8:4e:61:44:07:95:86:b2:
27:78:e6:83:df:4a:3b:26:6b:5d:69:aa:be:cd:78:7b:64:bc:
22:02:18:79:42:e3:c8:ce:49:9c:63:35:36:c8:a9:cf:0e:18:
38:8e:93:ee:5b:ce:d9:ff:55:a7:ee:e7:17:1a:e3:dc:d4:00:
54:e8:77:ea:c0:49:58:d2:66:43:f3:ad:07:2c:cc:00:64:76:
f0:bf:f8:80:6b:f7:95:84:32:9a:cb:c1:3e:eb:b0:e0:96:d7:
36:ea:f8:5f:77:f1:a8:60:e5:30:33:24:b7:ca:ef:92:d7:f6:
9d:67:81:36:f6:58:4d:6d:91:8f:f0:73:50:7e:1d:24:a6:b1:
85:3c:1f:5a:fd:e4:1c:c7:06:80:26:e8:b7:e5:65:ac:1d:ab:
a3:db:52:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:37 2024 by rpki-client on console-ams.rpki-client.org