Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MIj2-o2kZbJgoaKubwG8uT1-DzI.roa
File: MIj2-o2kZbJgoaKubwG8uT1-DzI.roa (raw, json)
Hash identifier: aU2EquciLbRfS9pToK71dw6/FbMkKnym8j4PBoDvFw0=
Subject key identifier: 30:88:F6:FA:8D:A4:65:B2:60:A1:A2:AE:6F:01:BC:B9:3D:7E:0F:32
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 018FDEF68102244381488DE949E6A9222D67
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MIj2-o2kZbJgoaKubwG8uT1-DzI.roa
Signing time: Mon 03 Jun 2024 16:37:27 +0000
ROA not before: Mon 03 Jun 2024 16:37:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47447
IP address blocks: 91.92.27.0/24 maxlen: 24
185.221.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 08 Jul 2024 05:28:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:de:f6:81:02:24:43:81:48:8d:e9:49:e6:a9:22:2d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 3 16:37:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3088f6fa8da465b260a1a2ae6f01bcb93d7e0f32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:fb:e4:a8:52:69:bd:d9:c1:b2:cf:b3:f9:14:
b0:ab:43:18:c6:71:c1:62:9f:d6:47:43:ff:c8:c0:
a4:33:eb:b3:52:29:0e:f2:4c:01:74:1e:64:58:98:
00:1c:b9:02:54:49:87:9e:bf:dc:fe:e4:96:be:c7:
64:51:62:97:af:be:40:bc:62:10:c4:d9:4a:1a:ae:
1b:cc:98:c6:00:60:49:90:ac:03:83:1c:f2:5b:bd:
1d:44:33:cc:3f:5a:59:66:50:55:c2:58:e3:9d:59:
ae:30:e5:59:7e:9c:12:96:f4:17:7e:d3:4b:c4:eb:
86:7f:92:28:5a:bc:b9:c5:12:cb:1a:89:da:17:b9:
df:59:91:37:77:11:03:53:fb:84:50:f4:87:32:2f:
8c:78:b7:d7:7e:3d:83:d5:e7:3e:55:e4:91:25:0b:
b3:a1:7c:8c:6c:95:d3:99:c6:b8:ac:35:0d:d2:85:
d7:f0:c0:ac:fa:8b:0f:8a:4c:31:19:a6:b1:5b:f2:
2f:09:54:ee:7d:e2:cd:b3:48:f2:eb:62:b7:57:3f:
e7:70:1a:b3:a5:22:d8:3e:95:62:42:38:9a:7f:d6:
74:ac:f3:36:58:35:08:73:b7:b6:8b:7c:12:ff:aa:
8e:f1:22:bb:4a:b5:95:42:b9:e5:17:42:33:50:8b:
56:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:88:F6:FA:8D:A4:65:B2:60:A1:A2:AE:6F:01:BC:B9:3D:7E:0F:32
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/MIj2-o2kZbJgoaKubwG8uT1-DzI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.92.27.0/24
185.221.67.0/24
Signature Algorithm: sha256WithRSAEncryption
55:4d:e1:cf:dd:3d:07:f4:04:89:7f:d9:37:fd:c0:29:22:75:
4b:e5:0a:70:d9:ad:85:ee:10:f9:63:7e:0c:90:cb:aa:8a:06:
9f:91:cc:80:56:8e:bb:c8:a3:72:da:57:e7:2c:0b:0c:8d:cb:
45:54:fd:66:3f:2e:a1:37:21:76:13:04:8a:28:dc:23:35:e4:
1b:ba:25:07:2a:d8:ee:7b:26:3a:8b:b9:d6:57:1c:70:82:1e:
5d:fc:11:c0:ca:9d:56:99:c8:1e:1e:d9:f7:0f:9f:9a:0b:90:
80:5a:ed:5d:53:4b:a2:fb:45:7d:0c:b9:b9:48:29:7e:30:49:
c9:5e:5f:d2:45:aa:3f:a8:99:8e:59:fa:3d:86:f1:b8:45:75:
27:31:82:1d:cb:ca:e6:b3:77:6a:47:83:c8:ce:3a:f1:d1:1c:
7f:6f:c5:1c:36:d5:66:de:a3:13:e9:72:6f:57:b4:03:3c:1e:
35:57:c7:b1:dc:f7:78:93:f2:6d:b3:b8:1f:fe:c3:87:04:cb:
3d:d7:e7:c6:08:c4:1f:5f:f6:ae:28:d9:8a:25:57:40:49:01:
8f:1e:7f:b2:9b:04:2d:27:3e:85:8d:41:6f:71:54:97:32:aa:
17:f8:de:fa:22:70:d7:04:dc:97:22:3f:6e:0a:ce:04:71:52:
39:34:41:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 8 07:24:05 2024 by rpki-client on console-fra.rpki-client.org