Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/O59zlqybmy6txXuFxwLkmtNyPVo.roa
File: O59zlqybmy6txXuFxwLkmtNyPVo.roa (raw, json)
Hash identifier: 1AIHUCefLqjjOslsoda1Z6BeOwVKfZ6b4aIm7or/Pv0=
Subject key identifier: 3B:9F:73:96:AC:9B:9B:2E:AD:C5:7B:85:C7:02:E4:9A:D3:72:3D:5A
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 018F24BB518D49CD8FE91D21383B8CC412F6
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/O59zlqybmy6txXuFxwLkmtNyPVo.roa
Signing time: Sun 28 Apr 2024 12:43:26 +0000
ROA not before: Sun 28 Apr 2024 12:43:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 29 Apr 2024 08:52:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:24:bb:51:8d:49:cd:8f:e9:1d:21:38:3b:8c:c4:12:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Apr 28 12:43:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b9f7396ac9b9b2eadc57b85c702e49ad3723d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:25:ac:b7:42:54:df:4f:e0:7f:0a:b2:04:32:
ee:86:d9:f1:6d:dc:74:7c:e4:df:cc:44:39:d9:c1:
70:29:8e:24:a2:f9:f8:8e:d0:7e:f8:6c:97:ac:ed:
aa:e2:80:1b:27:e8:75:e8:49:01:16:5d:ce:70:52:
7e:56:fc:a7:45:d0:43:b1:ad:f9:63:36:ba:f5:4b:
31:4f:7b:c8:46:f9:3d:09:f0:70:51:ab:f9:47:90:
14:11:37:a8:90:9d:be:2d:08:d3:09:2b:cc:43:74:
ce:94:b6:b0:7e:81:d8:7c:39:e1:64:06:14:b2:bd:
98:81:34:68:56:92:9d:f7:02:e6:c3:9e:a3:2a:62:
b5:d3:6a:a6:49:62:cd:42:22:5f:90:ae:f6:d7:54:
07:d9:17:2f:f9:78:b0:ac:3e:00:5b:c0:bc:02:15:
02:54:c6:2a:42:25:90:89:70:15:a9:bc:0f:e5:f6:
e4:d6:76:51:84:12:5b:83:31:30:c9:1b:8e:a8:4b:
37:7b:69:f8:06:ff:05:5b:0b:1e:38:e0:17:82:a5:
73:35:12:5b:fb:ec:50:40:1d:33:6b:d4:ff:9f:43:
b9:79:29:08:f6:c1:a4:a8:3f:39:22:90:c2:99:a5:
55:84:84:89:98:05:f7:fe:a9:00:8c:22:8c:d4:13:
ce:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:9F:73:96:AC:9B:9B:2E:AD:C5:7B:85:C7:02:E4:9A:D3:72:3D:5A
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/O59zlqybmy6txXuFxwLkmtNyPVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
32:85:cc:02:6b:01:51:89:cc:5c:ab:99:41:1f:7f:c4:af:15:
fd:74:af:2b:9a:e7:40:13:0c:cf:17:80:03:ec:88:68:01:c3:
ee:38:ea:29:8a:5c:05:51:9c:fb:26:16:41:2e:3a:78:7f:12:
79:9d:19:4a:c6:8e:72:a3:92:65:59:81:50:d2:ff:63:0a:c3:
53:eb:5f:ed:ca:ea:cb:9c:53:aa:ac:58:e3:0a:74:f4:16:64:
66:cf:c0:df:40:33:6d:19:0f:96:71:c0:2a:ab:75:72:0b:f9:
24:cc:88:f7:7c:d6:12:e0:e7:6d:44:10:07:ae:55:e4:a3:e6:
bd:a8:a9:5c:bd:ad:1c:a0:e2:ba:5e:75:0a:ab:99:8c:c3:ba:
39:8c:d0:74:77:ec:f5:f1:80:b9:dd:a2:8d:34:bc:36:72:31:
ca:02:2b:1a:aa:f9:6c:ba:f6:dd:e7:24:2f:da:07:c5:11:69:
6c:70:41:24:83:cc:18:b2:0d:4a:71:32:8f:1d:85:5d:a3:e7:
1e:f0:03:fb:52:cc:95:25:70:be:e8:e0:87:3e:c0:6f:9e:d6:
91:28:ba:ab:7f:c2:ce:48:53:ab:1f:29:03:92:a5:94:9b:aa:
20:01:f8:83:ad:f8:65:5c:cb:13:95:66:50:f1:57:10:7d:b8:
3f:2a:2a:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:05 2024 by rpki-client on console-ams.rpki-client.org