Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/Ebgheu4Oy5iXV8p20ALJm3rFp-I.roa
File: Ebgheu4Oy5iXV8p20ALJm3rFp-I.roa (raw, json)
Hash identifier: eBcjUQPWQCSaoL7YxVqoiAGAUwIq1IwjZn7Psl+jCXU=
Subject key identifier: 11:B8:21:7A:EE:0E:CB:98:97:57:CA:76:D0:02:C9:9B:7A:C5:A7:E2
Certificate issuer: /CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Certificate serial: 01896528AE1DE7FC3D4CE9C40A57CCD4D851
Authority key identifier: 35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/Ebgheu4Oy5iXV8p20ALJm3rFp-I.roa
Signing time: Mon 17 Jul 2023 18:41:52 +0000
ROA not before: Mon 17 Jul 2023 18:41:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51257
IP address blocks: 91.221.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Nov 2023 13:21:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:28:ae:1d:e7:fc:3d:4c:e9:c4:0a:57:cc:d4:d8:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=352f8919e6bc1ef5663489018fc875be34c0f24c
Validity
Not Before: Jul 17 18:41:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=11b8217aee0ecb989757ca76d002c99b7ac5a7e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:f4:98:19:73:64:49:6f:c8:18:f9:81:e0:d9:
ea:cd:b0:e8:11:60:1a:d3:b7:9f:e9:ad:a4:0c:f7:
b6:2b:02:96:70:c5:7a:ea:da:2a:d3:45:05:80:f0:
9f:9a:34:d1:d4:cd:c0:24:7b:0f:84:86:6d:01:68:
56:ef:76:a8:bb:64:9d:53:68:ce:46:ba:2c:1a:fd:
e6:cc:fd:f4:33:5b:75:40:ab:71:09:cd:ca:a2:d3:
b8:dd:4d:73:82:85:1f:e3:51:40:ee:c9:3b:e1:aa:
8a:76:5c:07:d2:2b:4a:1f:33:30:32:27:2e:48:c5:
70:f7:a5:f2:8e:19:0d:81:21:4d:a5:ba:a5:9f:59:
cc:e4:90:2d:ea:c0:4c:ae:a7:ee:3c:5a:2f:9d:30:
e9:6f:9a:86:3f:73:5c:87:68:dc:f0:85:ff:cd:ff:
7b:51:b8:70:4e:90:0c:03:c0:27:45:11:4c:86:30:
7b:b0:b9:2e:0b:48:a8:6b:f4:b5:72:94:02:7c:22:
58:1d:5b:51:a9:3d:15:c9:46:fd:16:60:f2:89:2b:
cb:04:e8:2b:01:00:28:b0:af:ea:9b:9c:fd:65:50:
45:96:7d:8a:ee:d0:94:b5:34:5c:58:14:7a:97:44:
80:5f:41:ba:6b:eb:96:0d:43:5d:a2:f3:b3:7e:78:
3f:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:B8:21:7A:EE:0E:CB:98:97:57:CA:76:D0:02:C9:9B:7A:C5:A7:E2
X509v3 Authority Key Identifier:
keyid:35:2F:89:19:E6:BC:1E:F5:66:34:89:01:8F:C8:75:BE:34:C0:F2:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NS-JGea8HvVmNIkBj8h1vjTA8kw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/Ebgheu4Oy5iXV8p20ALJm3rFp-I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/cf943d-c921-4ef7-9aa0-e3fcb23e3438/1/NS-JGea8HvVmNIkBj8h1vjTA8kw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.221.107.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:19:a9:c1:fd:74:13:77:86:4c:53:e7:d9:45:f9:80:b7:49:
97:65:67:dd:d3:28:9f:4e:7f:bf:b1:2d:66:bc:6b:bd:51:92:
57:2c:2e:05:17:32:8f:68:ea:96:a5:10:1d:b9:bc:15:63:5f:
2f:8d:73:5a:60:46:af:b1:b4:e1:69:1f:fa:e1:5a:d7:03:f8:
fe:c4:4f:86:e0:08:35:56:02:5c:e2:62:0d:79:42:c2:62:3f:
22:48:f5:16:d0:78:36:14:ac:7c:a1:e4:71:a5:63:57:15:00:
e4:34:a0:3f:d5:8f:2f:8f:e5:4a:bc:72:70:d0:8c:f7:a8:a0:
56:3f:f3:7e:19:1f:94:9b:c2:52:02:53:30:82:27:1c:81:22:
7c:8a:04:e1:36:07:25:ca:72:ef:61:96:b6:c9:02:61:3a:4b:
5e:da:70:bf:17:15:4f:79:26:08:36:80:b6:13:09:0c:7a:a6:
cd:f3:b6:84:42:c2:c6:1d:21:70:b8:5c:16:6a:1c:ca:41:93:
a6:a5:24:62:db:ba:bc:ae:b0:3f:ac:c9:7a:de:f1:f0:fe:93:
59:f3:58:e9:58:1f:b2:10:2c:22:7c:e4:b5:e9:0f:16:81:11:
c0:03:10:07:71:4c:7a:77:4b:a1:c4:f5:c8:4d:c6:bb:78:31:
64:e8:e9:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:37 2024 by rpki-client on console-fra.rpki-client.org