Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/xh2m9a6fbiCnI6UXG-gvNycuVi0.roa
File: xh2m9a6fbiCnI6UXG-gvNycuVi0.roa (raw, json)
Hash identifier: /doCR9YpmyKk40xl0HFjXhkczM2XP2wtpwKh7iGMM5g=
Subject key identifier: C6:1D:A6:F5:AE:9F:6E:20:A7:23:A5:17:1B:E8:2F:37:27:2E:56:2D
Certificate issuer: /CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Certificate serial: 018F52703709E5457FAC42E26115E7F7B99A
Authority key identifier: D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/xh2m9a6fbiCnI6UXG-gvNycuVi0.roa
Signing time: Tue 07 May 2024 09:43:56 +0000
ROA not before: Tue 07 May 2024 09:43:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51741
IP address blocks: 91.217.219.0/24 maxlen: 24
2a12:62c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Fri 10 May 2024 08:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:52:70:37:09:e5:45:7f:ac:42:e2:61:15:e7:f7:b9:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8eeb20a880cdb494e9e62d43b2ef28c90cb9eef
Validity
Not Before: May 7 09:43:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c61da6f5ae9f6e20a723a5171be82f37272e562d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:0c:bc:f3:37:f1:83:5c:0d:6e:c7:5b:b4:fa:
1e:93:ad:9a:ec:b0:1e:8c:fe:53:64:a5:c2:c5:ff:
e4:41:9e:4c:33:85:3b:3a:1a:e2:3f:fe:05:63:5e:
9e:4a:78:01:a2:de:7d:d8:1c:0e:cd:ad:69:6f:61:
26:9b:09:b1:bf:d7:69:9f:52:6b:f7:4a:e8:ea:f6:
eb:71:1c:42:42:51:67:e6:e0:e2:10:d3:22:39:77:
7b:94:cd:78:ba:49:16:39:f4:88:4e:3d:02:9b:1a:
57:24:92:41:ad:41:5b:2d:eb:d0:05:28:a2:3d:12:
ef:c4:21:a3:02:f5:4c:64:63:d6:01:7a:20:51:23:
c5:1f:2c:03:4d:81:a4:77:42:45:12:6f:ff:5c:82:
0a:26:6f:df:d5:4e:1d:24:cb:f5:15:89:95:e8:0e:
22:d0:99:cf:46:8d:f8:bb:9d:30:0c:03:f8:56:16:
64:78:3e:ba:cf:6f:85:d3:e9:74:46:8c:6d:21:4f:
57:95:68:34:32:a7:8b:69:70:70:8e:d8:75:df:3f:
4f:05:74:30:fa:d0:c4:85:9f:d4:79:5c:b2:62:65:
ab:47:3a:f3:99:8a:4d:e0:88:e3:1c:3d:29:fe:88:
33:97:db:95:1b:9e:d2:7b:48:26:a7:4f:de:77:b3:
68:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:1D:A6:F5:AE:9F:6E:20:A7:23:A5:17:1B:E8:2F:37:27:2E:56:2D
X509v3 Authority Key Identifier:
keyid:D8:EE:B2:0A:88:0C:DB:49:4E:9E:62:D4:3B:2E:F2:8C:90:CB:9E:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2O6yCogM20lOnmLUOy7yjJDLnu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/xh2m9a6fbiCnI6UXG-gvNycuVi0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/fe3dbe-9708-4242-9277-96b50bcc7a08/1/2O6yCogM20lOnmLUOy7yjJDLnu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
IPv6:
2a12:62c0::/29
Signature Algorithm: sha256WithRSAEncryption
5f:1a:6a:7f:15:48:45:1e:27:c4:8a:e2:cd:54:ab:00:cb:50:
67:21:6c:df:0b:80:65:82:e9:4a:76:a6:67:5c:39:af:28:67:
fb:99:38:ac:d5:5a:d0:c6:ca:56:0e:22:76:01:3e:fc:d3:30:
fd:60:69:db:90:9f:dc:f3:1b:42:f1:0d:2f:b3:92:ea:92:6f:
60:f8:aa:e3:b8:8f:69:c1:1e:b7:b5:dc:92:ae:3d:6e:e6:3e:
e0:4f:22:f3:8c:16:f0:e3:2e:14:65:b3:5f:5c:85:94:72:7f:
e1:85:6b:ab:bf:5f:1f:88:e4:3b:0d:33:97:8e:16:82:3f:50:
bb:9c:9b:d2:90:7a:39:72:48:d5:bd:74:47:71:c4:14:cc:eb:
51:40:17:ec:ab:60:c8:54:80:ce:58:e2:11:77:35:75:31:d5:
20:7a:cb:09:6f:2e:48:38:2a:af:60:55:96:ab:98:c2:38:9a:
c5:ed:ae:be:b8:bb:6f:61:71:87:b2:0e:44:c8:5f:4a:ba:31:
85:e3:d7:57:c0:b0:a3:8a:29:c0:f1:d8:51:74:37:6d:1e:32:
b8:cc:0d:db:f5:1c:38:8a:59:a5:53:e1:7c:27:e6:95:7b:a5:
52:37:47:db:a2:fd:f5:41:86:20:fd:01:4d:b2:33:bd:a8:4e:
90:47:4a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:05 2024 by rpki-client on console-ams.rpki-client.org