Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/586ab9-1a81-4284-b4b2-cd8b0c4be215/1/4_90Ymlmt6n82bwpgQH9u_0S2JE.roa
File: 4_90Ymlmt6n82bwpgQH9u_0S2JE.roa (raw, json)
Hash identifier: e9ityfBXTOwAn4+rnuDuyA+LJSExZ6wyyM27nbz/CVM=
Subject key identifier: E3:FF:74:62:69:66:B7:A9:FC:D9:BC:29:81:01:FD:BB:FD:12:D8:91
Certificate issuer: /CN=aeaaee1f0923e14a2371f240540fdd21549b14a6
Certificate serial: 0185723115246207E8B0FFCDB39135DF4B55
Authority key identifier: AE:AA:EE:1F:09:23:E1:4A:23:71:F2:40:54:0F:DD:21:54:9B:14:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rqruHwkj4UojcfJAVA_dIVSbFKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/586ab9-1a81-4284-b4b2-cd8b0c4be215/1/4_90Ymlmt6n82bwpgQH9u_0S2JE.roa
Signing time: Mon 02 Jan 2023 11:14:57 +0000
ROA not before: Mon 02 Jan 2023 11:14:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51573
IP address blocks: 91.217.255.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:31:15:24:62:07:e8:b0:ff:cd:b3:91:35:df:4b:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aeaaee1f0923e14a2371f240540fdd21549b14a6
Validity
Not Before: Jan 2 11:14:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3ff74626966b7a9fcd9bc298101fdbbfd12d891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:b9:7f:1c:a0:4c:bb:6b:20:74:15:91:4e:7f:
70:a2:e4:94:a1:47:8b:f1:ee:ef:99:14:5d:bd:a9:
eb:d1:fa:32:39:18:22:e5:fe:d2:1d:39:65:b3:fd:
2e:ac:1e:2f:42:90:f9:a2:6c:f9:7f:b6:2c:e5:3c:
a3:ec:43:2d:8c:ae:a9:c9:09:f2:58:53:65:2f:ca:
e8:18:91:66:15:4d:2a:e5:f0:20:b4:ea:97:c1:70:
d3:c2:3e:24:2b:7e:b0:5f:e8:2c:0e:fd:f1:34:b6:
3f:d1:29:1f:62:f2:27:87:84:de:1d:64:f4:57:4e:
21:dd:2d:f1:37:e1:27:fc:6a:8b:0c:33:b1:29:e7:
4c:71:50:da:46:06:2d:c0:3e:5b:9e:ad:85:ec:57:
2b:51:3b:9c:1d:7b:ca:e1:63:ee:2c:bf:5b:7b:7f:
6f:8d:18:e8:85:31:b1:24:03:b4:d2:58:c1:84:df:
5f:d0:de:41:65:93:2b:cd:0b:44:2b:96:94:21:5c:
2a:f2:0a:71:23:1a:b7:8b:1c:ea:af:c4:85:d1:0b:
ad:ef:f9:91:7b:5d:a6:69:d4:4e:ad:ac:0f:5e:c2:
31:26:a4:55:ea:47:f2:c9:68:c2:09:2f:4d:19:3c:
45:04:b5:b4:95:35:67:b1:15:16:df:a0:d0:b4:bc:
d7:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:FF:74:62:69:66:B7:A9:FC:D9:BC:29:81:01:FD:BB:FD:12:D8:91
X509v3 Authority Key Identifier:
keyid:AE:AA:EE:1F:09:23:E1:4A:23:71:F2:40:54:0F:DD:21:54:9B:14:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rqruHwkj4UojcfJAVA_dIVSbFKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/586ab9-1a81-4284-b4b2-cd8b0c4be215/1/4_90Ymlmt6n82bwpgQH9u_0S2JE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/586ab9-1a81-4284-b4b2-cd8b0c4be215/1/rqruHwkj4UojcfJAVA_dIVSbFKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.255.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:6b:07:a6:7d:9e:4d:2a:98:b0:ba:45:94:bc:e0:27:6f:02:
3f:d6:78:70:71:17:10:0a:dc:c1:76:11:12:94:a4:21:7e:3a:
8d:b6:a6:31:03:0c:50:ae:c2:25:2d:5f:b5:b8:37:4d:e7:d8:
6f:38:8d:2d:a8:22:70:4f:76:9e:13:16:4e:40:38:ab:80:57:
5f:0f:86:31:ef:10:f2:1a:14:74:d2:cf:0e:ee:53:68:86:64:
0a:a1:f0:17:ba:5b:a0:e4:31:00:73:ff:6e:3c:f3:7d:38:3c:
3b:40:4f:37:56:cf:0f:ee:92:c5:44:b6:23:d3:fe:1f:9b:cb:
19:dc:b2:0d:c6:b4:3a:4c:b2:fb:50:7a:c7:30:70:db:76:5e:
75:de:30:2a:6d:8a:41:3d:43:69:16:fa:c3:0d:b0:88:66:1e:
61:84:dd:49:40:40:37:81:40:de:61:5f:f0:6b:bc:71:da:c1:
c2:f8:8f:65:f0:66:5d:7e:cd:89:74:62:91:d7:85:b4:d2:f0:
e5:94:71:07:f3:db:4e:f7:ea:88:5a:10:10:bd:07:18:8b:88:
f2:4e:a7:bd:1d:f2:1b:85:bc:cf:37:8d:f5:78:b8:1c:97:85:
ed:a9:00:f0:97:ef:8e:bd:3c:87:5b:21:e1:37:b2:5a:68:f3:
d4:fc:c1:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jan 2 14:15:05 2024 by rpki-client on console.sobornost.net