Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/Xd6FY9HtCZ5mVAHlCGoU14MiY88.roa
File: Xd6FY9HtCZ5mVAHlCGoU14MiY88.roa (raw, json)
Hash identifier: zTSUKJghTv1VW68iLS397J6ZVkBIUZhxPw+uxHOTYTE=
Subject key identifier: 5D:DE:85:63:D1:ED:09:9E:66:54:01:E5:08:6A:14:D7:83:22:63:CF
Certificate issuer: /CN=8c240c1b90f7f020053fa095330ffcfadef5399e
Certificate serial: 018570E749101B0F79C8D7369C7E68158CB7
Authority key identifier: 8C:24:0C:1B:90:F7:F0:20:05:3F:A0:95:33:0F:FC:FA:DE:F5:39:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jCQMG5D38CAFP6CVMw_8-t71OZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/Xd6FY9HtCZ5mVAHlCGoU14MiY88.roa
Signing time: Mon 02 Jan 2023 05:14:43 +0000
ROA not before: Mon 02 Jan 2023 05:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39187
IP address blocks: 91.208.27.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:e7:49:10:1b:0f:79:c8:d7:36:9c:7e:68:15:8c:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8c240c1b90f7f020053fa095330ffcfadef5399e
Validity
Not Before: Jan 2 05:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5dde8563d1ed099e665401e5086a14d7832263cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:bd:2f:06:da:0c:6b:e9:b8:60:dd:7b:1e:62:
9c:6b:26:44:5a:f5:29:8c:de:ab:ca:cb:48:67:26:
2b:5e:20:24:79:c2:e0:c6:de:5a:fd:13:e9:23:70:
da:fe:f1:1b:01:4f:e2:1d:ca:3b:9d:47:86:80:bd:
31:75:6c:e1:42:b1:8b:57:b5:6f:20:ba:ed:58:9e:
33:ab:d4:0a:64:27:b5:f1:e8:42:a5:89:c4:01:b3:
67:bc:50:0d:1a:02:ce:65:c4:06:49:b7:2f:17:9b:
0f:8f:6d:a2:d0:bd:9f:f2:89:25:ef:d4:32:bb:4e:
af:b7:65:ca:04:42:13:63:f4:cd:34:44:db:d3:23:
e0:e1:ed:45:c5:42:be:0b:de:e6:64:53:b1:de:47:
63:a0:86:b0:3b:c5:0d:00:94:36:40:d7:dc:3a:c8:
9a:48:f5:0a:c5:a2:9f:7c:47:3d:69:28:16:c0:53:
ff:a7:2f:20:47:05:f3:50:f9:b4:d2:88:ab:d7:ad:
0a:0c:b6:4b:9e:81:30:d9:e2:df:82:c2:60:c1:a7:
c0:5d:3c:ce:c2:e2:f8:a8:09:fa:16:ec:d7:21:79:
91:3e:4f:56:90:d6:7b:3b:35:f9:19:9b:62:59:63:
04:0e:04:71:f9:b8:6a:15:cd:f5:68:5a:2d:07:f4:
2e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:DE:85:63:D1:ED:09:9E:66:54:01:E5:08:6A:14:D7:83:22:63:CF
X509v3 Authority Key Identifier:
keyid:8C:24:0C:1B:90:F7:F0:20:05:3F:A0:95:33:0F:FC:FA:DE:F5:39:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jCQMG5D38CAFP6CVMw_8-t71OZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/Xd6FY9HtCZ5mVAHlCGoU14MiY88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/d7c16a-9330-47f0-912c-87e36184c0b5/1/jCQMG5D38CAFP6CVMw_8-t71OZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.27.0/24
Signature Algorithm: sha256WithRSAEncryption
59:42:2c:3b:6f:15:70:0a:b3:d2:80:09:b9:4d:41:8e:c1:93:
0a:28:28:82:a1:60:8a:ce:19:1d:92:63:6c:c0:c1:6e:8b:4b:
46:45:3f:fc:18:51:27:4a:13:d0:81:09:5e:dd:93:f0:23:d4:
4a:b7:10:98:55:e4:2e:35:36:d5:ba:f9:53:49:4b:3b:75:9c:
c1:d3:65:4e:f9:e1:3c:ab:6a:9e:b6:eb:4e:06:5f:a6:6c:84:
8c:54:64:df:70:9d:f5:47:b1:67:2c:20:1f:50:0c:0e:b9:2a:
f2:a1:c7:09:1a:cc:ef:62:f3:8f:3a:e2:23:cb:70:31:d2:45:
cc:f0:bb:8f:eb:41:9c:06:7b:1a:cf:c9:7a:9d:86:d9:49:96:
36:25:98:59:bd:52:7f:3a:65:6d:1c:f2:f2:ca:c7:59:44:a5:
e4:56:b9:18:0a:df:49:2f:a4:b2:23:d1:d8:4b:fb:01:f5:8a:
c5:3c:6d:fe:ae:bb:23:73:bb:9f:94:66:d4:ee:e1:04:a1:5e:
6d:c2:78:1b:a8:0b:80:b8:db:4d:e6:b6:62:ea:59:19:47:f3:
aa:3c:6b:30:e5:f0:f3:1b:85:f2:fc:d3:d5:99:b3:d8:3a:4c:
53:73:2a:20:de:7e:59:07:42:0a:86:7a:e6:fb:d8:5c:ee:a8:
73:7d:a5:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 14:09:29 2024 by rpki-client on console.sobornost.net