Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/izjuPhMhkWQyHy-NWYxQUP3okKQ.roa
File: izjuPhMhkWQyHy-NWYxQUP3okKQ.roa (raw, json)
Hash identifier: esOYv21h5qTIucwQl4O/cEl303kOTD0oIkXQwTUg3+4=
Subject key identifier: 8B:38:EE:3E:13:21:91:64:32:1F:2F:8D:59:8C:50:50:FD:E8:90:A4
Certificate issuer: /CN=f6eb355344f355f2c5f1c6b0ba8c309c1143c6c7
Certificate serial: 01856D8AFA84D1915CED4E17A3D1DBCF6229
Authority key identifier: F6:EB:35:53:44:F3:55:F2:C5:F1:C6:B0:BA:8C:30:9C:11:43:C6:C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9us1U0TzVfLF8cawuowwnBFDxsc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/izjuPhMhkWQyHy-NWYxQUP3okKQ.roa
Signing time: Sun 01 Jan 2023 13:35:02 +0000
ROA not before: Sun 01 Jan 2023 13:35:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43872
IP address blocks: 91.201.105.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8a:fa:84:d1:91:5c:ed:4e:17:a3:d1:db:cf:62:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6eb355344f355f2c5f1c6b0ba8c309c1143c6c7
Validity
Not Before: Jan 1 13:35:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8b38ee3e13219164321f2f8d598c5050fde890a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:3e:22:44:ff:5f:a2:65:43:c1:71:b5:78:93:
38:7c:b7:0b:8d:b2:86:3f:c9:4b:61:e7:4d:78:a8:
a5:75:0a:d5:2d:6e:2b:49:0f:4c:c6:87:d7:04:84:
44:7e:8e:22:1d:06:69:95:9f:48:98:63:10:56:c1:
b1:8c:86:8e:eb:bd:01:ff:1e:b5:ae:c7:81:43:aa:
58:c6:05:4a:02:b8:0f:11:58:5d:e1:40:0e:4d:4d:
8d:96:5c:78:1b:c2:6c:9b:ec:32:f2:d1:21:8a:f4:
0d:4b:32:f5:1a:74:2f:dc:3d:af:db:da:a1:0f:fb:
e6:7a:31:32:16:47:f2:c0:41:1d:71:4a:5f:b6:a9:
62:85:bb:7a:d1:58:ff:fd:45:0b:c4:7f:0e:bf:ed:
0d:f4:79:90:fb:c3:44:86:53:64:06:70:27:9c:32:
d2:f6:b2:52:18:a8:36:91:c8:07:1f:40:d8:19:f5:
9c:c3:70:f0:c5:cf:78:62:1f:1d:27:b7:45:92:44:
c2:8c:48:39:7b:a6:3c:7b:fc:8c:ce:ec:a2:9c:80:
8c:85:59:31:db:c0:b7:87:e6:bd:4a:10:51:55:4e:
8b:49:e3:c1:42:0d:71:b3:eb:47:2b:ee:a8:ef:5d:
c2:fd:d3:de:c9:cb:78:35:3a:41:c0:b2:77:ab:9f:
42:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:38:EE:3E:13:21:91:64:32:1F:2F:8D:59:8C:50:50:FD:E8:90:A4
X509v3 Authority Key Identifier:
keyid:F6:EB:35:53:44:F3:55:F2:C5:F1:C6:B0:BA:8C:30:9C:11:43:C6:C7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9us1U0TzVfLF8cawuowwnBFDxsc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/izjuPhMhkWQyHy-NWYxQUP3okKQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/810cf1-cf41-4cbb-a53a-493da9cc4c0c/1/9us1U0TzVfLF8cawuowwnBFDxsc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.105.0/24
Signature Algorithm: sha256WithRSAEncryption
39:f3:5b:c4:b4:87:91:f0:af:52:52:4e:ec:d1:96:a8:26:bc:
b2:ff:f3:4e:49:1c:e1:e4:b1:1a:2b:7e:f6:44:32:66:a6:ae:
4e:cd:74:2b:cc:80:43:4e:ec:50:cb:11:60:86:31:c4:26:32:
25:95:6f:ad:0c:0a:4b:84:b3:c1:b4:40:00:65:9c:1c:65:c4:
03:4d:f6:06:ae:32:03:b1:e7:2a:f5:d5:9a:af:6d:75:d9:00:
0e:d5:4c:24:75:5a:46:f1:c8:ca:c3:65:69:5b:0d:75:f3:61:
79:d5:0c:65:db:cd:54:5d:5c:d0:4d:11:56:1c:5e:a9:93:b8:
16:b9:57:27:68:0c:fc:bb:79:c5:fb:8c:ea:25:e1:ff:ae:37:
1b:0a:77:1e:88:0b:f8:36:44:5d:84:54:fb:3f:f5:92:78:49:
a3:38:57:5e:50:75:84:2e:ca:7b:f6:01:af:39:65:b9:39:19:
fe:5b:e9:a0:d4:84:fb:77:c0:38:e9:03:5a:62:29:f8:03:78:
5a:ce:12:32:22:42:1a:88:bd:3e:f6:9d:fb:74:06:f8:60:c4:
bc:29:b4:ff:d8:68:b7:ba:b2:94:24:c8:78:14:37:82:ba:28:
32:2d:c3:bd:5a:d5:f6:50:53:80:fe:b8:c5:52:54:f5:e7:58:
44:7d:22:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:16:03 2024 by rpki-client on console.sobornost.net