Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/YC6Sz0oLwIztuKY3i_ROq0-siDQ.roa
File: YC6Sz0oLwIztuKY3i_ROq0-siDQ.roa (raw, json)
Hash identifier: r1yGR8JI8PwbHftQCjfLf9d4icjX9lnK0gC/Pew7SX8=
Subject key identifier: 60:2E:92:CF:4A:0B:C0:8C:ED:B8:A6:37:8B:F4:4E:AB:4F:AC:88:34
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 01936910D327E9DA073B110A80EA36C8BD65
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/YC6Sz0oLwIztuKY3i_ROq0-siDQ.roa
Signing time: Tue 26 Nov 2024 15:22:10 +0000
ROA not before: Tue 26 Nov 2024 15:22:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40065
IP address blocks: 91.217.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:10:d3:27:e9:da:07:3b:11:0a:80:ea:36:c8:bd:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Nov 26 15:22:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=602e92cf4a0bc08cedb8a6378bf44eab4fac8834
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:91:94:92:f0:a2:2e:e5:b6:df:d2:e3:95:70:
95:72:73:b3:f8:a9:6f:88:79:c4:2b:9e:20:fd:81:
28:e6:d0:c7:0e:e4:a9:6f:99:77:a3:22:bb:2d:4f:
1a:04:4e:c8:f9:9a:79:35:5f:76:99:6d:7a:b8:8f:
eb:5a:7b:7a:f1:3e:6f:9e:90:81:c8:41:8a:0a:4b:
ad:ae:04:38:66:67:3e:02:a5:8c:3c:cd:99:d5:af:
46:25:c4:62:ab:57:89:8f:e3:a8:0d:3d:ab:20:89:
8b:85:5b:fe:6e:10:33:5a:11:8f:d9:cc:eb:3f:a5:
1f:29:f1:93:29:8c:9b:87:34:73:21:75:07:80:80:
2c:9e:57:b8:fa:23:f3:ba:7d:e6:ef:d1:fe:a9:9e:
00:b8:a8:d0:2a:8b:75:c0:5d:b5:7f:04:1c:87:a2:
8c:3d:d3:de:ad:3b:42:a7:86:ea:9b:56:5b:c1:81:
3d:5f:2a:bc:2d:03:3f:57:0e:e7:e0:74:6c:30:cf:
02:ed:20:41:d9:b3:93:4b:16:9d:0e:25:18:a5:82:
a0:26:2b:71:99:8b:06:5e:fe:36:37:02:54:cc:db:
d1:b6:39:0c:27:7e:54:fa:c4:b7:f6:a7:ad:eb:55:
fb:a4:57:8d:29:2d:8a:d2:3c:9e:a1:28:39:58:e3:
13:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:2E:92:CF:4A:0B:C0:8C:ED:B8:A6:37:8B:F4:4E:AB:4F:AC:88:34
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/YC6Sz0oLwIztuKY3i_ROq0-siDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.139.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:7a:08:51:ab:26:b9:fc:fc:13:b2:2a:96:9c:9a:61:c5:28:
14:60:11:c3:02:8d:81:06:bb:1a:20:87:3b:5f:a2:38:4b:69:
57:61:b6:85:ab:ee:64:c2:f0:01:3d:f6:9a:d9:c5:6c:d1:a1:
3f:18:90:77:75:3c:17:a0:91:d5:56:7b:82:f0:18:5b:4a:60:
ad:7f:06:0e:9a:2f:b6:33:f2:a9:6c:33:cf:68:95:5a:25:fd:
74:07:b1:88:1d:ea:26:77:f4:bf:46:4f:94:db:3b:4e:ef:71:
06:e1:a0:2d:6d:65:9b:d1:57:87:f6:e6:a9:65:ba:00:32:74:
e9:de:3e:01:fb:99:e6:10:78:52:80:b3:2a:f3:af:6c:ec:a6:
8b:58:4c:4d:1f:2e:37:ea:b7:e9:db:bb:f3:82:60:55:7f:aa:
7e:8c:69:b3:f0:d8:0d:9f:09:fe:61:36:77:01:6a:9b:ef:7c:
c7:f6:26:9e:cc:a9:64:72:7f:ba:7b:68:af:2b:f4:0c:52:c9:
cb:3f:ae:16:a4:2a:2b:3f:38:8f:d2:02:9b:cc:bd:b3:a3:0d:
71:78:a0:62:53:01:7e:16:a4:9d:47:3f:50:c9:82:ab:45:e8:
a3:58:9c:bb:0f:90:8d:50:0d:d4:48:79:79:a1:49:b9:c0:d1:
5c:f9:12:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:16:55 2025 by rpki-client