Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/4YY48dTg-WM2z84p9OMcHjYVnOM.roa
File: 4YY48dTg-WM2z84p9OMcHjYVnOM.roa (raw, json)
Hash identifier: WVDdhAH24gEKPtS1ynMlgucSIveyAT1tTXOCoa6Py8E=
Subject key identifier: E1:86:38:F1:D4:E0:F9:63:36:CF:CE:29:F4:E3:1C:1E:36:15:9C:E3
Certificate issuer: /CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Certificate serial: 01856ED4F931323823696AEBF8A1403AAC2F
Authority key identifier: 92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/4YY48dTg-WM2z84p9OMcHjYVnOM.roa
Signing time: Sun 01 Jan 2023 19:35:29 +0000
ROA not before: Sun 01 Jan 2023 19:35:29 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202880
IP address blocks: 91.107.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:f9:31:32:38:23:69:6a:eb:f8:a1:40:3a:ac:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7c2a1072d73507adbf6507de68aaac01785c0
Validity
Not Before: Jan 1 19:35:29 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e18638f1d4e0f96336cfce29f4e31c1e36159ce3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d6:b2:04:8c:9b:6e:e2:8f:60:1e:73:91:25:
6c:37:c2:75:a9:67:72:c6:aa:b0:5b:24:8c:af:bd:
52:be:9c:be:ae:87:a2:8e:7c:67:cd:f0:23:db:c4:
54:4b:72:67:35:a6:3f:39:78:75:15:08:5f:ab:44:
37:82:24:2f:6b:3f:de:1b:70:30:ad:c8:11:cf:5c:
a7:d7:a0:51:1d:3e:4b:2c:ee:d9:60:ba:d3:02:5b:
32:73:57:4b:b6:47:92:44:91:bd:65:70:b3:31:17:
d7:13:97:07:f0:7a:a0:64:d8:05:5a:c2:00:f0:70:
2b:cb:26:0f:bb:71:e7:f1:55:75:da:c4:5b:a7:cf:
c9:66:83:21:44:78:d3:b7:2b:5d:1f:40:cc:63:ca:
1b:18:ad:7e:28:0d:1b:c9:2b:ec:92:3d:15:19:bc:
64:fc:7c:70:4f:57:e0:d2:ba:7c:c2:8b:67:1f:ac:
51:6c:6c:14:7a:27:7f:96:b4:73:12:2c:14:46:a6:
27:96:0c:e5:a5:8d:b0:23:1b:6f:27:9f:60:34:66:
69:0a:ee:c5:57:af:e0:24:1c:13:f8:95:a4:02:c1:
de:a1:1d:78:44:30:73:37:21:16:8b:21:42:24:6a:
44:5e:a0:ef:34:37:69:55:86:98:3c:7b:fd:a1:ef:
ab:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:86:38:F1:D4:E0:F9:63:36:CF:CE:29:F4:E3:1C:1E:36:15:9C:E3
X509v3 Authority Key Identifier:
keyid:92:D7:C2:A1:07:2D:73:50:7A:DB:F6:50:7D:E6:8A:AA:C0:17:85:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktfCoQctc1B62_ZQfeaKqsAXhcA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/4YY48dTg-WM2z84p9OMcHjYVnOM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9cff7c-f05a-4e02-bea7-89e56c80d1d0/1/ktfCoQctc1B62_ZQfeaKqsAXhcA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.107.114.0/24
Signature Algorithm: sha256WithRSAEncryption
80:59:2d:fa:5e:ca:bf:4a:dc:26:87:c1:f2:cb:fb:3c:ef:1d:
36:99:4b:2d:30:43:12:0a:bb:ab:54:3a:dc:39:52:2b:e9:a2:
90:c6:55:7e:2e:8f:63:f9:0d:36:36:59:a8:ca:ad:18:36:5a:
2a:84:f8:ae:eb:5a:91:60:37:99:38:64:00:c4:33:5f:6b:7f:
3b:75:14:10:da:6a:c1:a7:19:e2:f3:13:dc:d5:92:e8:ec:26:
09:79:0d:6b:a4:9a:9b:94:1a:07:4c:15:d5:7e:2a:eb:a0:42:
d6:55:4f:77:0f:af:0e:65:e9:ba:5b:a8:1a:83:2b:ec:77:8a:
66:4a:de:24:b9:68:41:80:b5:f9:24:51:8a:e5:85:b5:a0:d1:
0b:43:a6:f8:3a:01:8d:0b:1a:d7:10:86:49:1a:9c:12:62:75:
4d:fe:43:b7:8b:59:76:ac:ba:23:4e:e3:45:76:ad:be:01:e1:
fb:93:8e:60:24:cf:f5:eb:8c:8a:7f:ca:77:1c:6b:59:98:b9:
c8:f6:c7:e9:7c:10:62:2e:8f:76:e5:20:c9:1e:85:8e:4a:96:
53:f6:35:dc:02:99:7c:d0:7c:ad:e8:de:fe:6a:f5:d5:dd:1e:
c8:27:33:17:4a:8f:f1:98:d5:6e:62:24:2e:af:86:33:bf:98:
67:d4:cc:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:24 2024 by rpki-client on console-fra.rpki-client.org