Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/x3C4vsRcscpuf5swzy53vCQ5XR0.roa
File: x3C4vsRcscpuf5swzy53vCQ5XR0.roa (raw, json)
Hash identifier: lF18oa1te32nZ385vKH0D5TPwP3PVvBPAkU02qAukmk=
Subject key identifier: C7:70:B8:BE:C4:5C:B1:CA:6E:7F:9B:30:CF:2E:77:BC:24:39:5D:1D
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 0190214E8DB2735A37F36307CE4089304ECD
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/x3C4vsRcscpuf5swzy53vCQ5XR0.roa
Signing time: Sun 16 Jun 2024 13:48:34 +0000
ROA not before: Sun 16 Jun 2024 13:48:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 91.217.219.0/24 maxlen: 24
2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 24 Jun 2024 08:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:21:4e:8d:b2:73:5a:37:f3:63:07:ce:40:89:30:4e:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: Jun 16 13:48:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c770b8bec45cb1ca6e7f9b30cf2e77bc24395d1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:e0:38:fd:0e:db:7e:37:bf:d5:70:d1:58:9c:
ef:b6:b5:5b:b0:c9:7e:aa:f2:c2:7c:26:35:db:27:
77:51:0b:52:11:84:4e:81:3b:46:f3:bc:92:06:1e:
a9:34:70:9c:c8:d8:3c:48:23:97:fa:9a:38:1a:48:
a4:03:30:0b:1e:d7:48:03:e3:be:06:3e:89:56:1a:
9c:38:0b:fe:4e:4a:57:cf:c5:1b:52:9e:91:eb:25:
d8:84:7c:23:6b:fb:c4:93:6f:2c:c6:d8:fc:5f:c4:
dc:c2:e9:cc:dc:92:ea:c7:d8:81:c8:29:c5:42:7f:
82:96:cf:63:be:38:0e:e2:60:f0:be:44:09:dd:9b:
58:3c:38:83:da:e3:1a:da:9a:98:5e:1b:88:a2:fc:
b5:41:63:0a:76:ef:58:2f:d8:96:59:63:6e:61:01:
71:0d:74:f5:64:10:7d:5f:8c:41:fb:ad:e9:04:83:
78:43:c8:96:f6:91:5c:d1:cd:ee:e5:38:6c:a4:a4:
cd:25:56:83:d8:dd:8e:37:04:37:55:94:f6:ca:b6:
9c:43:d4:95:01:ae:55:59:eb:8a:93:33:03:bb:c4:
f6:a0:6c:d5:db:ad:76:3c:f3:c1:37:a1:8f:92:33:
bd:52:ec:b8:56:24:72:f5:2d:af:3a:a5:4c:55:18:
0d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:70:B8:BE:C4:5C:B1:CA:6E:7F:9B:30:CF:2E:77:BC:24:39:5D:1D
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/x3C4vsRcscpuf5swzy53vCQ5XR0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
91:ea:e7:84:d0:4c:e6:41:3e:04:a5:bb:32:32:8e:8b:9c:ef:
9a:8a:1e:1d:a5:99:30:a1:06:57:07:0b:3a:37:b4:5b:05:8b:
06:64:40:c0:ba:72:1e:93:65:9e:a4:e4:de:a3:9f:63:2b:03:
cf:bb:3d:a8:c0:d8:ed:e3:97:0c:4d:3e:1c:cf:87:80:6b:81:
fe:89:57:79:70:e5:40:cf:1a:df:01:6f:43:42:53:25:39:97:
ba:14:7e:c9:d7:38:dc:15:c7:cd:b2:40:5f:46:de:91:d6:dc:
7d:bc:f9:a0:57:34:f3:d8:65:19:1a:49:c2:40:69:e5:61:86:
ce:93:71:c7:28:9e:c3:36:b7:f4:3e:22:ea:11:a7:fe:b1:66:
03:3a:f3:cf:fc:c2:04:29:8a:be:b8:95:d6:c4:ac:24:73:82:
5f:a9:56:ba:49:42:13:3c:9b:a7:31:1c:49:14:c8:6b:47:d4:
e8:4c:2e:4f:b6:3d:d0:26:8b:3e:3d:b5:63:49:ae:bf:6e:dd:
c0:3b:e3:54:55:18:6f:54:a4:91:23:f9:1a:8b:e1:9e:6c:19:
97:f2:ba:10:9c:42:cc:f6:6c:34:e7:ee:9a:2e:13:f3:68:be:
39:3f:f1:d9:f8:dc:3c:54:76:5b:ec:07:15:47:80:d2:6b:60:
16:e2:c8:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 24 12:53:27 2024 by rpki-client on console-ams.rpki-client.org