Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/mGqn746tEImtORxf2Raaqr-VFvs.roa
File: mGqn746tEImtORxf2Raaqr-VFvs.roa (raw, json)
Hash identifier: yRm5jq9S25Qr1FI/6BwqPX8hP8/FejU296h1/6vTqzw=
Subject key identifier: 98:6A:A7:EF:8E:AD:10:89:AD:39:1C:5F:D9:16:9A:AA:BF:95:16:FB
Certificate issuer: /CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Certificate serial: 018572792BEFA795D9C167901CEB0074ADDB
Authority key identifier: 3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/mGqn746tEImtORxf2Raaqr-VFvs.roa
Signing time: Mon 02 Jan 2023 12:33:41 +0000
ROA not before: Mon 02 Jan 2023 12:33:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51741
IP address blocks: 91.217.219.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:79:2b:ef:a7:95:d9:c1:67:90:1c:eb:00:74:ad:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ebcb79ef58a1c98e151f60c51426f74eb1c3938
Validity
Not Before: Jan 2 12:33:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=986aa7ef8ead1089ad391c5fd9169aaabf9516fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6c:1d:5e:88:19:a6:f3:e8:9f:b3:6d:ff:0f:
5b:f0:55:fa:c3:b9:74:83:06:41:ee:aa:9f:9f:0d:
88:60:b1:61:7e:5e:4e:22:5c:5e:01:82:b1:e1:b2:
4f:9a:f1:7f:a9:b0:64:4f:6b:51:f8:d9:7f:6c:55:
62:3c:20:ca:bc:cc:15:5b:25:b4:7d:b6:f6:75:0c:
cf:b5:fc:fa:09:d6:14:c8:4f:41:a8:fc:33:e0:22:
a8:1c:c5:1c:36:c9:aa:53:41:2a:ac:79:1f:2a:9e:
14:d5:40:ed:f4:1f:16:8c:17:8f:20:f3:1f:a9:1a:
c4:b9:45:0f:b4:cf:f4:04:6b:62:10:3b:14:d2:b7:
4c:7e:99:7f:32:ed:6f:6e:8e:1b:47:89:7d:bf:70:
c2:38:54:d4:0c:a6:66:31:11:da:3b:eb:06:23:c0:
a0:cd:bb:b4:34:60:2c:bc:e7:64:54:e8:b5:0d:7f:
78:10:06:b6:8b:fd:29:0f:cb:3f:b8:a7:b3:8e:cc:
49:f2:81:6a:01:fd:4f:e0:fe:2c:fb:35:76:ee:68:
98:12:d4:b0:3d:d2:39:d7:a9:e6:71:2e:f0:cd:ef:
8b:46:b0:3d:01:c6:34:c2:c4:ff:a4:5f:34:7d:40:
f4:03:14:e4:b2:bc:46:69:a2:ed:be:d5:44:35:1c:
12:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:6A:A7:EF:8E:AD:10:89:AD:39:1C:5F:D9:16:9A:AA:BF:95:16:FB
X509v3 Authority Key Identifier:
keyid:3E:BC:B7:9E:F5:8A:1C:98:E1:51:F6:0C:51:42:6F:74:EB:1C:39:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Pry3nvWKHJjhUfYMUUJvdOscOTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/mGqn746tEImtORxf2Raaqr-VFvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/dd9ed1-02cd-4b35-a3b4-e9f79dfbd2e6/1/Pry3nvWKHJjhUfYMUUJvdOscOTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.219.0/24
Signature Algorithm: sha256WithRSAEncryption
47:3e:34:d0:5f:6a:c1:2a:90:19:13:be:ff:eb:32:ff:c6:3d:
6d:7b:b9:21:12:ca:ce:49:b7:43:a2:d5:aa:c5:5e:99:58:f0:
33:2d:3e:ee:25:fb:3a:f8:88:63:3b:e6:81:52:27:45:01:fa:
59:be:e7:06:41:aa:88:8f:8a:2f:a9:33:34:5c:27:b9:9b:5a:
df:f1:9d:9a:a1:fd:53:b0:b7:75:c2:7c:72:cb:ca:57:e5:21:
06:6b:36:f9:a0:59:fa:91:1e:d2:09:52:0d:bc:9a:16:71:7e:
ee:0f:57:22:1a:15:04:f9:80:c7:ed:ed:4c:ae:1f:e1:70:e7:
88:c8:f9:f2:aa:9f:6e:0d:cf:65:94:65:91:64:c7:e3:a4:72:
78:2f:44:2a:fd:53:18:91:eb:f3:ea:24:41:33:b0:40:5a:56:
27:ec:78:c0:5d:fa:75:28:62:77:4a:d5:61:bb:5d:c7:84:11:
10:38:ce:56:f3:dc:53:85:a0:62:04:60:29:e0:a6:32:76:03:
29:28:1f:b6:cc:dd:bb:62:f0:b4:7a:12:5e:ad:09:57:5e:a7:
6e:8c:91:2d:1c:77:68:9a:1d:ed:62:68:51:ff:8f:f6:28:c3:
90:f9:5b:ca:81:fe:fd:68:c7:76:eb:54:07:8f:7f:42:04:73:
90:e4:ca:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:44 2023 by rpki-client on console.sobornost.net