Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/GrARQP3YOIJmarUy2YUdOCaTYtc.roa
File: GrARQP3YOIJmarUy2YUdOCaTYtc.roa (raw, json)
Hash identifier: VY+K2QW9kErL/78DXQmGOaMQThDvs/NjqZMigSFsG0U=
Subject key identifier: 1A:B0:11:40:FD:D8:38:82:66:6A:B5:32:D9:85:1D:38:26:93:62:D7
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 019267EEFD7F4278145C171BC7DB22F9657B
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/GrARQP3YOIJmarUy2YUdOCaTYtc.roa
Signing time: Mon 07 Oct 2024 17:02:48 +0000
ROA not before: Mon 07 Oct 2024 17:02:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214998
IP address blocks: 91.217.219.0/24 maxlen: 24
2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 08 Nov 2024 15:33:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:67:ee:fd:7f:42:78:14:5c:17:1b:c7:db:22:f9:65:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Oct 7 17:02:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1ab01140fdd83882666ab532d9851d38269362d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d2:9c:ed:d6:23:5f:53:6b:0c:dd:82:9d:0d:
db:eb:72:0c:0b:53:f7:a7:23:65:25:dd:64:37:82:
9f:3c:97:00:74:eb:57:4a:b6:32:29:08:53:93:bb:
41:e0:a3:37:6c:19:a9:b8:cf:1f:43:43:4a:b6:1e:
fb:f5:62:2d:d0:08:97:53:4f:83:8a:19:61:3e:53:
78:a6:82:c0:e2:c4:3d:02:e7:9d:30:15:d0:56:36:
57:22:13:1a:ec:03:2d:06:5d:11:6b:41:92:f5:47:
7b:06:62:12:5c:82:bd:3f:2c:e9:67:f6:74:3a:ab:
01:51:c5:a2:95:d9:d3:29:a8:10:3a:29:f7:60:6f:
7b:98:d4:15:54:b2:42:ea:35:56:98:2e:d0:75:a3:
8f:d8:8f:ce:ac:9c:42:bd:b0:de:fb:84:e6:1d:48:
f4:fc:78:74:8e:a8:f9:da:90:ff:63:a1:0f:5f:f7:
b0:51:b6:7d:b9:0e:1d:b3:d6:e8:ca:c8:30:04:05:
34:5d:fd:e3:d0:61:f6:69:77:86:0c:f0:44:5b:6f:
94:bb:5f:ea:d6:b2:7f:b0:7f:29:d2:bd:1b:27:c1:
32:69:f4:32:27:32:c3:d0:79:93:e7:54:ba:99:9b:
56:f5:67:d3:7b:df:85:cc:05:ab:b9:85:05:2a:67:
81:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:B0:11:40:FD:D8:38:82:66:6A:B5:32:D9:85:1D:38:26:93:62:D7
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/GrARQP3YOIJmarUy2YUdOCaTYtc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
36:94:82:22:17:a6:3f:ac:a8:f6:c6:19:d7:ec:7f:43:3d:42:
62:bb:5c:4f:74:b4:00:67:f8:84:4f:57:4d:6e:9c:8a:f3:d6:
93:0f:95:99:02:05:4d:22:01:5d:45:af:63:04:8f:9a:24:e5:
44:89:5d:d9:39:c8:0a:9c:bb:55:e6:dc:1a:b6:dd:c9:17:20:
25:4c:34:32:e1:0c:ed:4c:aa:2c:8b:d4:22:37:28:57:d9:8a:
44:36:a9:18:f0:04:cc:67:fd:74:36:d0:c2:a4:75:90:73:2a:
72:49:29:cb:27:03:f4:67:cd:7f:e4:00:d4:33:30:19:d5:b1:
f8:b1:49:4b:05:b3:6e:0e:51:c6:c9:e3:2d:ae:7c:b8:b9:4f:
65:59:14:52:f9:a6:c5:d1:9f:b7:0d:11:e1:77:17:68:66:f7:
d0:94:5c:1c:12:ee:57:30:4a:7f:0d:a3:fb:5f:58:5d:91:5d:
2d:d6:9b:27:d0:f0:d9:da:1a:01:19:d0:57:eb:bd:88:33:a5:
a0:bf:a4:ca:7b:00:73:ee:bb:f3:36:97:45:ca:fc:f0:d3:30:
ef:b8:14:1f:c9:3c:47:66:d0:64:b8:0e:63:7d:85:a2:1c:fb:
c5:89:5c:e6:f8:4e:e2:85:24:b8:65:26:65:f5:24:8c:d1:9d:
08:65:d8:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 8 19:43:13 2024 by rpki-client on console-fra.rpki-client.org