Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/bBfiDdvI0g5HIxCAM6HwI3D0aLk.roa
File: bBfiDdvI0g5HIxCAM6HwI3D0aLk.roa (raw, json)
Hash identifier: 8j6ESbEKe+THTjHXHS9G734o9ClTqygoMc4C0sP/1DE=
Subject key identifier: 6C:17:E2:0D:DB:C8:D2:0E:47:23:10:80:33:A1:F0:23:70:F4:68:B9
Certificate issuer: /CN=2f2709cb399c4e168ccbda16db136b5bc8b96dd6
Certificate serial: 01856C9394DF7B9365771CB258B18536CB47
Authority key identifier: 2F:27:09:CB:39:9C:4E:16:8C:CB:DA:16:DB:13:6B:5B:C8:B9:6D:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LycJyzmcThaMy9oW2xNrW8i5bdY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/bBfiDdvI0g5HIxCAM6HwI3D0aLk.roa
Signing time: Sun 01 Jan 2023 09:04:49 +0000
ROA not before: Sun 01 Jan 2023 09:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198657
IP address blocks: 91.237.236.0/22 maxlen: 22
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:94:df:7b:93:65:77:1c:b2:58:b1:85:36:cb:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2709cb399c4e168ccbda16db136b5bc8b96dd6
Validity
Not Before: Jan 1 09:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6c17e20ddbc8d20e4723108033a1f02370f468b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4b:05:a5:a6:a5:03:51:ab:62:08:66:49:6b:
e9:37:aa:e3:79:5b:b9:dc:34:07:e6:3a:6f:61:aa:
fd:6f:c4:b6:46:d2:3a:fd:33:14:23:dc:ba:75:e9:
b2:db:94:3f:3b:8d:82:cf:2b:e2:1c:62:5b:a7:85:
b3:61:73:4f:a2:d9:c3:de:93:bc:f3:68:ea:16:f6:
02:c7:42:79:ea:d9:e0:b7:b3:67:2d:31:ec:38:e1:
da:30:7b:e9:e4:90:e8:25:d8:08:36:26:8f:18:ea:
be:ea:61:a8:01:2b:ba:26:53:e6:6e:1a:7e:d1:4e:
ac:52:b8:91:00:d8:9c:d0:16:5c:3e:21:a9:42:be:
7b:a6:37:e1:e2:ac:ee:03:a1:d6:4a:d3:e5:0f:ba:
81:81:d5:d0:59:ff:78:6e:7f:3d:d0:9b:25:dd:7b:
d4:22:f0:59:06:4b:c8:c6:03:14:96:07:4d:c3:1b:
92:89:96:4f:68:59:0b:fa:81:a9:a2:1f:1d:42:31:
e6:57:1c:f2:81:cb:6b:50:de:32:f2:0a:ba:79:34:
09:95:b2:2f:ca:07:91:b9:b0:7b:98:62:92:67:d8:
a6:0c:ae:1e:cd:0f:ad:9b:dc:3f:d9:e7:d0:11:33:
29:83:88:fa:b0:a7:df:7a:49:b6:06:78:ff:91:f4:
cc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:17:E2:0D:DB:C8:D2:0E:47:23:10:80:33:A1:F0:23:70:F4:68:B9
X509v3 Authority Key Identifier:
keyid:2F:27:09:CB:39:9C:4E:16:8C:CB:DA:16:DB:13:6B:5B:C8:B9:6D:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LycJyzmcThaMy9oW2xNrW8i5bdY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/bBfiDdvI0g5HIxCAM6HwI3D0aLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/f83781-2949-48c7-8900-20167cd42b82/1/LycJyzmcThaMy9oW2xNrW8i5bdY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.236.0/22
Signature Algorithm: sha256WithRSAEncryption
20:49:e3:82:43:9f:35:5f:70:e5:ae:d4:f9:7d:3c:ee:80:65:
f8:0f:23:dd:9e:91:5b:2e:54:fd:22:dc:a3:6b:19:c3:98:9c:
78:e7:85:67:6c:31:5c:ff:68:83:43:1d:32:27:a0:7e:86:41:
34:cf:32:49:5e:79:07:78:29:df:79:27:98:6d:a9:49:a5:9a:
60:b1:0e:39:4e:48:bb:20:52:3b:98:a2:95:58:52:0a:96:21:
a6:65:9f:eb:37:0b:e3:5f:50:70:dc:9e:b8:1c:a1:bd:0a:7f:
48:29:96:e7:c6:25:fc:cf:30:29:28:7e:59:83:25:19:f7:5f:
99:1f:56:91:53:e5:8d:19:3e:ae:63:51:a5:03:6a:3f:00:cf:
38:18:f7:1e:a6:32:51:ac:1d:82:ff:4e:72:cb:db:e3:30:33:
9b:80:94:9f:82:0f:50:3d:c9:58:44:18:2c:4c:9a:46:84:0f:
e7:5e:34:29:94:aa:7e:ad:bc:79:90:7d:f3:47:8c:8a:c1:1d:
8d:36:21:3d:b0:82:ca:b4:9c:79:ed:8e:48:92:31:dd:f2:b2:
dd:aa:7b:35:26:5c:ca:5b:51:92:41:e9:1c:ef:ae:70:49:db:
00:f6:bd:fa:39:61:ee:0f:f6:db:85:f2:86:b7:98:ec:d7:18:
35:52:c0:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 06:55:37 2024 by rpki-client on console.sobornost.net