Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/0rrJNvsjM_zK-9Y4kz3CKRYdb6M.roa
File: 0rrJNvsjM_zK-9Y4kz3CKRYdb6M.roa (raw, json)
Hash identifier: q72qs2zBqQm2e00eNOUbzQAnDuQKjPcz139yJbmCLqo=
Subject key identifier: D2:BA:C9:36:FB:23:33:FC:CA:FB:D6:38:93:3D:C2:29:16:1D:6F:A3
Certificate issuer: /CN=9fb4a8b93af9ea9cf18aaca4e73f116ec26eb357
Certificate serial: 018CC42550B8FE1F96D457F26627528CC774
Authority key identifier: 9F:B4:A8:B9:3A:F9:EA:9C:F1:8A:AC:A4:E7:3F:11:6E:C2:6E:B3:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n7SouTr56pzxiqyk5z8RbsJus1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/0rrJNvsjM_zK-9Y4kz3CKRYdb6M.roa
Signing time: Mon 01 Jan 2024 08:30:28 +0000
ROA not before: Mon 01 Jan 2024 08:30:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43060
IP address blocks: 91.196.76.0/23 maxlen: 24
185.196.216.0/22 maxlen: 22
94.158.48.0/21 maxlen: 21
94.158.48.0/20 maxlen: 20
94.158.56.0/24 maxlen: 24
94.158.57.0/24 maxlen: 24
94.158.58.0/24 maxlen: 24
94.158.60.0/24 maxlen: 24
94.158.61.0/24 maxlen: 24
94.158.62.0/24 maxlen: 24
94.158.63.0/24 maxlen: 24
94.158.59.0/24 maxlen: 24
2a04:1b80::/32 maxlen: 36
Validation: Failed, certificate revoked on Thu 01 Feb 2024 14:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:50:b8:fe:1f:96:d4:57:f2:66:27:52:8c:c7:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fb4a8b93af9ea9cf18aaca4e73f116ec26eb357
Validity
Not Before: Jan 1 08:30:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d2bac936fb2333fccafbd638933dc229161d6fa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:e1:7d:b2:7e:3b:1c:ac:95:97:05:19:3f:cd:
0a:a0:de:bb:23:57:15:dd:9c:97:b4:8d:b2:36:90:
7e:9e:cc:33:85:26:77:ee:1e:df:68:55:d4:da:16:
01:8a:3e:97:0e:52:6d:6f:76:16:f5:03:2f:f0:ab:
ee:e9:cb:86:69:d3:0c:83:79:10:be:76:eb:ae:7c:
e4:2c:0f:55:06:a0:90:a1:7c:18:5d:03:31:30:c8:
94:0d:81:1e:f4:f2:c2:31:6a:f3:eb:da:e4:b3:a3:
9c:9b:fe:ef:df:03:54:d3:02:4b:a9:7a:c3:be:60:
47:b3:69:bc:6c:d2:9a:05:ef:3c:f9:91:c0:61:f2:
72:9b:f4:fc:08:f0:b6:30:1d:66:bf:99:c3:f8:b7:
81:f2:4d:20:79:91:d1:69:c1:91:d9:34:c8:24:b6:
7a:56:20:aa:3d:ba:41:0f:57:59:32:f5:80:ba:68:
cc:16:67:f0:3d:8c:22:6f:6a:01:42:e5:8e:3b:7f:
87:51:87:47:79:61:2a:6f:0a:4b:7c:83:9b:6d:3c:
6e:89:33:f6:e6:96:04:6b:8b:b5:89:30:1f:48:30:
19:56:64:bf:f8:fe:20:51:3c:99:18:78:f9:7e:38:
e3:d1:55:8c:f4:bc:d0:7b:50:33:c2:36:d7:07:43:
6c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:BA:C9:36:FB:23:33:FC:CA:FB:D6:38:93:3D:C2:29:16:1D:6F:A3
X509v3 Authority Key Identifier:
keyid:9F:B4:A8:B9:3A:F9:EA:9C:F1:8A:AC:A4:E7:3F:11:6E:C2:6E:B3:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n7SouTr56pzxiqyk5z8RbsJus1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/0rrJNvsjM_zK-9Y4kz3CKRYdb6M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/898741-eda4-4c5d-af9f-8d68eb20fbdd/1/n7SouTr56pzxiqyk5z8RbsJus1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.196.76.0/23
94.158.48.0/20
185.196.216.0/22
IPv6:
2a04:1b80::/32
Signature Algorithm: sha256WithRSAEncryption
27:1a:2e:e8:1d:18:be:7c:43:51:c0:d9:2f:9f:e0:19:cd:e4:
1d:4e:db:b0:f4:2d:30:58:07:6d:34:a1:39:46:31:d0:b4:0b:
53:b1:d1:7b:11:81:1b:dc:38:05:6b:8e:8d:23:90:01:8d:46:
ba:26:d2:e6:a1:47:ea:27:fe:f9:3a:61:88:d5:a3:dc:d4:28:
e0:2f:de:33:b1:1e:35:22:2f:f8:2a:fd:52:4d:b2:6f:4d:2c:
7f:de:67:42:d7:52:9b:b8:a5:9f:30:58:50:ad:8d:99:b2:fa:
a3:26:7e:cc:5e:50:81:47:5a:47:c2:5a:42:b6:c9:0f:56:6e:
6e:d3:a5:48:41:d3:df:30:8a:ac:15:7c:e3:a9:7b:4e:b0:80:
a4:f5:a4:0c:26:71:13:e2:8f:4c:7a:dc:e3:63:23:31:f8:7c:
57:8c:14:65:4e:d3:31:9f:06:92:d4:b8:8e:4e:d7:af:9b:1d:
c9:16:79:1b:e9:78:89:da:8d:b8:48:68:8d:e7:0a:f0:9f:4c:
69:95:f5:f2:cf:d5:5b:54:fc:23:fc:b7:cc:74:32:fc:2a:58:
16:2e:79:fb:90:68:87:01:33:de:29:99:59:89:9f:7e:dc:ed:
9b:11:59:0a:30:ac:32:a9:0e:39:15:0f:0e:83:4b:fb:86:fc:
99:33:0a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:47 2024 by rpki-client on console-ams.rpki-client.org