Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/z9F9J4dx3qgwlqddmyzvEcM58Vs.roa
File: z9F9J4dx3qgwlqddmyzvEcM58Vs.roa (raw, json)
Hash identifier: pdaA01JtjKqDchxqzxDNu6yc0izPSLRqg+AkhyFtfdA=
Subject key identifier: CF:D1:7D:27:87:71:DE:A8:30:96:A7:5D:9B:2C:EF:11:C3:39:F1:5B
Certificate issuer: /CN=b1b201363ccc556bec88702569d8d381a0e89566
Certificate serial: 01856D81A67F5BAA0741B48BCE91558DDF4F
Authority key identifier: B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/z9F9J4dx3qgwlqddmyzvEcM58Vs.roa
Signing time: Sun 01 Jan 2023 13:24:51 +0000
ROA not before: Sun 01 Jan 2023 13:24:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 50945
IP address blocks: 91.216.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 00:31:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:a6:7f:5b:aa:07:41:b4:8b:ce:91:55:8d:df:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b201363ccc556bec88702569d8d381a0e89566
Validity
Not Before: Jan 1 13:24:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cfd17d278771dea83096a75d9b2cef11c339f15b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:06:51:a3:70:e7:d6:5b:08:33:25:52:9b:e1:
78:54:38:80:ee:48:12:4b:3e:b6:12:22:c1:69:db:
44:44:9b:44:42:4a:2e:18:1b:dc:95:da:65:f1:0f:
9a:b6:d3:c4:47:3c:f2:ba:46:17:01:f1:58:c4:86:
78:b9:54:cc:25:d2:0e:07:48:c5:78:7a:1c:48:ba:
07:70:3b:ff:da:bf:fa:1e:67:bd:96:7c:59:de:94:
f7:bf:84:51:8d:e5:25:43:70:1e:69:98:ce:15:53:
6d:ca:1b:0f:e5:54:52:d7:2a:74:8b:e1:ff:fc:cd:
46:77:23:26:91:18:83:38:e9:0e:87:8a:2b:d9:97:
07:be:d0:4b:93:ae:ff:76:2c:db:16:59:07:b9:9e:
33:01:b6:c7:99:71:57:8b:72:23:af:8a:3b:26:b1:
74:1b:a7:4d:a7:d7:8a:f9:f7:f8:02:ed:fb:58:b4:
27:88:94:06:88:9d:31:b1:b8:c7:ad:61:9f:70:58:
6c:ff:c4:e5:29:36:88:59:15:a8:76:98:a9:29:bb:
c2:de:33:78:01:66:d4:82:36:2d:58:a3:b8:3a:87:
04:ae:f1:b7:f4:c9:4e:15:9d:d2:63:85:1e:c1:e3:
e9:9e:9e:b0:1a:cf:03:d6:c2:fc:8f:fc:d4:5e:17:
8d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D1:7D:27:87:71:DE:A8:30:96:A7:5D:9B:2C:EF:11:C3:39:F1:5B
X509v3 Authority Key Identifier:
keyid:B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/z9F9J4dx3qgwlqddmyzvEcM58Vs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.52.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:8b:40:84:db:ba:88:1b:6d:ca:d1:7b:31:a2:82:25:08:51:
9e:36:39:e2:67:a2:a5:3d:68:a6:16:ca:de:7d:f9:9c:c0:3e:
9d:7a:82:c9:a5:f1:c7:36:30:39:fe:70:20:82:56:2f:e5:b2:
3e:cb:c1:41:8f:de:e3:18:3a:f7:0a:4c:cc:87:ea:58:69:e3:
61:e6:dd:fd:62:2f:f7:24:b1:92:d5:8e:ff:65:9d:df:93:37:
b3:97:43:2e:a8:2a:8f:f0:a7:a5:91:0f:d7:b0:08:b6:7b:1a:
3d:7e:e9:1f:31:8a:04:35:b4:eb:ea:2e:c3:9b:a0:cd:31:4f:
a8:23:26:b7:8d:cf:c8:26:75:e8:61:7d:f0:0b:6c:b1:e1:d3:
e6:a6:03:7c:63:82:f8:04:30:d3:01:61:83:74:9b:ef:dd:3a:
61:37:a6:d9:e1:2f:66:4b:58:38:a7:d2:df:d2:53:fd:90:4d:
fe:5c:65:cb:30:6a:64:0a:78:c2:1a:17:0d:47:ed:27:4b:ed:
d3:4b:52:1b:ac:25:08:24:2d:e9:c3:19:16:a7:04:c5:16:86:
d8:e0:d5:33:cd:5d:f8:18:c3:cd:c0:f5:41:53:26:a7:bd:ee:
07:7c:18:7a:65:6f:d1:9c:5e:cb:19:ba:56:f0:15:14:7b:41:
00:a7:71:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:19 2024 by rpki-client on console-ams.rpki-client.org