Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d74420-6425-4272-93a2-3586164a7f44/1/TyIkzb1lhItO4_F-CeyYnpK4VWM.roa
File: TyIkzb1lhItO4_F-CeyYnpK4VWM.roa (raw, json)
Hash identifier: wNZn9cbntEgLZeNT02MKAJ4YT/va2N9dOLa7QHqmHpI=
Subject key identifier: 4F:22:24:CD:BD:65:84:8B:4E:E3:F1:7E:09:EC:98:9E:92:B8:55:63
Certificate issuer: /CN=58131e8f9a485040d9fcae7167a428b8a12f49ea
Certificate serial: 0187A6007A8A1D796F9033ACD3EC11392810
Authority key identifier: 58:13:1E:8F:9A:48:50:40:D9:FC:AE:71:67:A4:28:B8:A1:2F:49:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WBMej5pIUEDZ_K5xZ6QouKEvSeo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d74420-6425-4272-93a2-3586164a7f44/1/TyIkzb1lhItO4_F-CeyYnpK4VWM.roa
Signing time: Fri 21 Apr 2023 22:47:41 +0000
ROA not before: Fri 21 Apr 2023 22:47:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29075
IP address blocks: 91.208.40.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:a6:00:7a:8a:1d:79:6f:90:33:ac:d3:ec:11:39:28:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58131e8f9a485040d9fcae7167a428b8a12f49ea
Validity
Not Before: Apr 21 22:47:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4f2224cdbd65848b4ee3f17e09ec989e92b85563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:75:98:66:2a:44:e5:ad:62:bf:75:7a:63:6e:
cd:8e:6a:30:e5:0a:9b:b0:b6:6f:6a:70:f6:b8:51:
6a:59:86:88:ac:84:ac:eb:d3:54:f9:7a:8f:44:3c:
dc:2c:f3:0b:78:0c:37:eb:ce:30:ff:be:be:78:65:
09:46:90:02:f7:8a:0a:4f:47:83:9d:f9:b8:3f:ed:
65:74:29:ae:a0:60:b0:51:7a:ee:18:83:e5:2c:39:
de:6d:b3:fc:26:0f:fb:3c:90:bd:c1:4a:f8:dd:07:
b2:fb:95:0c:ee:97:95:71:49:48:eb:d8:ed:12:7b:
08:b8:2d:08:43:52:28:41:92:c4:c3:b8:a4:00:02:
8f:0f:71:49:27:18:f2:80:c0:06:55:d1:b5:c0:17:
3c:84:a9:13:0b:ee:fc:57:ef:2b:85:ee:d7:93:d5:
b1:e2:20:7c:7b:af:4b:10:6e:52:2d:96:51:3d:fb:
6c:72:29:ff:e4:22:b4:fe:00:bf:e3:b7:0b:99:c6:
93:b5:a0:ae:48:07:83:1a:55:ea:8e:45:cc:60:48:
4c:c1:39:f0:6b:90:7b:8d:12:fb:b0:7e:b4:b2:8f:
0c:ab:e9:c1:af:90:3c:a4:e1:02:7c:88:a5:b7:f7:
ef:a0:64:b5:47:17:7b:d9:cd:49:ff:98:3a:e7:48:
b3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:22:24:CD:BD:65:84:8B:4E:E3:F1:7E:09:EC:98:9E:92:B8:55:63
X509v3 Authority Key Identifier:
keyid:58:13:1E:8F:9A:48:50:40:D9:FC:AE:71:67:A4:28:B8:A1:2F:49:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WBMej5pIUEDZ_K5xZ6QouKEvSeo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d74420-6425-4272-93a2-3586164a7f44/1/TyIkzb1lhItO4_F-CeyYnpK4VWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d74420-6425-4272-93a2-3586164a7f44/1/WBMej5pIUEDZ_K5xZ6QouKEvSeo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.40.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:c6:c0:85:36:e1:47:67:eb:5b:32:71:94:10:ce:c4:4b:74:
b6:a7:17:0d:fb:57:5a:82:12:3c:4d:62:10:cc:53:89:00:77:
e0:ee:05:e3:66:85:bc:10:d3:9a:33:7c:eb:aa:e6:b5:a3:fd:
76:2a:3c:dd:83:4a:38:73:22:b1:4e:48:b0:5b:3f:2e:72:2a:
f4:60:36:7f:56:8e:99:4f:d8:fc:f6:f3:09:8a:17:06:ab:2d:
4d:91:3e:26:0e:64:e6:6d:91:9a:7c:05:1f:1d:04:34:fe:fd:
c5:be:bb:d3:73:6c:02:45:db:6b:f6:a3:02:45:1c:48:0c:d0:
81:eb:44:b3:13:3e:d6:00:88:5c:8e:2a:1d:c2:7b:ad:82:cc:
9e:d4:49:dd:58:d9:0e:ce:6c:38:d7:d4:28:52:7d:56:60:a2:
b6:cf:27:31:e3:aa:78:0f:bf:01:ed:c4:31:b6:30:fc:ac:d5:
6d:30:f0:2e:e7:1e:fe:98:f9:b9:7a:a8:7c:a7:45:de:12:40:
7d:4f:9d:bf:ed:51:2a:fb:3a:0e:49:e1:54:6c:15:50:2b:92:
dc:81:2d:d7:fa:75:f5:34:8a:da:cb:04:19:c7:5c:9b:a3:61:
e0:a7:5d:e1:f1:0d:49:cc:01:7d:c9:a2:02:71:58:cc:42:ed:
9b:0a:24:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 23:15:08 2024 by rpki-client on console.sobornost.net