Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/44d603-fbf5-459b-a0ba-d2763c007752/1/O6uRR5B1usVkIp4_ZwhYpoRDG18.roa
File: O6uRR5B1usVkIp4_ZwhYpoRDG18.roa (raw, json)
Hash identifier: vPOIwf+zEWtTxwWgE7JSNRYkkDpd9Ajsl4ZVwSeTcJg=
Subject key identifier: 3B:AB:91:47:90:75:BA:C5:64:22:9E:3F:67:08:58:A6:84:43:1B:5F
Certificate issuer: /CN=6603ed4c78454250116f105eb6961dc29e1dbc6c
Certificate serial: 01856B8A2DE2D811DF7E45AE14286534644A
Authority key identifier: 66:03:ED:4C:78:45:42:50:11:6F:10:5E:B6:96:1D:C2:9E:1D:BC:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgPtTHhFQlARbxBetpYdwp4dvGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/44d603-fbf5-459b-a0ba-d2763c007752/1/O6uRR5B1usVkIp4_ZwhYpoRDG18.roa
Signing time: Sun 01 Jan 2023 04:14:55 +0000
ROA not before: Sun 01 Jan 2023 04:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49266
IP address blocks: 91.207.216.0/23 maxlen: 23
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:8a:2d:e2:d8:11:df:7e:45:ae:14:28:65:34:64:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6603ed4c78454250116f105eb6961dc29e1dbc6c
Validity
Not Before: Jan 1 04:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3bab91479075bac564229e3f670858a684431b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:f8:1d:0d:fe:8c:13:65:2a:32:25:4a:48:17:
25:8c:43:54:4e:f9:f5:b1:09:52:00:a0:d9:07:28:
ed:5f:d3:19:38:5d:2d:ae:fd:e0:97:ee:8c:50:15:
36:5c:de:b7:d2:40:fc:1b:cf:97:1c:67:ec:47:91:
08:ed:99:7d:4b:46:01:80:9a:17:08:1a:b1:b1:a0:
fc:5e:56:1e:00:8e:20:25:91:99:f8:19:78:ef:8d:
1b:e3:db:0f:31:01:d0:83:07:25:2b:ef:e8:56:f6:
47:99:6e:52:9b:00:69:41:f5:7e:87:f1:1b:b2:13:
58:84:9c:a8:77:9e:2c:68:50:31:49:4b:4f:d6:85:
c9:e6:04:f7:cf:0b:68:9f:63:79:b2:8d:fb:95:3d:
e7:bb:94:0b:7e:a2:d0:92:50:f9:48:f8:1b:0b:ca:
cb:70:1e:76:a6:43:84:b4:5d:d4:e3:dd:ef:46:5f:
c5:88:fb:4a:6d:a7:ec:a5:36:42:67:dd:44:24:91:
a5:61:5c:e1:12:df:a2:ba:65:23:23:1b:64:51:f5:
49:41:39:0f:5e:e0:3e:12:24:e7:fc:cb:f1:e7:bc:
ff:9b:93:17:b2:74:0a:c8:7b:57:7f:14:cc:42:38:
2b:02:d5:3a:0e:9f:78:03:e3:8c:9d:7f:8b:c4:95:
63:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:AB:91:47:90:75:BA:C5:64:22:9E:3F:67:08:58:A6:84:43:1B:5F
X509v3 Authority Key Identifier:
keyid:66:03:ED:4C:78:45:42:50:11:6F:10:5E:B6:96:1D:C2:9E:1D:BC:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgPtTHhFQlARbxBetpYdwp4dvGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/44d603-fbf5-459b-a0ba-d2763c007752/1/O6uRR5B1usVkIp4_ZwhYpoRDG18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/44d603-fbf5-459b-a0ba-d2763c007752/1/ZgPtTHhFQlARbxBetpYdwp4dvGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.207.216.0/23
Signature Algorithm: sha256WithRSAEncryption
5d:90:82:39:3a:4b:05:41:b9:55:15:c9:10:e3:6b:ae:5e:3f:
26:4e:e8:35:c2:d1:0e:e9:77:d1:8b:53:48:66:0f:53:56:91:
4e:4f:1c:dd:83:24:7f:f6:5c:34:68:81:c8:6f:bd:0d:a7:cb:
bf:b1:0a:d1:8d:d0:49:57:4a:35:f6:f1:0f:42:eb:bf:30:bb:
bc:20:f9:10:99:07:34:34:b3:78:31:47:8d:34:3c:c0:78:5d:
30:43:52:9b:f4:d1:a9:89:e9:fb:34:ae:80:a3:a5:c5:1c:ea:
0b:1b:7a:89:c8:95:5a:7d:bd:c1:17:9b:d2:54:60:d5:9d:66:
ca:ea:1e:e7:49:d3:3b:e5:b7:89:dd:af:52:86:fb:03:86:99:
13:91:73:15:f9:d8:a3:7c:67:f6:7f:2b:5d:f2:64:97:ab:0b:
a2:60:db:6a:25:b1:a4:fa:66:a4:b4:60:f1:93:b1:63:c4:ef:
f8:f4:1a:e1:a1:63:15:b1:54:e2:40:03:9d:7a:4c:a6:c7:c9:
e6:ed:ab:aa:70:ed:23:aa:62:d8:e7:2f:ba:ff:b9:55:23:a3:
ca:2b:2b:d3:f7:7a:8b:94:8f:10:84:7a:58:ba:5d:78:28:67:
8c:3e:70:67:40:3f:ae:dc:43:cc:ab:c6:8d:d5:8f:f6:2c:53:
55:12:b3:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 06:17:01 2024 by rpki-client on console-ams.rpki-client.org