Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/91ct8OS3TQ534Nwm21Y6tr4ZA6s.roa
File: 91ct8OS3TQ534Nwm21Y6tr4ZA6s.roa (raw, json)
Hash identifier: IbkqLs96qcIXeFI+7HKqcSAoJ+/mdn6TM5ppyYLhZZA=
Subject key identifier: F7:57:2D:F0:E4:B7:4D:0E:77:E0:DC:26:DB:56:3A:B6:BE:19:03:AB
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 018D55BAC3B334B3DB65DF72CE70ED58D627
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/91ct8OS3TQ534Nwm21Y6tr4ZA6s.roa
Signing time: Mon 29 Jan 2024 14:58:39 +0000
ROA not before: Mon 29 Jan 2024 14:58:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30823
IP address blocks: 46.19.207.0/24 maxlen: 24
185.176.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 19:23:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:55:ba:c3:b3:34:b3:db:65:df:72:ce:70:ed:58:d6:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 29 14:58:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7572df0e4b74d0e77e0dc26db563ab6be1903ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:64:31:95:4a:01:c9:18:4b:d9:e3:3e:a3:63:
9c:40:1e:7a:27:a6:86:ac:ea:00:f3:a1:91:13:1c:
26:a7:a0:65:eb:54:56:60:b2:70:f1:09:f3:4e:71:
ec:29:ed:51:d8:58:8a:2f:b7:8d:ac:93:c8:0c:62:
3d:8f:a5:86:58:20:4d:c9:59:61:7b:9b:5c:4d:08:
e0:98:00:73:e1:b9:cc:82:b7:a2:bb:5b:86:90:fe:
d7:5b:09:a4:b8:8e:3a:b8:96:df:bb:17:cb:75:6c:
c0:27:2c:31:f7:9f:4c:93:14:b7:02:3c:05:0a:b0:
3f:1c:15:0b:01:9f:77:d8:03:d7:1f:7c:d3:58:db:
ed:be:b8:6a:65:c7:9e:cb:35:c0:d1:eb:47:2f:5f:
ab:52:6c:88:e0:6c:d2:a3:df:19:84:36:6d:12:e2:
9e:d2:4e:c1:92:b5:57:0f:84:e0:1b:77:c6:ad:7d:
ec:52:48:4b:da:20:7c:b5:49:a2:4a:32:69:1b:f2:
ee:0c:f6:21:a0:d3:0a:e7:12:8b:41:7e:a1:36:aa:
03:91:4b:fd:de:34:e1:a6:67:46:ef:55:fc:9a:77:
13:08:30:aa:91:88:33:e2:b1:c5:e8:09:9c:02:38:
0e:47:4a:33:f6:22:06:7c:99:26:38:e6:9a:0b:9b:
06:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:57:2D:F0:E4:B7:4D:0E:77:E0:DC:26:DB:56:3A:B6:BE:19:03:AB
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/91ct8OS3TQ534Nwm21Y6tr4ZA6s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.19.207.0/24
185.176.119.0/24
Signature Algorithm: sha256WithRSAEncryption
65:89:52:2d:18:a5:e7:e1:d3:20:d1:b8:6c:73:ab:19:55:08:
cd:da:83:8d:a1:09:3c:da:61:19:40:6e:ed:60:7a:77:48:a1:
ce:75:94:4d:27:98:6d:64:32:8b:69:d0:70:7c:d3:fe:17:f8:
09:a2:3d:69:2b:03:de:99:f6:6b:e9:52:0d:cb:2d:0d:1b:8b:
19:b4:8f:c6:83:d7:81:b5:b6:2f:84:8d:50:fe:2f:9e:14:bc:
1a:74:09:28:81:26:87:04:f9:8c:58:4d:94:1b:dd:5e:3e:0b:
8e:b5:02:27:60:fc:94:60:9f:f1:3e:85:37:79:77:e6:96:6d:
ee:0b:02:63:d0:03:b8:0e:1c:d5:8e:11:81:d3:d2:c7:2e:87:
2b:d3:be:9d:b6:d2:e6:93:fb:cf:86:ae:ea:ea:c5:12:72:de:
ee:c8:42:89:0f:2f:1a:d8:61:7c:94:d7:d1:93:f7:c9:20:ca:
f2:fb:20:6f:dc:90:5d:b3:ac:ca:5d:f0:8b:61:98:71:92:70:
4e:fb:b3:1d:92:65:62:a5:96:fb:f9:f0:b4:d0:93:a3:3a:66:
79:d0:4d:32:28:7a:d4:d7:97:d1:2e:3e:95:75:fc:be:4a:c9:
14:f5:8c:48:f3:a5:39:4c:66:77:c2:39:4d:31:02:16:58:8b:
3c:d8:b6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 25 21:05:25 2024 by rpki-client on console-fra.rpki-client.org