Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/33awOl7eozx1CDtkbqbsnzdfy4M.roa
File: 33awOl7eozx1CDtkbqbsnzdfy4M.roa (raw, json)
Hash identifier: Hod+/DEnJGnOK2BFEcxfUGQjU/lE+VyWEEluz5f0SgI=
Subject key identifier: DF:76:B0:3A:5E:DE:A3:3C:75:08:3B:64:6E:A6:EC:9F:37:5F:CB:83
Certificate issuer: /CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Certificate serial: 0185720C7A714EAE8ECEEC79BF3E1E853014
Authority key identifier: 4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/33awOl7eozx1CDtkbqbsnzdfy4M.roa
Signing time: Mon 02 Jan 2023 10:34:58 +0000
ROA not before: Mon 02 Jan 2023 10:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 32181
IP address blocks: 91.238.71.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 08:32:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:0c:7a:71:4e:ae:8e:ce:ec:79:bf:3e:1e:85:30:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fb2bb7bad50f1921810a028e78edd65f81f6a7d
Validity
Not Before: Jan 2 10:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=df76b03a5edea33c75083b646ea6ec9f375fcb83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:33:c0:6a:d3:31:a4:c3:c9:63:54:66:ea:54:
4f:62:46:bd:73:b3:66:a0:fa:f9:0e:b7:bd:97:f1:
d1:04:4c:37:b8:ba:79:bc:4d:2d:91:5e:42:60:b8:
e4:b5:18:b2:23:82:f1:c3:71:a0:f9:b3:f2:d4:de:
92:33:62:5e:75:02:8d:81:50:3f:78:92:c4:a8:25:
da:48:2b:b7:b1:0e:d7:1b:92:67:ae:21:d7:0e:62:
45:cc:7b:c9:17:a3:21:4d:24:48:5a:46:25:5e:d3:
d7:c3:22:22:1f:82:a1:60:fe:84:c5:f6:4b:9f:d3:
32:4d:47:79:fb:9f:bb:88:b8:09:94:29:b4:ff:8b:
8a:d0:61:2f:bf:24:f2:5a:58:a9:61:17:19:32:f2:
05:8a:d6:18:52:2d:86:25:cd:02:f8:3c:72:3e:6b:
c5:e3:e0:78:d7:6e:3d:73:08:40:8a:3d:b2:02:e0:
bc:ba:33:ff:a9:42:8e:ac:31:99:7e:d7:b5:5f:53:
89:71:05:ba:de:ec:b1:c6:4a:a3:bb:81:d2:4f:b6:
e9:8c:7b:4d:40:5f:4e:7d:12:f4:e1:fe:12:6e:27:
38:6d:19:b7:fa:fa:ad:16:5f:c8:7f:c2:61:25:09:
9e:05:0e:36:34:62:92:2c:73:96:87:bc:90:ba:e3:
5e:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:76:B0:3A:5E:DE:A3:3C:75:08:3B:64:6E:A6:EC:9F:37:5F:CB:83
X509v3 Authority Key Identifier:
keyid:4F:B2:BB:7B:AD:50:F1:92:18:10:A0:28:E7:8E:DD:65:F8:1F:6A:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T7K7e61Q8ZIYEKAo547dZfgfan0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/33awOl7eozx1CDtkbqbsnzdfy4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/fda382-4257-41c3-8ec6-27fbc99ea3c6/1/T7K7e61Q8ZIYEKAo547dZfgfan0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.71.0/24
Signature Algorithm: sha256WithRSAEncryption
97:74:9f:f1:d2:ed:cc:99:d2:a7:ba:91:fe:e0:68:41:f5:5c:
d3:73:c5:ef:e1:c3:49:ba:ad:f0:81:86:7c:4f:15:91:a4:f0:
f8:a0:17:22:01:0d:35:2d:e5:4c:ae:7a:bb:e3:ae:ec:40:5d:
12:9f:02:67:eb:36:cc:86:c4:7c:ce:e7:6f:93:0c:a4:ba:af:
72:23:7c:aa:40:df:e9:0e:b9:7d:21:80:ce:92:6f:d9:ad:bd:
67:00:23:e1:be:af:97:5b:79:40:9e:42:a5:d7:88:c2:18:60:
9b:15:a3:e5:d5:ca:9f:28:2a:08:fd:16:f2:5c:94:af:92:31:
c4:fc:05:a8:c6:f0:51:72:1a:de:88:86:8b:96:09:0c:75:2f:
ae:c4:a9:ea:79:06:05:9c:13:70:12:f8:75:40:d8:9a:56:36:
95:f7:ce:fe:6d:05:8d:db:83:43:87:69:97:64:6f:62:ec:df:
15:b5:46:a8:1a:86:79:a0:81:09:9f:aa:52:54:b0:96:b6:f0:
22:9a:a6:a4:de:44:39:da:de:11:0c:1d:b4:7b:61:b2:34:32:
79:48:24:93:9a:28:cf:f7:54:b3:80:c6:55:05:eb:37:66:a9:
7d:40:d3:ad:a2:db:c7:e7:33:23:58:3b:6c:6e:8a:31:25:57:
72:dc:b5:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:31 2024 by rpki-client on console-ams.rpki-client.org