Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/paLu2YRUzOUQ6QdTdo8bVVaa13E.roa
File: paLu2YRUzOUQ6QdTdo8bVVaa13E.roa (raw, json)
Hash identifier: dERCcrSSR+OfRNzyJBtBcrAzvy2sPoTCEU/iKIrxTR8=
Subject key identifier: A5:A2:EE:D9:84:54:CC:E5:10:E9:07:53:76:8F:1B:55:56:9A:D7:71
Certificate issuer: /CN=a92cc80cdccec196009c0a56b13cf205152bab33
Certificate serial: 01856D662EF9C5A609A957A34FFA1C9B3929
Authority key identifier: A9:2C:C8:0C:DC:CE:C1:96:00:9C:0A:56:B1:3C:F2:05:15:2B:AB:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qSzIDNzOwZYAnApWsTzyBRUrqzM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/paLu2YRUzOUQ6QdTdo8bVVaa13E.roa
Signing time: Sun 01 Jan 2023 12:54:51 +0000
ROA not before: Sun 01 Jan 2023 12:54:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197883
IP address blocks: 91.208.85.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:2e:f9:c5:a6:09:a9:57:a3:4f:fa:1c:9b:39:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a92cc80cdccec196009c0a56b13cf205152bab33
Validity
Not Before: Jan 1 12:54:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a5a2eed98454cce510e90753768f1b55569ad771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d7:a5:03:7b:ba:3f:42:4d:92:d9:89:21:32:
34:39:92:50:0c:7c:0b:6f:59:a9:bc:8f:93:ab:e4:
fa:8c:15:2f:94:85:ca:99:19:68:ce:e1:f2:b0:45:
e5:c9:60:2b:cd:28:a4:6b:62:a3:14:83:fb:dd:1e:
c7:49:64:c1:47:75:68:5b:70:c5:29:61:0e:0a:b3:
04:d0:6a:d7:d6:08:a6:d5:8e:d6:1b:33:07:c2:b3:
23:ef:77:a5:48:6b:c3:5c:80:af:ab:2e:fa:92:a0:
c1:7b:5f:56:9f:ad:bb:84:e5:2b:83:0a:3b:f3:84:
bd:fe:43:77:2e:85:d9:8f:4d:4c:7a:f9:3f:35:7b:
43:86:bc:2b:47:36:25:b3:0c:43:00:ee:1d:e2:0b:
48:89:1f:78:a4:0f:4f:e1:9c:15:a6:4a:fd:37:3b:
9b:62:53:19:c8:5f:3f:b9:35:ea:0a:82:22:30:cd:
64:28:4e:38:21:a6:b2:4a:42:22:65:59:a3:76:bd:
bb:82:33:85:a9:12:50:e7:eb:db:f5:66:6d:73:b6:
59:d8:31:2f:a3:b0:61:22:b6:c1:dd:85:e9:f0:81:
92:37:c7:ab:26:38:4f:2b:b9:e7:05:ca:81:b3:07:
00:37:28:85:31:7d:f3:2f:c0:c9:43:8b:68:ac:a1:
c6:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:A2:EE:D9:84:54:CC:E5:10:E9:07:53:76:8F:1B:55:56:9A:D7:71
X509v3 Authority Key Identifier:
keyid:A9:2C:C8:0C:DC:CE:C1:96:00:9C:0A:56:B1:3C:F2:05:15:2B:AB:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qSzIDNzOwZYAnApWsTzyBRUrqzM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/paLu2YRUzOUQ6QdTdo8bVVaa13E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/ebfe1a-1258-4cd9-93e1-d21ab2f65625/1/qSzIDNzOwZYAnApWsTzyBRUrqzM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.85.0/24
Signature Algorithm: sha256WithRSAEncryption
85:1d:e7:ca:00:e9:7e:07:3c:e8:b7:b4:94:62:7a:ff:c1:e3:
43:28:31:de:e2:a0:60:6b:d7:0d:04:5e:5d:af:8f:93:ab:83:
09:f7:48:94:ff:7d:68:ac:57:b4:06:f0:ca:ec:ee:3e:ca:f5:
1b:8b:d4:2d:57:c7:83:03:e1:71:da:f5:28:6a:f0:27:aa:c7:
fa:9e:0c:05:a9:f4:83:c5:e6:f8:2b:e2:35:bb:bb:eb:6e:84:
d4:b9:ee:7e:c1:2e:91:93:63:8c:93:cc:7f:00:e6:4e:02:5b:
71:77:38:4b:b1:47:d1:29:05:23:df:fd:20:83:09:aa:80:b7:
4a:6f:f9:6e:08:a5:bd:8b:9d:6c:d8:85:42:77:e0:4a:0d:a1:
71:6b:e7:4e:69:e3:bc:80:ff:3d:52:d7:a0:45:b5:36:8d:64:
0e:22:69:63:e9:83:72:00:c4:66:a9:09:8d:02:67:28:9d:95:
a0:84:a7:a2:61:81:a0:ba:e8:a7:10:a3:26:bb:3c:60:57:70:
61:f7:06:b4:7d:26:3f:00:f2:3e:27:01:f9:8a:65:08:73:39:
96:61:d1:ba:79:d1:55:74:7a:de:dc:37:36:b8:15:5c:02:bb:
90:6c:f8:7a:a7:80:ec:21:3c:ce:48:60:1a:4e:dc:99:12:19:
a4:1d:0e:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:30 2024 by rpki-client on console.sobornost.net