Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/CMlKt0FbmiQqYdBC9DQ4Qbe00i8.roa
File: CMlKt0FbmiQqYdBC9DQ4Qbe00i8.roa (raw, json)
Hash identifier: W14MOPtlNNszzI2Utmp+uST6YWcN/RjzSuJofHNEy/8=
Subject key identifier: 08:C9:4A:B7:41:5B:9A:24:2A:61:D0:42:F4:34:38:41:B7:B4:D2:2F
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 018C9158B1BEDB3DDC195F24B0B5835C5862
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/CMlKt0FbmiQqYdBC9DQ4Qbe00i8.roa
Signing time: Fri 22 Dec 2023 11:45:58 +0000
ROA not before: Fri 22 Dec 2023 11:45:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30781
IP address blocks: 91.232.99.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 04:31:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:91:58:b1:be:db:3d:dc:19:5f:24:b0:b5:83:5c:58:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Dec 22 11:45:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=08c94ab7415b9a242a61d042f4343841b7b4d22f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:47:48:ba:0d:3a:21:23:41:5f:e9:a7:fa:05:
29:18:cb:83:f1:d7:d0:cd:ab:f6:b2:db:8a:57:d8:
fd:21:ab:f4:70:d4:e4:50:66:27:ce:c8:11:68:37:
1f:51:af:1d:5a:0c:34:ed:27:69:54:42:c7:7e:45:
43:4f:91:ab:1d:dc:6c:7a:3f:04:51:0d:e4:19:80:
d3:ff:11:06:26:7b:57:e2:87:8f:b4:bb:26:19:c5:
91:42:19:d5:2b:0f:d6:51:55:97:1b:7e:b1:24:c3:
73:af:cd:82:0f:2a:b0:ac:a8:14:8a:84:b3:60:ff:
56:46:25:f2:21:18:7c:03:d1:d7:33:50:d6:20:e6:
b4:f0:21:2f:c2:7a:55:74:17:ec:80:d7:7c:ce:93:
72:b6:50:50:79:87:8f:8c:a9:e9:40:65:c3:33:bb:
42:e0:ab:ea:46:49:74:9f:d7:b5:e1:72:cd:5d:9d:
5e:f2:5a:06:28:9a:cc:ac:1a:f0:21:50:53:2d:7f:
e0:94:07:dc:26:a4:52:61:b9:31:3b:41:fc:3f:47:
cc:ba:70:c9:ba:7d:25:09:b6:34:53:b3:33:96:39:
6e:8f:5f:5a:6f:f7:0b:80:94:91:1c:9b:e3:bf:80:
8b:c0:2a:d6:ac:e1:4b:2e:26:6e:c5:1d:d5:0a:6f:
fb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:C9:4A:B7:41:5B:9A:24:2A:61:D0:42:F4:34:38:41:B7:B4:D2:2F
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/CMlKt0FbmiQqYdBC9DQ4Qbe00i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.99.0/24
Signature Algorithm: sha256WithRSAEncryption
06:ca:e6:ab:47:59:e1:54:1d:c0:97:ba:c3:7c:57:1d:9a:b6:
ec:f9:f1:74:35:a4:58:e5:e1:a5:09:f0:74:68:a2:af:87:1e:
56:93:51:3b:0a:4d:16:c3:07:d8:c5:45:f4:07:17:4b:6b:5d:
e0:81:65:e1:c1:cd:e0:bc:09:07:dc:c8:6c:4b:94:0d:93:5a:
89:86:be:38:81:3e:ae:c1:fc:60:61:71:10:22:bf:53:a6:48:
37:49:7c:2a:e4:5a:73:bb:8d:f6:58:11:b1:78:24:a5:1b:82:
d8:1b:21:d5:09:7a:da:2d:11:94:1b:db:31:f8:69:a5:0f:59:
84:5e:27:c2:b9:a6:ec:39:25:8d:0c:30:bc:e2:84:9c:6a:36:
d0:98:c3:69:b1:bf:fd:5a:b8:b6:1a:e0:71:b0:d7:a6:3f:5d:
72:d5:02:74:b8:1e:0b:6c:5b:6e:44:1b:63:80:0f:48:91:0f:
f0:48:eb:c6:3f:35:57:d2:df:d9:df:3b:46:06:e8:ce:f7:57:
42:9c:1b:b5:7a:a5:6a:4d:55:52:32:95:5f:77:10:b0:95:81:
27:f9:76:5c:ef:b9:ae:31:5c:71:7a:bd:bf:35:63:62:0e:27:
ec:03:26:54:c1:63:fc:51:f6:f0:a6:b8:fd:20:8b:9c:99:f3:
fa:5f:58:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:21 2024 by rpki-client on console-ams.rpki-client.org