Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/6e12c8-9dd7-478b-9071-1423e4a07296/1/Pvz0ja_3-WakyZs4OCy3ltWQG1g.roa
File: Pvz0ja_3-WakyZs4OCy3ltWQG1g.roa (raw, json)
Hash identifier: 0qNA2gaMuUz9A1TkMZo7nhqXaGVSxE3zIWmVd5wfc90=
Subject key identifier: 3E:FC:F4:8D:AF:F7:F9:66:A4:C9:9B:38:38:2C:B7:96:D5:90:1B:58
Certificate issuer: /CN=620d0fcb4b94e411a8de26209dc15e32dfa89aa0
Certificate serial: 0185E9A17F73D607A1E1277ACC18BA7D7A1F
Authority key identifier: 62:0D:0F:CB:4B:94:E4:11:A8:DE:26:20:9D:C1:5E:32:DF:A8:9A:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yg0Py0uU5BGo3iYgncFeMt-omqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/6e12c8-9dd7-478b-9071-1423e4a07296/1/Pvz0ja_3-WakyZs4OCy3ltWQG1g.roa
Signing time: Wed 25 Jan 2023 15:52:33 +0000
ROA not before: Wed 25 Jan 2023 15:52:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200195
IP address blocks: 91.211.114.0/24 maxlen: 32
Validation: Failed, certificate revoked on Mon 01 Jan 2024 10:30:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:a1:7f:73:d6:07:a1:e1:27:7a:cc:18:ba:7d:7a:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=620d0fcb4b94e411a8de26209dc15e32dfa89aa0
Validity
Not Before: Jan 25 15:52:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3efcf48daff7f966a4c99b38382cb796d5901b58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ed:d3:51:de:5c:48:ac:af:6b:47:20:da:70:
1b:9f:fc:53:47:34:0b:a8:a0:6c:d6:af:81:0f:c9:
bf:ea:63:f0:c1:5d:0b:ee:09:94:c6:df:5b:3e:f5:
4f:04:0a:64:f3:7e:05:87:f3:29:7e:f1:cf:ae:ef:
ff:8a:17:3a:d7:ea:1a:3e:dc:0e:bf:1e:23:97:22:
a1:05:10:8b:b4:3d:e8:0c:57:0e:d6:ff:28:90:d0:
b2:df:5e:9d:ab:83:41:bf:d1:4c:51:34:56:42:f1:
c7:41:64:ef:ab:83:29:d3:59:7f:9b:ab:83:92:c3:
42:c8:e7:79:10:62:a8:b3:49:fb:14:d4:d1:99:09:
4d:c1:21:c2:e7:d3:a7:2a:e1:3e:2b:c5:f1:27:c9:
bb:28:90:ec:31:b2:be:90:a8:ea:41:4e:b8:e0:a2:
1d:b7:67:9b:08:39:61:e2:2b:ee:d4:fa:13:e6:17:
fe:c1:8f:eb:11:48:4b:75:3a:34:d6:d5:0d:87:62:
85:8a:9c:87:9c:7e:1a:d2:c4:42:65:7b:2c:05:b3:
f5:e4:49:40:ae:80:4a:5a:54:1b:5f:ed:9c:5f:4a:
0f:c5:4a:0c:c8:6f:97:0d:19:be:e6:84:22:45:e4:
a1:a6:b4:29:92:cb:90:f4:a1:9f:3d:99:a1:69:3e:
1f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:FC:F4:8D:AF:F7:F9:66:A4:C9:9B:38:38:2C:B7:96:D5:90:1B:58
X509v3 Authority Key Identifier:
keyid:62:0D:0F:CB:4B:94:E4:11:A8:DE:26:20:9D:C1:5E:32:DF:A8:9A:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yg0Py0uU5BGo3iYgncFeMt-omqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/6e12c8-9dd7-478b-9071-1423e4a07296/1/Pvz0ja_3-WakyZs4OCy3ltWQG1g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/6e12c8-9dd7-478b-9071-1423e4a07296/1/Yg0Py0uU5BGo3iYgncFeMt-omqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.211.114.0/24
Signature Algorithm: sha256WithRSAEncryption
89:bc:19:ae:09:27:46:4c:17:5a:f9:26:8a:9a:6c:ce:0b:66:
fa:cb:e3:45:f5:d5:78:3e:5e:ca:64:14:1d:bc:b5:87:ac:c5:
0e:3e:6d:4d:55:b2:15:cd:1b:c3:29:0a:57:ef:c9:1c:62:75:
bb:2f:ce:7e:d8:ad:a5:b2:14:43:3e:a2:3c:3b:16:b4:a0:d5:
7a:d6:4e:74:68:10:93:e9:38:d0:ff:7c:ff:a6:1c:4f:c1:38:
94:6e:69:ea:d8:70:7e:53:23:59:95:f2:e4:71:09:df:7b:3f:
99:f4:b8:ca:46:b9:13:b3:f7:6a:7a:e6:8f:9c:cb:18:02:d9:
e6:40:01:ac:73:0a:40:98:d2:e1:32:43:be:b1:41:c0:e3:d3:
05:21:ac:44:4d:ef:10:9e:8f:cb:a7:54:2e:45:0b:c9:66:a8:
7e:03:18:52:7c:67:fa:56:e3:d8:8d:1a:7c:a8:2d:c2:15:16:
5e:61:82:29:98:da:73:14:f5:1f:bb:f7:f2:4a:af:e7:a8:2d:
38:33:d0:82:86:6f:93:ea:07:e7:6a:1a:b1:bb:9b:ed:2a:3b:
c3:20:11:c5:cb:3b:81:1a:fe:35:3f:f3:7f:5f:f4:6f:d0:55:
ae:72:7a:dc:dd:e8:81:a3:33:13:71:50:54:5b:32:a3:e1:d2:
9e:ee:69:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:33 2024 by rpki-client on console-fra.rpki-client.org