Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yX8xM4tdVSqGn_OwXx6tYf2ypDs.roa
File: yX8xM4tdVSqGn_OwXx6tYf2ypDs.roa (raw, json)
Hash identifier: YMbCoM62hv2ISteSUHNv82RssYOUMMYEgAC5BDGUk/8=
Subject key identifier: C9:7F:31:33:8B:5D:55:2A:86:9F:F3:B0:5F:1E:AD:61:FD:B2:A4:3B
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 018704AAFD996945597DB429E7E9D4E2A959
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yX8xM4tdVSqGn_OwXx6tYf2ypDs.roa
Signing time: Tue 21 Mar 2023 14:55:27 +0000
ROA not before: Tue 21 Mar 2023 14:55:27 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 41418
IP address blocks: 91.235.48.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 02:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:04:aa:fd:99:69:45:59:7d:b4:29:e7:e9:d4:e2:a9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: Mar 21 14:55:27 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c97f31338b5d552a869ff3b05f1ead61fdb2a43b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f9:d6:4d:67:b5:b4:b5:ad:22:5a:ae:42:9f:
01:9e:bd:05:ca:6f:a7:bc:f9:ae:2c:8a:f5:19:c8:
b7:b8:bd:99:1f:5f:f4:80:9b:be:23:b0:46:a8:40:
6f:14:4f:26:2c:ce:6f:a5:0c:3f:18:b8:06:ea:b8:
98:e0:c5:e9:5b:2a:7d:73:8c:fd:31:3c:46:0d:f2:
a0:4b:17:78:f3:ad:45:a4:e5:b6:b1:a7:5b:b0:e8:
02:14:90:5d:a1:6b:db:83:65:f8:ed:15:49:e2:48:
95:23:d3:e8:a1:14:75:a9:6d:f8:bd:ec:3a:fb:b1:
fc:2b:b0:62:a5:6c:35:62:86:14:b8:12:a7:3e:39:
39:88:2d:23:0f:f4:f5:d3:1a:92:9c:70:ea:51:ad:
5a:0b:55:95:62:10:49:0e:91:66:6b:ec:1b:d9:63:
62:d6:ea:28:da:a1:fd:bf:77:bd:e0:c8:96:9d:68:
94:70:07:9a:41:3f:f1:9f:61:5f:81:96:fe:60:8a:
5d:43:19:fd:96:bf:81:09:33:3e:35:39:c8:83:94:
3a:4e:2b:ce:d9:e7:00:c4:fb:e3:b0:95:95:db:e7:
98:94:36:25:4f:98:60:fe:12:c5:16:75:41:86:10:
f7:d6:4e:66:e6:eb:97:a8:f1:b6:0d:f1:25:5f:21:
da:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:7F:31:33:8B:5D:55:2A:86:9F:F3:B0:5F:1E:AD:61:FD:B2:A4:3B
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/yX8xM4tdVSqGn_OwXx6tYf2ypDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.48.0/22
Signature Algorithm: sha256WithRSAEncryption
b7:2d:aa:01:cb:4f:8a:98:96:c4:7f:7c:fd:8d:f4:d0:38:8e:
45:4d:1d:86:91:00:03:a4:fe:fe:e6:b1:d8:69:4a:20:ae:f1:
c2:76:40:dc:24:1d:2f:b0:fc:82:67:e8:74:36:07:4b:c0:6f:
9f:38:83:81:7f:1f:aa:ae:23:f9:ff:43:eb:2d:71:29:e4:c6:
68:53:60:eb:6b:91:e0:9c:2b:64:5a:b0:fa:ba:ce:1e:a7:e6:
20:8e:2c:ef:22:6c:a7:87:41:76:77:9b:31:c1:6b:bc:71:8e:
a2:a8:a8:78:39:38:9b:5a:0b:c6:dd:ca:c3:0f:96:96:1a:e7:
36:44:a2:5c:3c:c8:b4:26:a9:83:6b:f5:80:e9:81:84:6c:dc:
8a:82:90:12:ce:c4:96:d6:0e:fd:58:1c:f1:d5:6d:ca:e6:09:
70:55:2f:4e:da:7c:e2:b1:42:3b:48:69:57:08:42:18:e7:3c:
b2:42:a0:c3:e0:3c:fc:bb:e3:80:cf:b2:35:af:8e:df:59:81:
36:ff:e9:89:99:13:14:db:ef:46:a5:dd:2e:0c:54:61:35:a3:
74:7b:28:cf:2f:13:f2:06:5c:1b:38:c8:00:86:f4:68:61:e1:
74:65:fd:5d:7a:e5:c9:56:b2:cf:cd:4b:62:37:29:ed:42:99:
31:f0:0d:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org