Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/84s_8O2NT75pRRizrrX-NOV7XfU.roa
File: 84s_8O2NT75pRRizrrX-NOV7XfU.roa (raw, json)
Hash identifier: cZzxgEsGX6ObGrqb82CxEbulUFKTNUW15NpBekBnxcI=
Subject key identifier: F3:8B:3F:F0:ED:8D:4F:BE:69:45:18:B3:AE:B5:FE:34:E5:7B:5D:F5
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 018ED70DC1BC92642EBC6416BDEDD750EBCF
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/84s_8O2NT75pRRizrrX-NOV7XfU.roa
Signing time: Sat 13 Apr 2024 10:43:06 +0000
ROA not before: Sat 13 Apr 2024 10:43:06 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 91.217.219.0/24 maxlen: 24
2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 18 Apr 2024 13:20:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:d7:0d:c1:bc:92:64:2e:bc:64:16:bd:ed:d7:50:eb:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Apr 13 10:43:06 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f38b3ff0ed8d4fbe694518b3aeb5fe34e57b5df5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:44:67:35:37:3b:37:e3:59:b7:3f:8e:48:ea:
8e:b7:2e:28:a3:33:98:24:bd:8d:2a:c4:a0:24:ea:
3e:7e:04:f3:76:b7:b3:5f:ee:a7:8e:9a:51:28:05:
bf:ca:14:4b:55:a1:83:db:a5:04:4c:7a:ca:72:50:
39:9a:9c:30:5b:0c:31:d0:a2:b6:fd:74:de:68:9b:
e5:da:da:84:3b:7e:a4:02:ca:f7:88:92:29:73:d1:
16:3c:e4:04:89:53:34:a2:c7:3b:4a:db:76:70:c2:
8c:dc:be:37:52:ac:b2:6e:ba:ad:4e:61:79:84:6b:
45:3a:6c:1e:75:a2:6e:0c:a4:b6:32:93:a7:0a:1a:
fc:df:c7:21:b3:09:92:13:b1:bd:69:23:f0:39:12:
d0:48:24:de:16:19:d1:ce:2f:cf:cc:d1:b0:7d:a8:
96:5a:d2:6a:de:14:06:cb:55:38:98:01:b0:40:b5:
f7:43:0b:a1:91:16:b1:f6:92:d7:d8:11:64:94:bd:
41:0f:d2:02:c1:a6:4e:88:f0:b8:44:ef:c5:11:02:
28:0c:98:7c:16:f2:0e:e6:9b:55:d4:f2:a9:4c:be:
95:1b:56:d0:56:ce:26:b3:ce:7f:61:a6:e6:c6:b9:
d7:81:0f:6f:92:79:46:e9:ab:16:84:ca:99:e4:af:
b1:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:8B:3F:F0:ED:8D:4F:BE:69:45:18:B3:AE:B5:FE:34:E5:7B:5D:F5
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/84s_8O2NT75pRRizrrX-NOV7XfU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
37:61:85:51:50:63:a0:d1:30:37:a2:f4:49:70:61:80:4c:87:
b5:f7:64:95:4f:07:11:08:ab:7d:c9:57:47:9b:8f:18:f9:60:
76:a1:17:01:5f:37:58:a0:a8:94:a7:1e:75:b7:0e:27:f4:10:
b6:74:bf:a1:36:60:78:2c:37:f8:e9:f8:d5:fd:11:2b:b9:66:
94:43:ef:c0:14:db:c2:81:d5:4e:71:5a:bc:9b:11:38:da:64:
36:1d:61:3b:56:7f:2b:7b:6e:c8:12:b0:46:d2:03:8a:c2:8c:
e3:9b:e5:bc:a1:7c:ec:52:76:34:28:d7:57:03:b6:f9:b0:14:
27:e2:1e:d0:1e:9b:72:05:98:7c:3c:41:22:2a:c3:e3:6b:83:
dd:96:53:45:3e:e4:a5:a7:90:14:9b:6b:8f:e8:0d:e2:55:fd:
ed:31:79:53:90:e6:8e:f7:3f:45:91:ec:02:cf:6a:30:ab:ea:
f9:3e:4f:a8:dd:ec:33:d0:b0:e4:95:b6:15:21:a5:e4:de:1a:
1e:64:16:45:d3:4b:22:82:d3:be:d8:2e:b2:88:1f:c5:6a:ae:
e3:4b:3b:aa:de:d1:f6:8d:b9:3a:10:40:24:a1:91:19:b4:90:
04:18:8e:91:b0:98:67:72:9e:5e:87:81:65:43:da:98:89:83:
f6:51:00:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:05 2024 by rpki-client on console-ams.rpki-client.org