Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/7OixGsJEU6IrfXQG0JG-kl0Tv70.roa
File: 7OixGsJEU6IrfXQG0JG-kl0Tv70.roa (raw, json)
Hash identifier: ZG7JBqmiPmkBAnYgSA0Q3811VRj0FeQkrmVOm2AZ3sE=
Subject key identifier: EC:E8:B1:1A:C2:44:53:A2:2B:7D:74:06:D0:91:BE:92:5D:13:BF:BD
Certificate issuer: /CN=a55004661a09e2675fc1599d4e40027d778c404c
Certificate serial: 018A6AD898CA38A837DF67E5AEC5A84B2ECE
Authority key identifier: A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/7OixGsJEU6IrfXQG0JG-kl0Tv70.roa
Signing time: Wed 06 Sep 2023 14:14:54 +0000
ROA not before: Wed 06 Sep 2023 14:14:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207369
IP address blocks: 91.229.224.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Sep 2023 09:20:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:6a:d8:98:ca:38:a8:37:df:67:e5:ae:c5:a8:4b:2e:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a55004661a09e2675fc1599d4e40027d778c404c
Validity
Not Before: Sep 6 14:14:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ece8b11ac24453a22b7d7406d091be925d13bfbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7d:fb:53:e5:8d:f4:a3:54:67:47:dd:cb:d8:
32:a3:6c:b0:57:7c:01:88:5c:05:ff:30:5f:3c:ee:
ad:d1:0e:46:44:a7:9e:08:e5:0d:1d:7a:fe:da:8e:
16:cb:88:36:5b:2e:35:25:4f:96:a8:ba:61:76:e8:
d1:2c:b9:1c:70:83:bd:e3:b5:84:91:b6:d1:70:4c:
09:9c:bd:1c:d7:0c:32:ba:12:57:71:dc:18:20:01:
30:2f:27:33:29:c5:3a:98:b2:d0:47:a6:77:e0:98:
88:4f:1d:e9:fa:44:30:0f:45:17:2b:37:d4:52:31:
40:1a:7d:bf:48:ee:72:6c:98:9d:39:01:01:cc:c4:
81:35:e9:e5:0e:cd:2f:8a:8e:44:9c:75:b9:e1:43:
ef:d8:1f:89:95:60:2f:cb:57:7d:de:8b:24:bc:35:
0b:5d:c8:cd:ce:ae:89:95:9d:c2:1d:70:4d:2c:57:
da:25:a3:ba:f1:ae:75:1a:63:1a:93:11:50:35:72:
c3:bf:b7:68:9b:89:c8:5d:e5:2b:e2:38:73:3c:cd:
3c:19:b0:ce:d0:cd:05:f7:01:2f:2e:e0:54:48:18:
c5:96:e9:c1:f8:64:64:ff:c9:a9:77:6f:f4:83:7d:
43:cc:1c:ff:65:91:b0:ae:77:29:a4:ae:53:a6:ce:
75:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:E8:B1:1A:C2:44:53:A2:2B:7D:74:06:D0:91:BE:92:5D:13:BF:BD
X509v3 Authority Key Identifier:
keyid:A5:50:04:66:1A:09:E2:67:5F:C1:59:9D:4E:40:02:7D:77:8C:40:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pVAEZhoJ4mdfwVmdTkACfXeMQEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/7OixGsJEU6IrfXQG0JG-kl0Tv70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/2cfdfd-1b3b-4aaa-bd82-3f78bc3de3a8/1/pVAEZhoJ4mdfwVmdTkACfXeMQEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.224.0/24
Signature Algorithm: sha256WithRSAEncryption
36:4e:0b:7a:71:c3:92:79:15:97:8a:99:4a:cc:d3:ef:f1:bb:
d2:9f:c2:7b:8d:2f:26:bf:58:fb:0d:9b:a0:48:17:c8:c0:18:
77:b2:7f:0d:45:76:6d:c5:07:8b:06:24:2d:f2:8e:68:81:aa:
8a:1c:ea:b8:37:69:4c:34:bd:29:cc:32:e8:9f:03:31:3b:d1:
fe:29:8d:44:bb:02:44:b8:a0:2d:1a:a0:65:c9:99:f3:b9:c6:
49:41:ab:4a:8a:d1:c8:43:e0:b9:ed:b6:51:96:3c:ad:bb:c2:
02:9a:4e:8d:c6:45:ea:d5:10:12:af:96:bf:d8:bc:6f:69:e5:
92:cd:73:9e:4e:fd:bd:76:1f:57:b1:88:58:bc:b6:5c:ef:e6:
dc:b7:83:4d:5d:ce:e3:f4:21:88:bc:eb:54:c5:87:a3:f4:2d:
df:6b:8c:db:a5:cc:22:c5:db:ca:5b:d2:0b:e0:37:a3:76:b1:
e6:bc:56:81:f4:d5:26:ed:29:01:78:d6:c9:a1:32:0b:87:39:
6c:69:7e:67:97:a8:34:18:0d:4d:8b:65:aa:52:c0:c7:b3:63:
22:08:89:37:9a:c1:82:e6:1e:34:ef:f8:6b:d6:3b:ce:11:0b:
11:68:6f:df:8a:e7:69:86:d6:c3:95:78:0f:38:23:83:10:aa:
80:4a:09:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:33 2024 by rpki-client on console-ams.rpki-client.org