Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/cba186-e4d2-45e1-a938-0e4ab2637bed/1/cByLu-9o9gC-yBp0fUlGxk1EGJM.roa
File: cByLu-9o9gC-yBp0fUlGxk1EGJM.roa (raw, json)
Hash identifier: 7QFeQdRhxY+3zvG+t54b4ZSzTgYugUX6JYl63knTt3E=
Subject key identifier: 70:1C:8B:BB:EF:68:F6:00:BE:C8:1A:74:7D:49:46:C6:4D:44:18:93
Certificate issuer: /CN=fe2796c5a9854532e9ed638d1c39a541c2d8952c
Certificate serial: 018F4CAE3646909AB6A7966AE4F553C7FCE5
Authority key identifier: FE:27:96:C5:A9:85:45:32:E9:ED:63:8D:1C:39:A5:41:C2:D8:95:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_ieWxamFRTLp7WONHDmlQcLYlSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/cba186-e4d2-45e1-a938-0e4ab2637bed/1/cByLu-9o9gC-yBp0fUlGxk1EGJM.roa
Signing time: Mon 06 May 2024 06:53:56 +0000
ROA not before: Mon 06 May 2024 06:53:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197863
IP address blocks: 91.228.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 06 May 2024 09:47:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:4c:ae:36:46:90:9a:b6:a7:96:6a:e4:f5:53:c7:fc:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe2796c5a9854532e9ed638d1c39a541c2d8952c
Validity
Not Before: May 6 06:53:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=701c8bbbef68f600bec81a747d4946c64d441893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:19:ee:bd:19:c1:b3:0f:48:f3:b3:8a:8d:b4:
a9:f0:50:11:31:8c:68:77:f6:1e:7b:33:ce:89:dc:
87:50:40:3b:bf:bb:2d:dd:e7:1e:34:77:d0:51:7e:
92:6d:a7:3e:9a:70:f1:f3:85:2e:56:eb:55:d2:6c:
d9:10:81:21:4d:69:06:30:87:ff:f1:72:cf:01:f0:
c3:3e:b7:c5:82:aa:c1:fb:1e:73:fc:8f:89:02:5a:
fe:62:be:e5:12:62:0b:18:ba:2c:61:58:e5:d8:9e:
03:85:b1:eb:17:33:93:49:15:39:c4:81:1d:b7:65:
db:19:79:14:77:8e:f3:8e:b4:a2:12:ed:5b:ea:cd:
4d:06:4c:8e:49:20:75:72:39:99:38:f6:c9:5e:b1:
98:17:f6:56:e6:a6:3f:d6:2a:fa:9c:0c:da:8d:a5:
8a:63:b6:9b:7b:0e:e4:db:09:1f:8e:7e:cb:6e:3d:
31:12:dc:90:3d:aa:b2:7a:51:ba:39:1c:72:af:42:
e4:2f:c0:f0:dc:70:5e:dc:9f:d9:22:13:3a:91:5e:
8e:47:eb:c6:86:9e:bf:53:63:9e:27:fe:96:ad:22:
f4:29:30:39:69:81:ae:c1:c4:21:f4:5d:eb:d5:f7:
57:4d:f8:bf:3e:f5:26:f7:e2:60:17:ed:2c:da:c0:
2e:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:1C:8B:BB:EF:68:F6:00:BE:C8:1A:74:7D:49:46:C6:4D:44:18:93
X509v3 Authority Key Identifier:
keyid:FE:27:96:C5:A9:85:45:32:E9:ED:63:8D:1C:39:A5:41:C2:D8:95:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_ieWxamFRTLp7WONHDmlQcLYlSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cba186-e4d2-45e1-a938-0e4ab2637bed/1/cByLu-9o9gC-yBp0fUlGxk1EGJM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/cba186-e4d2-45e1-a938-0e4ab2637bed/1/_ieWxamFRTLp7WONHDmlQcLYlSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.148.0/24
Signature Algorithm: sha256WithRSAEncryption
15:75:0f:dc:95:c1:a9:9a:8e:bf:2f:29:c1:7d:0b:e8:2b:f4:
92:49:ba:4e:93:9e:37:1a:ec:22:14:18:b4:c7:61:00:59:25:
77:6c:84:47:c8:1b:f0:19:70:25:0d:5b:7a:8b:71:0d:b3:e1:
e8:2c:62:ae:76:df:e6:15:db:e5:9e:8c:73:3d:fe:4e:a8:89:
33:73:31:53:05:dd:cd:54:14:81:6d:c3:36:f6:7b:a6:51:81:
35:24:5b:87:8c:71:8b:c7:e8:25:7c:79:b2:63:60:cf:2b:b2:
6f:22:3d:67:44:e4:4d:d2:74:c3:69:92:32:29:37:34:f1:9b:
fc:1e:46:6b:23:38:9d:12:38:6b:79:8b:81:b9:e1:af:6c:96:
2f:e7:d9:06:8f:87:83:67:d9:65:49:08:41:04:42:d8:7c:3e:
68:a5:43:72:93:36:49:ff:ce:00:01:32:9e:6f:fe:77:50:92:
5f:60:dd:97:52:04:fd:8d:af:35:7b:be:33:97:61:f0:ba:e1:
d3:cd:1c:e1:24:10:84:40:e7:e4:3c:6c:95:1f:64:89:7b:78:
b9:d5:e9:3b:78:d0:4a:eb:4a:c7:26:f4:98:7b:b1:34:72:cf:
c8:37:9b:03:dd:c8:b5:46:e5:d6:b0:40:9c:ff:9c:a8:20:b4:
fd:d0:86:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:58:33 2025 by rpki-client