Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/sk00C4-hEac9zvO3R8MoRNxvjVo.roa
File: sk00C4-hEac9zvO3R8MoRNxvjVo.roa (raw, json)
Hash identifier: odMOG8rJ2TTjewQSvktoRyNiocnYDyYroqU8kGdYs3U=
Subject key identifier: B2:4D:34:0B:8F:A1:11:A7:3D:CE:F3:B7:47:C3:28:44:DC:6F:8D:5A
Certificate issuer: /CN=8b6e65b82fe4007e82fd2db134cf42c6aec4e0bc
Certificate serial: 0185704BDD6FDAB706A6B87454DF737BE568
Authority key identifier: 8B:6E:65:B8:2F:E4:00:7E:82:FD:2D:B1:34:CF:42:C6:AE:C4:E0:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i25luC_kAH6C_S2xNM9Cxq7E4Lw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/sk00C4-hEac9zvO3R8MoRNxvjVo.roa
Signing time: Mon 02 Jan 2023 02:24:58 +0000
ROA not before: Mon 02 Jan 2023 02:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42586
IP address blocks: 91.225.52.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:4b:dd:6f:da:b7:06:a6:b8:74:54:df:73:7b:e5:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b6e65b82fe4007e82fd2db134cf42c6aec4e0bc
Validity
Not Before: Jan 2 02:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b24d340b8fa111a73dcef3b747c32844dc6f8d5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:9b:75:af:a7:9e:b2:a7:49:d2:2d:c2:09:8f:
4c:07:16:8c:07:d0:0d:36:fb:db:71:7a:45:59:a8:
df:1a:3b:c0:47:60:62:69:a1:78:8c:4b:61:97:4b:
c9:c5:ff:ae:0f:b7:0d:6b:36:a1:04:06:b2:a8:71:
44:2b:d7:61:e9:77:2e:cd:57:69:69:bb:0b:b3:f6:
0d:b5:84:14:2b:4b:b8:ca:91:df:1b:b0:27:9d:87:
9f:39:6f:db:ee:32:19:46:4c:fd:98:f6:d1:38:8d:
bb:91:6e:8a:d3:ac:99:27:11:fd:5f:1b:71:44:2c:
f1:4c:07:ba:89:83:6d:2a:ce:78:25:7a:02:a7:89:
7d:33:a9:db:ea:b3:d1:48:f0:46:41:b6:d4:89:29:
4f:12:33:2e:b2:f5:56:ba:98:43:59:9e:95:44:d3:
5d:e8:5c:b1:a8:4d:0c:fa:8e:b3:27:31:f8:e3:b1:
45:9c:4e:e8:2c:4a:a8:ee:eb:bf:62:a7:65:20:b8:
ed:c4:19:88:c6:df:37:0c:20:dc:47:a2:71:09:6b:
c2:3e:bc:60:07:5e:79:73:81:6e:f1:92:54:0f:25:
a9:84:54:6d:a3:c9:19:8e:78:dc:e3:a6:ff:53:7e:
94:f6:c3:a5:e5:1b:af:67:94:cd:3b:5f:95:73:04:
ae:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:4D:34:0B:8F:A1:11:A7:3D:CE:F3:B7:47:C3:28:44:DC:6F:8D:5A
X509v3 Authority Key Identifier:
keyid:8B:6E:65:B8:2F:E4:00:7E:82:FD:2D:B1:34:CF:42:C6:AE:C4:E0:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i25luC_kAH6C_S2xNM9Cxq7E4Lw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/sk00C4-hEac9zvO3R8MoRNxvjVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/7bd68c-a036-4cfe-b763-af90362bd3ba/1/i25luC_kAH6C_S2xNM9Cxq7E4Lw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.225.52.0/24
Signature Algorithm: sha256WithRSAEncryption
47:49:91:f2:39:2f:a0:ec:b9:32:3f:c9:be:41:a4:97:48:43:
13:63:84:0c:e8:cd:65:82:d7:8e:f4:3c:22:62:63:f9:d8:1b:
86:34:fe:a9:85:a7:1f:fa:0d:27:13:df:74:0d:0a:4d:5c:19:
2d:e6:c3:ae:d0:9c:ee:2e:e5:bf:27:4f:64:fd:40:d2:89:1d:
6e:e1:5a:e5:d7:09:16:f6:ce:d0:eb:56:5d:4f:02:59:4d:f3:
c8:24:94:95:15:6d:f9:ba:0e:f5:c6:a8:bc:c2:ec:85:21:55:
f2:55:89:ec:1c:45:7a:ed:d7:c2:ca:e9:3d:b1:05:40:f1:d0:
09:2b:65:0b:b8:84:2d:1f:23:37:40:07:59:e6:6e:07:58:bf:
74:c7:6d:2a:ac:dd:ae:50:10:17:e8:04:6f:64:37:85:08:9a:
53:6b:4d:7b:f8:bd:3d:8b:09:35:1b:41:43:3c:87:25:f0:d4:
3e:76:1f:84:4b:e4:fe:f9:26:7f:1f:27:49:3c:06:67:37:fd:
bc:41:cd:27:80:54:93:dc:ea:7e:93:78:2f:6a:c0:f5:91:b0:
58:73:bd:9a:98:18:11:a7:99:7d:14:02:93:b7:e2:1b:e9:75:
3a:04:82:2d:2c:75:2c:87:fe:8a:ed:e6:5c:b5:2b:98:2f:4c:
82:c1:5d:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:54 2024 by rpki-client on console-fra.rpki-client.org