Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/pI1a0Y7k_xocl273noBGwWOPe9s.roa
File: pI1a0Y7k_xocl273noBGwWOPe9s.roa (raw, json)
Hash identifier: POBdxNnv4uIU9y1fD2SiB1JCTzVRLxqLKln8FfXEmIY=
Subject key identifier: A4:8D:5A:D1:8E:E4:FF:1A:1C:97:6E:F7:9E:80:46:C1:63:8F:7B:DB
Certificate issuer: /CN=cf2c30f34493c452a173e4de0c462c83a711c338
Certificate serial: 01856FD527EA10DB6FB0ADB41F564F6CC18D
Authority key identifier: CF:2C:30:F3:44:93:C4:52:A1:73:E4:DE:0C:46:2C:83:A7:11:C3:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyww80STxFKhc-TeDEYsg6cRwzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/pI1a0Y7k_xocl273noBGwWOPe9s.roa
Signing time: Mon 02 Jan 2023 00:15:18 +0000
ROA not before: Mon 02 Jan 2023 00:15:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201664
IP address blocks: 91.215.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:31:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d5:27:ea:10:db:6f:b0:ad:b4:1f:56:4f:6c:c1:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2c30f34493c452a173e4de0c462c83a711c338
Validity
Not Before: Jan 2 00:15:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a48d5ad18ee4ff1a1c976ef79e8046c1638f7bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:b1:d7:10:fc:a8:be:3f:65:28:30:e7:3b:c3:
24:6f:3d:05:ab:e6:73:cf:02:3b:09:1e:d9:84:4e:
76:14:d2:26:b4:5a:b2:7b:5c:70:a7:3c:bc:05:ff:
b1:b1:88:f8:a0:49:dc:52:7a:8f:0f:87:f6:89:41:
04:c5:83:e6:11:53:5f:fa:43:4b:91:26:8c:23:f3:
9e:53:1c:98:70:77:6e:d5:d7:3e:97:8e:de:0f:73:
f4:c0:70:8d:3d:3e:e3:8a:21:91:9c:d4:78:a3:52:
ff:0d:dc:f4:13:ba:5f:ff:af:b0:da:74:88:56:f2:
d3:b0:2d:47:73:ae:6d:76:38:e6:fd:3d:9b:38:c6:
a9:10:39:49:1c:a7:88:b8:ae:4b:55:8a:29:82:53:
03:db:d5:f0:4d:b9:b8:ed:8e:25:a9:07:c4:26:d4:
9c:8a:b7:54:be:84:08:16:b4:d0:0b:9c:da:49:f8:
3c:9c:10:c0:4a:e6:65:00:05:63:e1:85:aa:cc:9e:
59:ce:c1:f0:81:cd:92:45:e5:76:c9:80:e5:c4:81:
f2:ab:d7:99:8f:33:5d:b9:5e:a6:59:df:42:fa:c7:
b9:3c:01:73:7f:f6:a6:8c:4b:9c:44:e9:c6:ea:3e:
48:5c:cd:35:5b:e5:c6:2e:a3:1d:62:b8:d6:0a:03:
a2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:8D:5A:D1:8E:E4:FF:1A:1C:97:6E:F7:9E:80:46:C1:63:8F:7B:DB
X509v3 Authority Key Identifier:
keyid:CF:2C:30:F3:44:93:C4:52:A1:73:E4:DE:0C:46:2C:83:A7:11:C3:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyww80STxFKhc-TeDEYsg6cRwzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/pI1a0Y7k_xocl273noBGwWOPe9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/zyww80STxFKhc-TeDEYsg6cRwzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.86.0/24
Signature Algorithm: sha256WithRSAEncryption
55:4b:5e:d4:97:76:3b:68:22:16:2e:92:34:63:8b:35:96:85:
a6:ed:7d:65:28:6f:b5:b7:2d:00:70:6f:1b:fe:30:e8:49:12:
a1:a0:50:63:46:91:d3:a4:6f:76:69:5f:06:4a:33:39:f8:d7:
29:c2:3a:ea:e7:2f:98:ae:4a:0e:59:1a:e7:0e:9f:5f:c8:04:
22:01:d1:fb:c3:6f:65:7a:78:12:cf:2d:b2:e9:26:c0:e6:f2:
64:c0:b6:96:7a:cf:24:be:89:f1:8c:cd:ba:1f:9c:0e:be:7c:
18:26:5e:7b:fd:fd:ce:8b:0f:f7:b1:4a:35:bc:17:d7:01:93:
49:bb:ca:f1:90:26:35:a8:2d:53:fe:3e:23:a1:0a:d9:a7:24:
6b:be:8f:11:fe:e0:85:2a:85:ed:bc:cd:5b:99:06:b1:23:44:
47:80:e1:cc:31:07:83:36:6b:a9:8d:59:cd:fd:d3:7c:7e:80:
c8:aa:0e:44:e3:f7:ba:07:a6:85:33:e0:f0:01:2e:13:00:52:
98:4e:76:80:6b:36:4b:45:29:a0:f3:35:79:c4:8e:53:47:95:
72:50:15:5e:18:dc:35:f6:32:db:ce:e0:9b:49:37:bf:ef:18:
7e:44:6f:fe:62:57:f0:30:7e:cc:0f:64:3c:9f:32:a5:d9:27:
03:a2:a6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:55 2024 by rpki-client on console-fra.rpki-client.org