Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/tRU3sBoa_hoNT2CglGEOeHqBE_4.roa
File: tRU3sBoa_hoNT2CglGEOeHqBE_4.roa (raw, json)
Hash identifier: E/z80UWMZW44aza+5uioB3Cbvgbxrl4IuGrFbHlI2kM=
Subject key identifier: B5:15:37:B0:1A:1A:FE:1A:0D:4F:60:A0:94:61:0E:78:7A:81:13:FE
Certificate issuer: /CN=cf2c30f34493c452a173e4de0c462c83a711c338
Certificate serial: 018CC94CC9ED1882A98DE5FD5D928E8D78DD
Authority key identifier: CF:2C:30:F3:44:93:C4:52:A1:73:E4:DE:0C:46:2C:83:A7:11:C3:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zyww80STxFKhc-TeDEYsg6cRwzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/tRU3sBoa_hoNT2CglGEOeHqBE_4.roa
Signing time: Tue 02 Jan 2024 08:31:42 +0000
ROA not before: Tue 02 Jan 2024 08:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201664
IP address blocks: 91.215.86.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 12 Jan 2024 13:27:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4c:c9:ed:18:82:a9:8d:e5:fd:5d:92:8e:8d:78:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf2c30f34493c452a173e4de0c462c83a711c338
Validity
Not Before: Jan 2 08:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b51537b01a1afe1a0d4f60a094610e787a8113fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e8:4f:bf:b0:b8:b2:60:ff:75:42:39:58:46:
f7:f3:81:bd:a9:81:54:0c:1d:cb:e6:5c:44:22:a1:
74:69:14:44:96:df:c6:86:0d:8c:e8:2c:5d:da:15:
b6:aa:a8:a7:e0:5c:2c:ea:c3:94:ca:88:b0:8e:67:
09:e5:1a:16:59:2f:ab:68:7d:b8:ec:41:09:16:11:
c2:d0:9e:d7:7c:66:51:86:c9:b2:d2:9d:4b:52:88:
d9:1c:78:48:5f:20:26:cb:ad:59:a4:c5:98:72:aa:
9c:c7:2b:a8:fb:76:7d:21:a3:fa:fc:00:62:a9:f6:
dc:10:6e:29:c6:1b:3a:03:b0:35:13:6a:5e:75:85:
39:dc:b4:e1:6d:c7:ad:ae:cb:46:dd:32:5a:1e:8a:
80:2f:f9:71:89:74:ef:86:64:ca:7e:b6:04:72:c7:
78:2f:d4:b5:a6:8e:f5:24:6d:b7:df:dc:3b:57:4c:
92:ee:89:ac:01:a4:31:4e:99:4d:e1:6d:ef:80:07:
d3:38:47:96:6b:d4:8d:b8:d4:91:70:f2:c7:79:7b:
33:de:bb:c4:a0:5b:22:30:a6:21:7c:49:33:4b:45:
97:13:8b:fb:01:11:4d:ef:0a:c2:77:1e:f7:79:a3:
5f:91:10:a5:38:bb:a7:16:49:b0:c6:7c:1a:d4:7e:
c8:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:15:37:B0:1A:1A:FE:1A:0D:4F:60:A0:94:61:0E:78:7A:81:13:FE
X509v3 Authority Key Identifier:
keyid:CF:2C:30:F3:44:93:C4:52:A1:73:E4:DE:0C:46:2C:83:A7:11:C3:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zyww80STxFKhc-TeDEYsg6cRwzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/tRU3sBoa_hoNT2CglGEOeHqBE_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/6f6758-c233-4ac0-99b0-5a922a62c571/1/zyww80STxFKhc-TeDEYsg6cRwzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.215.86.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ea:18:d2:3d:6d:c1:3d:2b:35:34:4c:40:02:af:85:1a:17:
11:35:31:2d:66:b1:85:69:4b:e5:18:cb:1a:14:80:e6:98:8d:
25:7c:f8:d0:4f:b9:8b:7a:2c:bf:f8:38:ed:ad:c2:15:cc:0a:
e6:74:6e:99:a6:d7:5b:25:6c:b6:65:15:56:9d:b6:57:be:97:
0b:15:dd:7e:ca:b1:b8:7f:e3:af:5e:f3:3b:c1:8c:39:32:71:
25:e6:46:3d:bd:b9:63:6b:3c:f2:cc:1f:14:6e:e9:4e:9d:e9:
19:c9:4f:63:34:4c:98:d5:2b:54:ba:c0:59:76:3c:38:a6:97:
1c:28:1d:2b:cb:dc:86:ef:44:8e:a3:f0:cf:eb:32:7e:bb:b3:
19:27:42:09:ba:23:86:cf:b9:62:26:9a:d2:90:92:67:83:ca:
d8:bc:31:d6:47:4a:0b:06:ff:63:05:4c:17:55:03:73:0a:72:
41:c5:7f:b6:42:6b:e5:dc:e5:ed:4a:cc:74:84:15:59:9f:6b:
e2:83:9d:7f:f5:1e:f6:eb:26:31:c4:be:b9:7c:9e:9f:49:8a:
ef:93:be:f2:6c:13:77:a6:33:88:54:92:df:7d:b9:0e:0f:93:
42:54:ee:66:ae:e8:07:f3:3c:1b:da:4b:71:89:e8:01:60:be:
57:19:ac:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:59 2024 by rpki-client on console-ams.rpki-client.org