Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/vVszNlhETcoff3_pTY3n7JRYUtI.roa
File: vVszNlhETcoff3_pTY3n7JRYUtI.roa (raw, json)
Hash identifier: vnbmY/vNDfhp8jU1Ge9PI6YYRbh2UDKhSXfeEUUdk8Y=
Subject key identifier: BD:5B:33:36:58:44:4D:CA:1F:7F:7F:E9:4D:8D:E7:EC:94:58:52:D2
Certificate issuer: /CN=2ff6182beb7b82c8573df8b6d51044d6c6724e82
Certificate serial: 018F548F1E62C5DF1133F37E7AE1A965EDC8
Authority key identifier: 2F:F6:18:2B:EB:7B:82:C8:57:3D:F8:B6:D5:10:44:D6:C6:72:4E:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L_YYK-t7gshXPfi21RBE1sZyToI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/vVszNlhETcoff3_pTY3n7JRYUtI.roa
Signing time: Tue 07 May 2024 19:36:56 +0000
ROA not before: Tue 07 May 2024 19:36:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 40866
IP address blocks: 91.198.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 May 2024 16:41:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:54:8f:1e:62:c5:df:11:33:f3:7e:7a:e1:a9:65:ed:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ff6182beb7b82c8573df8b6d51044d6c6724e82
Validity
Not Before: May 7 19:36:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd5b333658444dca1f7f7fe94d8de7ec945852d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:14:df:10:9c:cf:f4:3d:4a:ae:1a:14:f5:7e:
71:c4:ef:dd:df:1a:b8:34:e6:e4:7b:c1:f0:a0:5c:
12:f1:04:b8:b2:09:86:0d:b0:34:11:70:c6:c0:6a:
b9:3c:46:46:8c:cd:2a:59:ca:61:67:4c:6d:04:83:
01:8f:d5:20:6f:e9:07:9d:87:b6:fa:1d:fa:95:0f:
e2:91:88:a9:88:88:97:42:d5:a5:04:ea:a5:f2:25:
9e:93:6f:b0:a2:5d:e6:da:78:b2:26:1f:ff:c4:7c:
c8:9d:69:a1:a1:c5:e3:3c:9d:b5:e2:e7:ab:72:18:
7d:cf:0a:8d:b4:d9:dc:3f:26:55:39:b7:dd:a1:b6:
94:87:89:d1:2f:f3:18:db:bc:17:e3:8d:bc:fc:b2:
0a:09:79:8f:5e:55:4a:98:87:68:19:88:22:02:8f:
cf:d0:a3:ac:52:51:c6:e9:9e:c2:ae:07:04:8a:30:
cc:dd:26:68:6e:24:8e:1c:dd:bd:c8:13:f5:f1:fb:
d3:24:27:eb:2a:14:bd:5b:4c:4b:6a:09:73:4b:bf:
58:07:83:b3:1a:df:45:74:e1:3b:70:97:3a:65:d3:
e5:8f:18:cd:f1:89:0a:1d:68:f5:da:68:c5:5f:fe:
e2:71:60:39:83:55:a7:ea:70:d2:8b:d3:0c:6a:d0:
1f:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:5B:33:36:58:44:4D:CA:1F:7F:7F:E9:4D:8D:E7:EC:94:58:52:D2
X509v3 Authority Key Identifier:
keyid:2F:F6:18:2B:EB:7B:82:C8:57:3D:F8:B6:D5:10:44:D6:C6:72:4E:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L_YYK-t7gshXPfi21RBE1sZyToI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/vVszNlhETcoff3_pTY3n7JRYUtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/a8ecfb-7355-4cfe-84bf-b776a220456b/1/L_YYK-t7gshXPfi21RBE1sZyToI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.95.0/24
Signature Algorithm: sha256WithRSAEncryption
63:c9:00:cc:56:62:b5:9e:b9:95:cc:07:71:41:72:66:05:e3:
e4:b2:f2:e6:b1:ba:27:16:6e:1c:77:df:79:cd:f4:7b:79:67:
49:bf:5c:bb:84:c9:cc:08:af:7f:a5:6e:08:3d:a6:14:f1:2c:
f6:92:ea:b9:ae:9e:64:89:7c:08:bb:04:13:9c:39:47:f0:50:
ff:dd:a7:f4:6a:46:cc:eb:40:2f:23:fc:0d:c4:f9:de:82:50:
87:7a:7e:97:dc:64:51:5b:bc:00:ae:79:79:a2:d2:76:fa:0c:
7f:8e:38:75:c1:e3:0a:42:cb:72:4f:00:96:28:d3:a1:6f:7b:
41:01:13:6c:77:21:4e:21:a1:0d:53:ef:ee:48:91:44:44:63:
cb:35:a1:86:30:8a:69:39:0a:1c:4e:d0:2a:76:80:3d:ad:fc:
53:4b:fb:2d:05:48:a3:ba:e1:d4:fd:1c:67:23:a2:ec:0a:d8:
5d:11:75:b0:be:c6:f7:ed:dc:ac:b3:a8:50:ed:21:8d:75:24:
b1:f2:ea:a8:3c:2f:e7:85:14:f1:9c:b2:09:15:1b:36:07:58:
c1:60:27:02:ca:5e:94:05:f8:eb:2b:61:b2:6d:e8:02:ad:59:
a7:bd:12:6d:5a:05:8d:39:bb:28:13:03:1b:55:e1:26:38:57:
64:73:9c:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:40:00 2025 by rpki-client