Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/Imk15hRr28X7VJHhxAGLuL-Jgj4.roa
File: Imk15hRr28X7VJHhxAGLuL-Jgj4.roa (raw, json)
Hash identifier: wFjs6Jiw+8yTj7bTcQWgAiPNHXuF0qL1vvtuvO/+s4E=
Subject key identifier: 22:69:35:E6:14:6B:DB:C5:FB:54:91:E1:C4:01:8B:B8:BF:89:82:3E
Certificate issuer: /CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Certificate serial: 018FDD332585E39B66FFCE943EB631C91DDF
Authority key identifier: 83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/Imk15hRr28X7VJHhxAGLuL-Jgj4.roa
Signing time: Mon 03 Jun 2024 08:24:27 +0000
ROA not before: Mon 03 Jun 2024 08:24:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.200.222.0/24 maxlen: 24
109.122.46.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Jun 2024 10:04:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:dd:33:25:85:e3:9b:66:ff:ce:94:3e:b6:31:c9:1d:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833e3f5ef825556b014a085d32565bb0cbc5ac8d
Validity
Not Before: Jun 3 08:24:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=226935e6146bdbc5fb5491e1c4018bb8bf89823e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:5a:92:91:06:41:c5:c2:5f:88:94:c3:8a:b8:
df:19:94:7c:5b:f2:bf:27:31:57:20:ba:53:71:3e:
dd:93:b1:69:d9:19:94:d5:bd:e8:0b:43:4d:a1:db:
61:30:c6:22:57:98:69:ff:c2:e9:5e:c9:6f:5a:77:
99:a6:36:4c:06:aa:bc:9b:b8:76:cc:74:69:bb:0d:
2f:fe:fa:84:b7:3c:eb:70:0f:20:35:6c:91:63:c6:
fc:4b:68:e5:dd:78:22:d0:b3:bf:09:f4:95:23:d0:
d4:d1:61:55:ae:de:f9:60:b4:30:5a:81:8e:28:cd:
66:8b:97:cf:7f:5d:6d:1f:dc:e6:bd:cc:9b:cf:b3:
d3:0c:06:f1:99:32:f6:c8:25:28:83:67:41:e8:4a:
2c:b8:35:20:6b:88:c1:d3:d6:35:d3:2d:a6:a6:ba:
a9:d6:14:90:96:7e:ff:80:02:6a:6b:9b:d1:a1:b4:
28:18:d1:5e:ef:dc:08:b7:a3:2e:19:32:10:df:c7:
51:79:3a:c1:71:4c:c1:93:ad:07:d4:f0:79:e5:87:
a2:b6:4f:44:b4:52:85:b7:c9:ab:86:f2:5e:e5:68:
27:7c:b5:54:b0:c5:8b:dc:c7:a6:22:9e:f7:f8:88:
be:d4:28:a7:6f:02:f1:f0:1e:e8:33:27:3f:ff:6e:
17:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:69:35:E6:14:6B:DB:C5:FB:54:91:E1:C4:01:8B:B8:BF:89:82:3E
X509v3 Authority Key Identifier:
keyid:83:3E:3F:5E:F8:25:55:6B:01:4A:08:5D:32:56:5B:B0:CB:C5:AC:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gz4_XvglVWsBSghdMlZbsMvFrI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/Imk15hRr28X7VJHhxAGLuL-Jgj4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/d26618-b340-4f50-b330-318a26d4a8c9/1/gz4_XvglVWsBSghdMlZbsMvFrI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.200.222.0/24
109.122.46.0/24
Signature Algorithm: sha256WithRSAEncryption
68:a4:c3:56:87:e6:36:64:6f:ef:ae:eb:d6:84:6d:ce:27:62:
84:02:b2:13:fe:8d:80:23:4a:c0:52:a0:64:f2:73:a2:ac:dd:
4c:be:e3:00:31:65:5e:14:99:6b:02:0f:b8:a7:f3:c5:8d:2c:
59:fa:35:9b:0b:f5:d8:dd:75:1f:de:21:c7:d8:2d:e8:5c:e0:
ff:45:69:98:27:98:d2:74:08:0d:92:3e:05:03:6a:66:cb:85:
06:87:8d:9c:0e:07:4f:81:66:b7:2b:a3:ea:7f:83:d8:fb:a5:
66:10:93:64:e1:8f:35:ea:b9:00:9d:db:71:16:87:e6:5c:6a:
31:14:2f:ef:73:03:fc:3c:2e:67:64:84:85:db:b7:8a:e2:9a:
24:b7:7f:7f:b6:55:55:5e:8c:72:64:75:d7:a5:a6:a0:3d:0a:
b6:5c:db:7e:f2:a7:ad:af:4a:df:02:76:52:dc:8a:de:2c:53:
96:82:b5:6e:44:ea:18:ce:89:50:8b:a4:38:e3:29:70:92:c8:
21:88:57:0e:79:40:14:b7:ff:bc:b7:a6:e0:d1:8d:d5:d8:fa:
e2:7b:0f:e5:5c:6f:e0:10:e4:78:c7:d0:44:68:df:75:c2:9e:
8c:b1:b3:30:10:c4:f0:e9:04:e7:61:61:38:87:77:87:fd:27:
db:4c:b2:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:06 2024 by rpki-client on console-ams.rpki-client.org