Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/ky3U9K0Gr3sBgYK2gfvPOgHHvdc.roa
File: ky3U9K0Gr3sBgYK2gfvPOgHHvdc.roa (raw, json)
Hash identifier: BZOhJZ7d8Mf50iSEmFY9iMoEhUvw9xXjNxzyDPazznw=
Subject key identifier: 93:2D:D4:F4:AD:06:AF:7B:01:81:82:B6:81:FB:CF:3A:01:C7:BD:D7
Certificate issuer: /CN=705ee67d4a12d53c44e701cbd896a48575eb2503
Certificate serial: 01890271C43791AD836CD68117D24F5A4430
Authority key identifier: 70:5E:E6:7D:4A:12:D5:3C:44:E7:01:CB:D8:96:A4:85:75:EB:25:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF7mfUoS1TxE5wHL2JakhXXrJQM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/ky3U9K0Gr3sBgYK2gfvPOgHHvdc.roa
Signing time: Wed 28 Jun 2023 14:39:17 +0000
ROA not before: Wed 28 Jun 2023 14:39:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57043
IP address blocks: 91.240.254.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:02:71:c4:37:91:ad:83:6c:d6:81:17:d2:4f:5a:44:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705ee67d4a12d53c44e701cbd896a48575eb2503
Validity
Not Before: Jun 28 14:39:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=932dd4f4ad06af7b018182b681fbcf3a01c7bdd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:17:62:b1:7f:b4:cd:5b:55:7b:d4:15:49:3c:
9e:79:15:17:4a:c0:d7:49:db:13:3c:f3:63:0e:c4:
85:d1:05:93:2d:e4:2b:72:21:a5:8a:86:88:87:7c:
02:e6:80:07:25:4b:d0:7f:66:7e:20:70:ef:5f:0f:
4b:a4:aa:e5:cb:5e:d5:04:5c:59:23:d9:92:60:67:
0e:8c:60:98:0b:88:77:03:29:4b:cf:90:b2:fd:31:
f9:09:f8:df:dc:f6:26:b4:e0:5f:1f:69:8a:c5:07:
04:37:0c:c0:14:5c:20:83:b2:d2:11:f2:32:78:91:
18:e2:72:08:6b:6e:df:c3:67:ac:35:41:39:bb:76:
9c:62:6f:7c:2d:96:ad:cf:da:06:93:10:d4:ea:fe:
51:7d:ca:69:ba:98:a7:7d:d4:f4:af:06:ca:15:6d:
78:f1:52:f9:38:72:f0:16:ba:22:05:ed:7f:8a:de:
1a:7b:3e:d8:45:b4:20:a0:18:6c:2c:3f:f0:9e:dd:
4a:00:51:a9:fc:b3:05:36:2c:02:9d:32:e1:12:23:
ff:d5:0a:16:7c:85:1d:1e:59:1d:87:67:c4:40:04:
1f:e3:af:1b:fc:33:ed:26:d9:f9:e3:25:99:b1:4f:
bc:9b:bf:47:50:b4:5b:d0:51:45:16:57:b6:0a:c3:
6f:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2D:D4:F4:AD:06:AF:7B:01:81:82:B6:81:FB:CF:3A:01:C7:BD:D7
X509v3 Authority Key Identifier:
keyid:70:5E:E6:7D:4A:12:D5:3C:44:E7:01:CB:D8:96:A4:85:75:EB:25:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF7mfUoS1TxE5wHL2JakhXXrJQM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/ky3U9K0Gr3sBgYK2gfvPOgHHvdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d67522-6e21-437b-bd24-689a4d976f95/1/cF7mfUoS1TxE5wHL2JakhXXrJQM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.240.254.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:98:8f:ba:54:1d:e6:2a:d4:fc:c5:38:c0:6a:b1:82:c3:b3:
97:77:23:72:2c:bc:ed:a6:f7:ed:64:a5:58:29:35:f2:0a:03:
8d:07:4a:f1:1e:ea:39:13:ed:9c:cf:47:b4:f2:dd:5d:6b:f0:
85:e1:54:2c:d4:1f:22:ef:d8:77:b6:15:1a:88:ee:ad:b2:0a:
d0:64:99:14:f9:17:5d:01:f0:ef:ca:0f:90:a4:82:0d:23:86:
30:ef:72:e2:a3:fa:05:48:31:05:43:4a:a9:66:b7:e6:52:2e:
7c:51:4a:41:21:90:85:28:82:d5:25:ed:8f:3d:45:e0:0e:08:
05:33:0e:09:ef:d0:c5:25:41:f0:84:e9:c5:bb:a8:8b:2c:de:
2b:82:32:0f:49:83:16:e4:82:51:67:26:2c:f4:f5:4f:2c:ac:
67:88:15:66:da:21:e5:67:10:31:6e:b8:44:40:1c:c1:14:ae:
3d:32:7a:d1:13:d2:2e:32:3e:5e:05:fb:3a:5e:7a:99:87:06:
36:8e:e4:8d:d2:a3:c0:76:d9:51:f5:c5:3b:52:e6:63:40:04:
04:a2:a0:0d:15:f2:af:45:58:ed:a7:43:17:62:07:93:11:bf:
b3:48:9b:db:42:4f:1f:04:f3:0b:9f:42:dc:23:79:c9:29:cb:
6f:f2:41:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:12 2024 by rpki-client on console-ams.rpki-client.org