Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2YO1C_SxdgtvKNsNA9id3amlPvM.roa
File: 2YO1C_SxdgtvKNsNA9id3amlPvM.roa (raw, json)
Hash identifier: 5U3pBVi5O7WQ1SmNNtcgpsA/uranm+V09mdqPfiq/6I=
Subject key identifier: D9:83:B5:0B:F4:B1:76:0B:6F:28:DB:0D:03:D8:9D:DD:A9:A5:3E:F3
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 018F4CE6FA572E52640D48AB489A1BC626A6
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2YO1C_SxdgtvKNsNA9id3amlPvM.roa
Signing time: Mon 06 May 2024 07:55:56 +0000
ROA not before: Mon 06 May 2024 07:55:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 07 May 2024 09:43:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:e6:fa:57:2e:52:64:0d:48:ab:48:9a:1b:c6:26:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: May 6 07:55:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d983b50bf4b1760b6f28db0d03d89ddda9a53ef3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:59:aa:48:bb:d8:50:6b:e3:e0:d2:16:b3:d8:
f1:51:4d:98:c1:30:4a:af:64:f9:bf:dc:4e:14:73:
a0:67:cd:fe:8c:ea:76:12:22:8b:9f:e1:f9:3e:e3:
bf:6b:dc:41:68:a7:e0:c2:62:99:3f:76:e6:50:28:
70:71:dd:36:26:00:97:34:14:60:4c:80:a2:1d:b1:
61:ae:49:c7:26:ec:00:60:31:c1:3e:ec:59:0f:6b:
fc:cc:0a:d0:16:29:19:d6:30:65:4e:82:95:1c:7f:
91:93:6c:aa:d2:6d:08:17:8a:6a:f5:56:0e:ad:d9:
31:c1:39:4b:ef:34:b3:57:6b:32:3f:59:16:c9:80:
2b:26:0b:37:b6:ef:24:c1:0e:71:dc:84:0c:aa:ff:
bd:a0:e6:ce:64:b4:0a:4e:c2:2f:24:c8:9e:36:2b:
2a:ab:0c:7e:94:da:4f:19:29:03:fb:d0:71:cb:ea:
47:6b:9e:2d:00:ee:ed:78:06:b9:e7:f7:48:dd:08:
87:de:27:55:e1:c9:b6:95:f6:ee:0b:8a:92:f7:ce:
67:bf:07:f2:83:63:14:ce:13:79:07:f2:f7:dc:fe:
70:15:9d:1c:41:c6:8f:64:d5:8c:78:77:f5:7b:18:
69:42:7b:86:53:f6:9b:2b:7c:f3:08:cb:e9:f1:9b:
40:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:83:B5:0B:F4:B1:76:0B:6F:28:DB:0D:03:D8:9D:DD:A9:A5:3E:F3
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2YO1C_SxdgtvKNsNA9id3amlPvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:e3:1f:40:a1:57:e3:8f:bb:7f:ef:69:ec:ec:46:73:9c:41:
ab:ac:64:58:14:4d:06:bf:b5:13:b2:e6:83:75:17:7e:a2:75:
33:a5:3a:8a:3c:1f:78:9b:de:99:d2:be:91:c8:d6:48:85:f8:
8c:7a:19:2d:38:9d:f2:b4:72:b0:3e:8f:51:0d:17:01:de:c2:
50:37:3c:eb:d7:53:b1:db:df:7f:ea:9f:70:f0:85:47:bf:be:
5a:be:70:5e:91:97:b4:57:2f:8f:4d:ba:b3:a4:b9:ef:bd:a8:
37:97:09:88:01:d0:33:72:12:37:fc:2a:5c:ed:1c:8c:b6:33:
4a:5d:1a:ff:48:bc:47:ca:12:7d:7d:f4:6d:d4:08:d9:65:f8:
38:59:35:01:14:1d:ee:d2:d9:45:42:cf:fe:2d:80:ac:e3:7f:
f3:78:c5:f7:6f:c3:2c:4b:20:f5:4b:88:a7:ba:4f:95:b9:05:
e1:16:17:78:b6:09:85:01:2f:48:cb:7b:1c:84:53:74:34:7c:
12:00:9c:f0:9c:25:19:2a:19:33:7d:43:1d:24:80:a0:bf:58:
88:95:2c:6b:e2:f1:88:29:4b:82:d2:93:f0:6d:ef:b2:58:f8:
10:aa:fe:84:e6:9a:06:41:ed:a4:3c:4c:5f:55:1c:68:83:f3:
75:6c:04:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:00 2024 by rpki-client on console-fra.rpki-client.org