Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/96a6a8-fb81-4a0f-ab83-a299b022d84e/1/R3E_NyioxmSKUmdvXov-I4ScwuU.roa
File: R3E_NyioxmSKUmdvXov-I4ScwuU.roa (raw, json)
Hash identifier: wmz0ohSN7gVOdfbEfrtCtvrzzwXbjNhFJaXYsYehzKc=
Subject key identifier: 47:71:3F:37:28:A8:C6:64:8A:52:67:6F:5E:8B:FE:23:84:9C:C2:E5
Certificate issuer: /CN=2410e4d1182515c47df36a1001b7f681e2dcf414
Certificate serial: 01857355F00615B94A9CEAE05BBECF4F4E33
Authority key identifier: 24:10:E4:D1:18:25:15:C4:7D:F3:6A:10:01:B7:F6:81:E2:DC:F4:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JBDk0RglFcR982oQAbf2geLc9BQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/96a6a8-fb81-4a0f-ab83-a299b022d84e/1/R3E_NyioxmSKUmdvXov-I4ScwuU.roa
Signing time: Mon 02 Jan 2023 16:34:49 +0000
ROA not before: Mon 02 Jan 2023 16:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49591
IP address blocks: 91.213.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:33:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:f0:06:15:b9:4a:9c:ea:e0:5b:be:cf:4f:4e:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2410e4d1182515c47df36a1001b7f681e2dcf414
Validity
Not Before: Jan 2 16:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=47713f3728a8c6648a52676f5e8bfe23849cc2e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:41:03:c6:56:e0:f3:23:51:85:e7:1f:5f:80:
36:b0:6e:5b:d9:fb:ec:c8:96:35:8a:13:a7:e9:6c:
56:80:ce:ef:90:44:18:47:6a:2b:49:e6:83:67:2a:
ab:35:25:e4:ac:d0:95:2c:92:3c:56:1c:34:33:fb:
0d:da:25:42:70:28:d0:15:1b:55:7f:71:98:17:7a:
91:3d:5f:4a:72:cf:5b:08:28:24:6e:1f:0e:84:43:
74:5f:ff:1f:b6:16:f6:aa:6d:66:fb:07:08:d1:fe:
69:b5:83:ed:37:98:17:53:af:42:20:42:98:7d:2c:
84:bb:8b:38:64:1e:c7:92:a8:dd:c9:17:f7:47:be:
7c:13:20:60:91:56:52:1f:57:6c:25:13:22:9c:3f:
19:90:d0:fb:42:11:84:5d:cb:fb:16:0c:01:8e:e1:
80:a4:ae:52:7e:be:9c:31:12:27:d7:57:16:ae:a8:
2d:e8:53:22:0b:55:86:13:d5:84:91:67:18:a9:32:
63:26:f7:e6:78:49:c0:e1:f5:17:14:b4:81:6b:06:
41:38:b7:e0:6d:8f:15:4a:64:c7:57:88:41:ce:97:
e0:92:18:e8:8a:99:8b:a5:f6:77:26:6e:ff:99:c7:
29:1f:6b:cd:b1:9a:dc:9c:ba:fa:0e:4c:5a:4c:1d:
c2:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:71:3F:37:28:A8:C6:64:8A:52:67:6F:5E:8B:FE:23:84:9C:C2:E5
X509v3 Authority Key Identifier:
keyid:24:10:E4:D1:18:25:15:C4:7D:F3:6A:10:01:B7:F6:81:E2:DC:F4:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JBDk0RglFcR982oQAbf2geLc9BQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/96a6a8-fb81-4a0f-ab83-a299b022d84e/1/R3E_NyioxmSKUmdvXov-I4ScwuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/96a6a8-fb81-4a0f-ab83-a299b022d84e/1/JBDk0RglFcR982oQAbf2geLc9BQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.213.55.0/24
Signature Algorithm: sha256WithRSAEncryption
19:b3:0f:4b:b1:91:b3:05:ab:42:a9:6f:3e:16:7e:07:df:ce:
c7:0c:54:16:60:26:32:17:8d:ac:4c:67:d5:fe:c5:73:5a:fe:
51:25:f1:66:ee:36:e0:e7:44:b5:bb:77:cc:58:16:fa:b8:5f:
27:e5:b5:67:7d:69:ba:73:01:8a:a4:d4:0d:78:a4:c5:2b:a9:
ff:16:e6:72:61:66:a7:71:9c:ad:9e:72:af:8f:a6:6e:ef:1c:
b4:4a:7e:e7:b4:b9:5c:ed:d2:15:14:81:45:f9:61:cf:92:0a:
e9:7e:00:32:22:6c:28:88:b3:af:87:0b:ae:aa:89:05:da:0b:
da:5f:9d:8d:58:e0:13:db:86:74:8c:ac:0d:e8:16:92:3c:7c:
92:49:dd:ca:08:ba:f3:ba:95:88:8f:5b:d1:22:e3:29:e3:c5:
c8:0e:fc:6e:72:1e:83:dd:3c:83:fe:77:87:bd:c0:28:c5:10:
ff:bf:76:b1:77:aa:70:de:5a:5e:f2:e4:29:6a:b4:63:a1:02:
69:e6:b5:63:85:aa:cb:de:cb:f3:65:1f:25:66:26:85:fd:1a:
44:45:80:91:47:23:e8:c3:9f:ab:11:ca:37:c7:c7:e2:e5:84:
75:4b:40:5c:78:84:79:87:40:69:8f:6f:d0:bf:e6:f2:21:0d:
78:a7:93:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:30 2024 by rpki-client on console-fra.rpki-client.org