Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/_i9m5O46Aaqz1a_Zg2IANQfOxEs.roa
File: _i9m5O46Aaqz1a_Zg2IANQfOxEs.roa (raw, json)
Hash identifier: Pwulclk5pW9SUG7ja86q08uVQbkvdSkb1JTQphJs2i0=
Subject key identifier: FE:2F:66:E4:EE:3A:01:AA:B3:D5:AF:D9:83:62:00:35:07:CE:C4:4B
Certificate issuer: /CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Certificate serial: 0186884084A7C4E553AF4FFF7C6540267957
Authority key identifier: D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/_i9m5O46Aaqz1a_Zg2IANQfOxEs.roa
Signing time: Sat 25 Feb 2023 11:06:14 +0000
ROA not before: Sat 25 Feb 2023 11:06:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212337
IP address blocks: 91.220.171.0/24 maxlen: 24
185.106.37.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 08:30:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:88:40:84:a7:c4:e5:53:af:4f:ff:7c:65:40:26:79:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3600cbafd26fee5064fc89f301dfc8e3c1d3ca5
Validity
Not Before: Feb 25 11:06:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=fe2f66e4ee3a01aab3d5afd98362003507cec44b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:dd:28:40:0b:81:41:93:d0:73:b1:d9:e5:f3:
2e:68:f9:05:46:a0:92:37:0e:9b:9e:5b:7d:ce:06:
6a:c9:47:ac:21:b9:b3:00:5a:3a:c8:51:9b:b4:23:
8e:8f:ae:ab:a8:16:14:ef:36:d2:88:29:27:83:8c:
30:6e:3e:cb:90:ea:f9:28:87:3c:26:5c:43:12:a0:
cc:81:26:96:17:c6:55:05:d7:c8:78:af:c2:39:72:
30:e8:4c:db:f2:3d:cb:33:03:5b:83:18:8b:81:4a:
d2:03:b5:f8:be:60:8d:7b:84:22:af:73:88:a4:ae:
a7:ce:3f:91:22:e1:96:f7:9b:18:3a:ab:da:72:ce:
c8:f3:65:6c:74:79:13:e0:d7:0a:5a:03:27:08:c5:
c9:fd:e2:2e:12:ac:60:4b:a9:45:2d:75:c6:3d:a0:
0c:d0:30:a9:1b:42:11:08:5e:da:47:7a:7f:c5:e9:
40:6c:70:92:4f:3a:9c:d2:65:30:7c:03:7f:13:0a:
22:bb:04:ed:c6:17:cd:f8:65:fe:13:80:d8:54:44:
64:13:73:02:c7:36:60:bf:ac:37:51:24:5a:ba:cb:
75:ad:7d:2a:79:73:01:23:d2:9e:0d:3c:eb:23:ee:
27:ac:e4:fa:1b:10:77:71:b3:51:60:a2:3f:ad:15:
3b:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:2F:66:E4:EE:3A:01:AA:B3:D5:AF:D9:83:62:00:35:07:CE:C4:4B
X509v3 Authority Key Identifier:
keyid:D3:60:0C:BA:FD:26:FE:E5:06:4F:C8:9F:30:1D:FC:8E:3C:1D:3C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02AMuv0m_uUGT8ifMB38jjwdPKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/_i9m5O46Aaqz1a_Zg2IANQfOxEs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/b70658-e1dc-4944-a06b-1c680adf7a26/1/02AMuv0m_uUGT8ifMB38jjwdPKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.220.171.0/24
185.106.37.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:d3:c1:be:8a:e9:b4:36:c9:05:19:6b:0b:f1:b5:9e:3f:c7:
39:d5:c2:3c:07:0f:f4:0d:05:e7:54:f0:c9:a3:64:90:5b:7b:
bf:80:c5:ae:54:18:3a:8c:9a:1e:07:7b:47:cd:c3:ee:3a:65:
20:67:ee:78:e4:5d:4a:53:80:13:29:a2:03:fc:9c:0d:b0:10:
e7:e7:a9:b9:59:cf:cd:fd:ee:f8:e0:bd:17:60:8d:bd:3d:45:
33:45:31:52:1d:33:a6:f3:a4:c8:16:b6:06:91:be:08:e4:25:
06:40:f6:3a:f5:c7:ae:2e:b2:38:3c:d6:d5:31:d1:bc:17:d7:
57:5b:a1:d1:fd:38:ea:db:e9:7c:fc:79:bc:84:79:df:a2:6d:
f2:fb:42:d7:5c:f1:bd:84:1c:48:a0:49:6e:b8:77:05:0d:dc:
0d:19:58:ea:9e:8c:0a:f1:9f:f7:c3:07:c5:b4:7b:d9:26:38:
04:76:92:06:73:0d:be:79:9b:02:33:eb:3a:5f:1a:d7:a2:03:
0b:a2:90:f9:67:a8:b8:1c:48:30:cd:a7:91:fd:f9:37:46:48:
5c:9c:cd:04:f5:7b:6a:24:01:fa:09:6f:18:c8:3c:b3:74:5b:
2b:47:ac:80:16:ab:65:69:85:1c:9b:d9:7c:8b:ea:05:00:ff:
e9:fd:20:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:16 2024 by rpki-client on console-ams.rpki-client.org