Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/VV8LV-XzBBavJoW-x66n9AWk39U.roa
File: VV8LV-XzBBavJoW-x66n9AWk39U.roa (raw, json)
Hash identifier: Dg5nHq+EZJqP1FI5ncrQOKlK/h4MWljhkNZyaL9z1xM=
Subject key identifier: 55:5F:0B:57:E5:F3:04:16:AF:26:85:BE:C7:AE:A7:F4:05:A4:DF:D5
Certificate issuer: /CN=25c674ab1806dd6afe213be38e92a35fbc64ce34
Certificate serial: 01856E8B4760042F7DC689AB33750B198646
Authority key identifier: 25:C6:74:AB:18:06:DD:6A:FE:21:3B:E3:8E:92:A3:5F:BC:64:CE:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JcZ0qxgG3Wr-ITvjjpKjX7xkzjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/VV8LV-XzBBavJoW-x66n9AWk39U.roa
Signing time: Sun 01 Jan 2023 18:14:59 +0000
ROA not before: Sun 01 Jan 2023 18:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58023
IP address blocks: 91.237.248.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:8b:47:60:04:2f:7d:c6:89:ab:33:75:0b:19:86:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25c674ab1806dd6afe213be38e92a35fbc64ce34
Validity
Not Before: Jan 1 18:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=555f0b57e5f30416af2685bec7aea7f405a4dfd5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:11:f1:4f:b4:c4:40:bd:ce:88:2c:4a:bb:4f:
2b:4e:46:44:d8:64:77:18:36:b6:69:f0:2e:f1:c2:
00:9d:ba:cd:a8:90:4a:4c:76:09:b6:e3:35:5c:e8:
e8:a1:94:99:b8:0f:b0:8b:8d:47:0a:c8:70:3e:f9:
f6:41:07:11:40:ad:30:d9:72:90:da:b8:63:4c:07:
f5:b9:f0:d9:ce:0b:e2:4d:65:6d:be:3e:76:9d:b0:
4f:3a:9e:0b:b3:16:36:2f:3c:ff:59:76:fd:65:0d:
4a:f9:93:b4:fd:67:73:01:fb:c9:eb:45:8d:d2:ee:
28:60:f6:18:96:6f:14:ea:c1:7d:c9:5d:7f:5f:05:
55:80:49:af:d0:cd:8d:8f:6b:a0:f4:cb:5e:46:bc:
a3:c1:80:1d:22:2c:4a:6a:68:d2:10:2c:e7:f4:16:
37:c4:f3:e7:91:69:1c:c8:f6:07:0c:d7:7c:2b:43:
c9:dd:5f:5f:31:79:a3:42:58:0d:c9:60:7b:93:ba:
24:d6:b4:6c:0c:60:c8:b1:6b:4c:71:98:df:95:f3:
ea:c7:12:91:7d:a3:46:b6:55:c7:56:d5:0f:00:c2:
ca:dd:f9:92:04:1b:3c:3f:3c:f9:c0:ef:9c:44:26:
a9:2c:3e:f4:28:34:c3:b6:b4:f6:32:42:33:e4:75:
ed:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:5F:0B:57:E5:F3:04:16:AF:26:85:BE:C7:AE:A7:F4:05:A4:DF:D5
X509v3 Authority Key Identifier:
keyid:25:C6:74:AB:18:06:DD:6A:FE:21:3B:E3:8E:92:A3:5F:BC:64:CE:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JcZ0qxgG3Wr-ITvjjpKjX7xkzjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/VV8LV-XzBBavJoW-x66n9AWk39U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/56be8a-c8be-48f9-a67c-f5cd0d7116eb/1/JcZ0qxgG3Wr-ITvjjpKjX7xkzjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.237.248.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:e0:bb:3e:f0:ac:a6:f5:2f:de:07:73:5f:a2:42:ea:05:51:
1a:7e:42:95:84:36:d4:db:19:f0:ea:02:de:94:10:cb:7c:53:
71:23:de:f0:e8:76:8d:51:f7:ba:15:4d:8c:fa:04:b7:7f:bf:
d7:1f:a9:18:93:ef:67:25:41:81:8e:01:be:c0:02:72:fb:ef:
7a:41:07:fa:9c:44:80:c5:15:19:a3:f1:f5:1b:a0:cf:88:bc:
2f:c0:d5:be:47:ef:91:fb:94:eb:ac:a9:3c:20:5c:60:d4:74:
73:a5:7a:fe:6a:e4:90:f2:04:a8:30:6c:0d:a0:ba:ce:f7:64:
0a:cc:49:a9:86:08:d4:c6:e4:cc:64:fc:4c:70:0a:05:e9:7a:
2a:22:e3:5b:0d:77:7a:63:62:ec:bd:55:0d:53:7c:d2:87:73:
cc:87:3d:92:24:03:d2:56:2a:bb:ad:ef:36:28:4f:c9:b4:87:
c1:90:f1:70:bc:7a:ca:f2:4f:bc:26:38:d2:21:1d:13:a6:bc:
a6:09:4c:22:4f:a6:96:e3:1c:9c:fc:ce:9c:ac:96:8b:2b:5c:
67:c2:0e:bd:12:9e:ac:75:c7:f7:00:77:78:16:3f:dc:94:9a:
57:10:fc:03:94:ad:e7:0d:75:2b:9a:20:df:5a:f1:ee:b5:ca:
ff:c7:d2:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 09:18:20 2024 by rpki-client on console.sobornost.net