Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/2a3655-941b-46d8-8789-45a7b6978493/1/LYA7o2a1z-fOz6n3d61ohN52y9o.roa
File: LYA7o2a1z-fOz6n3d61ohN52y9o.roa (raw, json)
Hash identifier: vTJPMMKshhVHgtDmhFu1xWNMdt7cPrf7dyBi0QazEmY=
Subject key identifier: 2D:80:3B:A3:66:B5:CF:E7:CE:CF:A9:F7:77:AD:68:84:DE:76:CB:DA
Certificate issuer: /CN=c070ee8dc8378086960182e3309226717e83e407
Certificate serial: 018713C3BAB77076045D9646975FCC50700F
Authority key identifier: C0:70:EE:8D:C8:37:80:86:96:01:82:E3:30:92:26:71:7E:83:E4:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHDujcg3gIaWAYLjMJImcX6D5Ac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/2a3655-941b-46d8-8789-45a7b6978493/1/LYA7o2a1z-fOz6n3d61ohN52y9o.roa
Signing time: Fri 24 Mar 2023 13:16:47 +0000
ROA not before: Fri 24 Mar 2023 13:16:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45043
IP address blocks: 91.215.70.0/24 maxlen: 24
91.215.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 Mar 2023 14:39:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:13:c3:ba:b7:70:76:04:5d:96:46:97:5f:cc:50:70:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c070ee8dc8378086960182e3309226717e83e407
Validity
Not Before: Mar 24 13:16:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2d803ba366b5cfe7cecfa9f777ad6884de76cbda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c6:2d:95:d5:a4:bd:e5:39:7f:04:f2:55:db:
e8:7f:66:1f:2f:46:df:c9:ba:90:20:b6:72:95:2b:
21:73:87:ef:db:60:01:fe:4c:21:cc:f6:86:42:99:
3e:52:8c:33:fc:70:db:e0:2c:f0:54:18:59:17:96:
80:30:9e:25:c5:f6:94:e6:00:ca:85:1d:27:3f:74:
a6:05:7e:50:75:33:42:57:a4:8f:17:e4:ca:44:80:
72:61:4c:3e:36:14:e2:4e:90:a3:d2:48:02:cf:46:
6c:25:6f:7c:50:6c:30:a8:6f:7e:21:e8:46:65:1f:
6c:9d:f7:46:92:fd:8a:00:93:37:cd:c3:6f:31:a4:
f1:e9:ec:69:01:55:61:61:14:91:38:de:cd:be:6a:
0a:ba:bc:5a:32:33:be:fd:a2:31:77:f0:7d:2a:56:
9a:a8:fa:a2:98:fa:b6:c3:86:82:4b:8f:61:fb:7f:
a1:72:ef:ab:3f:87:3b:a1:2f:7f:c1:ac:6c:48:02:
93:9a:80:2b:66:d2:91:5b:39:a0:c8:a5:45:ab:22:
df:59:42:58:d3:2d:46:23:80:1c:2a:de:2b:4a:f4:
fb:53:fc:c3:1a:b0:e0:ba:5d:49:2e:e2:19:4e:36:
e2:f4:29:e5:52:e0:64:37:da:ee:46:b5:7f:ad:f3:
ac:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:80:3B:A3:66:B5:CF:E7:CE:CF:A9:F7:77:AD:68:84:DE:76:CB:DA
X509v3 Authority Key Identifier:
keyid:C0:70:EE:8D:C8:37:80:86:96:01:82:E3:30:92:26:71:7E:83:E4:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHDujcg3gIaWAYLjMJImcX6D5Ac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/2a3655-941b-46d8-8789-45a7b6978493/1/LYA7o2a1z-fOz6n3d61ohN52y9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/2a3655-941b-46d8-8789-45a7b6978493/1/wHDujcg3gIaWAYLjMJImcX6D5Ac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.70.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:68:11:31:70:d6:1c:84:c8:76:b6:6f:3e:04:85:97:90:b2:
95:92:44:2d:eb:f6:07:cd:d0:fe:45:fa:f9:6a:77:7a:0f:19:
ab:b0:ff:b2:a9:cc:9c:a5:f2:c7:c6:a4:ba:75:17:ef:1d:14:
83:ac:18:66:73:fa:ae:98:77:2c:ac:35:eb:7d:42:62:7d:0a:
bf:6d:21:57:9a:8a:5a:3a:37:d7:45:85:58:62:75:c3:16:13:
c9:0b:fb:28:68:bd:b0:ec:cf:7a:ba:8b:b8:f2:40:b8:e2:c7:
91:04:b3:80:2d:9a:e3:e7:e3:dd:e7:93:ba:89:fc:8d:71:ea:
6d:ea:9b:4b:96:b5:a7:6f:cd:51:3a:db:85:f3:da:62:63:9b:
b7:96:74:4c:81:05:90:4d:ff:16:65:e4:df:4c:2c:51:23:33:
e9:98:b9:95:98:41:1e:80:93:11:c4:0d:7f:f0:98:53:c8:b6:
53:76:22:99:ab:54:b0:15:5e:e0:0f:5e:da:ca:d1:d3:ed:cd:
0b:83:4c:a5:cc:f9:e8:66:3f:18:67:98:85:35:f9:dc:5f:21:
61:94:c7:d1:8f:d8:de:90:7d:43:74:90:57:eb:b8:a2:b2:2d:
88:1b:59:b3:cd:19:f6:f3:6a:51:8c:fe:0e:c3:28:e8:46:86:
81:c2:dd:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:58 2024 by rpki-client on console-fra.rpki-client.org