Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/9tmv5SWJNlFHxxJEBeQznC6taMY.roa
File: 9tmv5SWJNlFHxxJEBeQznC6taMY.roa (raw, json)
Hash identifier: e4h4zk1+cmGvaAm342TRrHs0xLlufnhuPOsRc5n7O3E=
Subject key identifier: F6:D9:AF:E5:25:89:36:51:47:C7:12:44:05:E4:33:9C:2E:AD:68:C6
Certificate issuer: /CN=b91464767773f1239b646bb66bdcf4f7fb1206ce
Certificate serial: 018CC5DC3B4426302EB345C67D75BFF7F3C3
Authority key identifier: B9:14:64:76:77:73:F1:23:9B:64:6B:B6:6B:DC:F4:F7:FB:12:06:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRRkdndz8SObZGu2a9z09_sSBs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/9tmv5SWJNlFHxxJEBeQznC6taMY.roa
Signing time: Mon 01 Jan 2024 16:29:53 +0000
ROA not before: Mon 01 Jan 2024 16:29:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207442
IP address blocks: 91.192.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 10:34:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:3b:44:26:30:2e:b3:45:c6:7d:75:bf:f7:f3:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91464767773f1239b646bb66bdcf4f7fb1206ce
Validity
Not Before: Jan 1 16:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6d9afe52589365147c7124405e4339c2ead68c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ca:93:e2:83:3f:c8:62:0e:c4:dd:f2:0c:18:
48:9d:43:94:c3:f4:0a:8f:7e:d3:32:66:7e:1e:ae:
74:e9:b1:52:04:e1:50:ad:c6:07:7f:fb:3e:32:24:
39:0b:46:bf:1e:64:02:3f:46:93:15:4d:b7:3e:37:
c3:06:a2:eb:4a:0b:fb:1d:f2:23:75:8d:7c:c7:a8:
a5:2d:ba:8d:16:25:08:22:eb:a9:36:bb:41:bd:b1:
de:d7:da:8b:ed:64:9b:d0:41:1c:2a:e1:24:ce:fa:
d7:93:b0:aa:87:ef:0b:13:c7:cb:71:45:13:99:dd:
7e:96:e1:bb:f7:c6:b8:70:b7:49:55:5e:eb:b7:27:
b7:c5:f7:c3:54:70:a8:d2:54:f1:5c:51:11:a3:eb:
8b:b8:30:74:58:dc:5b:9c:8f:d6:79:85:b1:df:ea:
34:a3:10:7e:f5:88:fb:e8:16:6b:dc:84:d2:5b:c6:
07:a7:64:6b:8d:3f:ef:bd:7e:60:83:0b:af:8c:77:
9f:bf:8c:56:bf:a4:37:49:c4:06:e4:10:9d:5c:c4:
48:b8:86:65:18:dc:8b:fa:db:d7:14:c0:ef:33:a0:
6e:22:8a:2a:43:6f:ba:e0:11:5e:af:a1:8a:d9:d4:
c8:4a:c8:1f:4c:20:22:20:38:af:b4:49:b9:a1:39:
fe:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D9:AF:E5:25:89:36:51:47:C7:12:44:05:E4:33:9C:2E:AD:68:C6
X509v3 Authority Key Identifier:
keyid:B9:14:64:76:77:73:F1:23:9B:64:6B:B6:6B:DC:F4:F7:FB:12:06:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRRkdndz8SObZGu2a9z09_sSBs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/9tmv5SWJNlFHxxJEBeQznC6taMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/uRRkdndz8SObZGu2a9z09_sSBs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.7.0/24
Signature Algorithm: sha256WithRSAEncryption
16:4a:1c:63:61:5d:a5:85:1c:99:06:76:ef:19:11:98:7b:c5:
23:8b:39:2c:54:28:0a:ca:98:b3:98:48:12:76:59:26:43:12:
c8:1b:1e:b9:de:08:d8:69:ea:33:91:27:29:c8:27:83:73:fe:
8f:2a:cc:68:f6:8c:33:4c:2c:f6:41:52:d8:a5:e8:42:f8:e5:
e9:f9:32:26:ef:72:1c:39:24:a1:9b:28:e9:84:92:ec:88:ce:
83:d0:54:30:ee:17:28:0c:da:73:98:ad:b0:61:a7:08:4d:ad:
b4:cd:61:fb:f8:a4:36:d3:ba:9b:0b:e1:e0:0a:d8:12:2e:1a:
a2:9d:2b:98:c0:7e:cb:96:9c:57:68:a5:fb:02:e0:e0:db:2e:
22:13:1a:30:65:c5:fa:88:3f:3a:95:8f:c3:cc:34:02:5f:1f:
73:d2:8f:a9:4c:c6:68:d3:63:d3:92:ea:4e:f3:1b:5e:a6:65:
71:10:c9:68:89:fe:8e:dd:55:5a:d4:64:b1:a2:e3:3d:a3:05:
e8:d4:05:98:6f:4f:8f:b3:f4:8c:70:5a:bb:cc:98:2a:9c:ca:
59:fb:34:bb:7b:1c:44:a5:6b:11:d0:62:77:69:e2:b9:38:87:
75:0b:69:23:b0:8c:b2:78:ad:13:85:0d:27:78:63:46:e6:f4:
e6:d5:71:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:46 2024 by rpki-client on console-fra.rpki-client.org