Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/SF9iGYpZbgj63g0U6mI_kSaMOhY.roa
File: SF9iGYpZbgj63g0U6mI_kSaMOhY.roa (raw, json)
Hash identifier: tVg7H8m1zbKxycXxyyba4iIzlesy/GagYJ7uEg7HS2E=
Subject key identifier: 48:5F:62:19:8A:59:6E:08:FA:DE:0D:14:EA:62:3F:91:26:8C:3A:16
Certificate issuer: /CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Certificate serial: 018EF1497108C3D728E4494D71CF1896F7D9
Authority key identifier: A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/SF9iGYpZbgj63g0U6mI_kSaMOhY.roa
Signing time: Thu 18 Apr 2024 12:58:25 +0000
ROA not before: Thu 18 Apr 2024 12:58:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5413
IP address blocks: 81.92.219.0/24 maxlen: 24
185.99.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 18 Apr 2024 14:30:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:f1:49:71:08:c3:d7:28:e4:49:4d:71:cf:18:96:f7:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a6f87cf4a15b9e7822455b3aa8af0b5ed3a299f7
Validity
Not Before: Apr 18 12:58:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=485f62198a596e08fade0d14ea623f91268c3a16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a9:f6:f5:6f:26:4f:27:d0:fe:68:72:83:d3:
81:ce:fb:6a:f0:31:f2:da:23:07:56:06:f4:02:f9:
4f:91:97:49:5d:26:81:0d:cd:9e:e1:80:f3:e8:fd:
8f:81:fc:11:c1:e2:e3:0e:ae:d0:f0:ae:bf:c3:30:
ce:a9:4b:2b:05:7f:d7:ad:c2:a8:08:23:20:9e:72:
d8:5a:ba:51:d1:fb:16:b2:2d:e3:0c:7b:70:66:d3:
32:04:dd:9a:1d:b2:d3:c7:a3:18:f8:a9:51:e7:44:
c3:49:e0:9d:48:b2:8f:2a:70:55:24:fb:af:41:94:
b6:44:ee:23:e8:35:73:b2:4f:81:f9:9d:33:1e:1b:
bb:43:ca:6f:d7:f9:b7:cc:38:78:f0:7d:73:a1:68:
57:d2:2f:4a:8a:6c:e1:67:60:3a:4d:3c:68:e9:3b:
d6:01:6c:8a:e2:fa:dd:52:56:09:66:be:cb:89:d8:
df:9e:1c:12:0f:b5:e5:66:b3:eb:9d:49:00:bc:1e:
5c:37:f2:0b:e9:4c:44:5d:db:31:c9:36:e4:43:e4:
62:e9:bb:05:06:d8:0f:7d:83:b5:ab:39:31:fb:3d:
2e:08:19:c2:21:e5:8d:fe:9f:60:05:26:55:0a:86:
cf:e4:07:70:ca:d2:68:4a:d5:f2:e4:ec:eb:7a:50:
e8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5F:62:19:8A:59:6E:08:FA:DE:0D:14:EA:62:3F:91:26:8C:3A:16
X509v3 Authority Key Identifier:
keyid:A6:F8:7C:F4:A1:5B:9E:78:22:45:5B:3A:A8:AF:0B:5E:D3:A2:99:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pvh89KFbnngiRVs6qK8LXtOimfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/SF9iGYpZbgj63g0U6mI_kSaMOhY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/289b1d-08dd-4d53-b12d-7d4028a1bf59/1/pvh89KFbnngiRVs6qK8LXtOimfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.92.219.0/24
185.99.255.0/24
Signature Algorithm: sha256WithRSAEncryption
90:41:84:06:09:e4:4c:06:29:9d:d1:13:71:85:91:24:1d:40:
08:06:17:6e:ac:0a:ef:a6:51:1b:7a:35:05:b8:51:c2:15:b0:
b9:e3:6e:55:cd:78:54:ef:84:c8:1c:7a:5a:92:81:72:fa:c0:
41:01:27:95:ec:ca:c0:f3:b6:f4:3a:2b:59:f6:a7:13:92:bd:
7d:50:ba:63:35:19:bd:b9:6f:59:0f:75:44:59:13:48:0f:cd:
b4:6d:ce:96:20:75:35:cd:6d:88:13:bd:36:c0:8f:7b:07:9c:
78:1f:00:01:53:15:88:07:fa:01:e5:c1:6b:78:82:95:20:6c:
41:2f:7e:87:4a:da:e8:18:35:eb:14:f4:6b:b9:ce:b2:44:b2:
64:46:f0:3f:3f:9d:80:ce:09:c8:75:b5:dc:bc:f0:33:a0:89:
57:8a:f6:e0:87:d4:0b:7e:49:30:12:2e:b6:2f:07:24:30:87:
a5:4b:69:49:4e:87:e0:09:fc:eb:36:2d:33:fe:85:ae:69:6b:
94:af:10:74:40:17:56:3a:ae:44:fe:a3:40:8d:12:e9:10:1c:
7e:7c:66:e1:c5:97:f0:4d:5b:b7:55:26:1a:68:2c:05:1c:ff:
6c:dd:1d:88:05:ce:1e:7f:8b:64:45:e7:f6:20:b6:3c:f9:8c:
a7:e7:03:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 17:39:17 2024 by rpki-client on console-fra.rpki-client.org