Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/006Xy4PEeaDcy_lq3Rt6ppXgm8k.roa
File: 006Xy4PEeaDcy_lq3Rt6ppXgm8k.roa (raw, json)
Hash identifier: b9j9sFDe0tmqHIg9+Y7vbfEnIIV2gXESBEb9gO1xXQY=
Subject key identifier: D3:4E:97:CB:83:C4:79:A0:DC:CB:F9:6A:DD:1B:7A:A6:95:E0:9B:C9
Certificate issuer: /CN=1d0db3568e455f3da2b2274a9d525cac0931c7d5
Certificate serial: 019275DD52F9573610063E2446AB36C3280A
Authority key identifier: 1D:0D:B3:56:8E:45:5F:3D:A2:B2:27:4A:9D:52:5C:AC:09:31:C7:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HQ2zVo5FXz2isidKnVJcrAkxx9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/006Xy4PEeaDcy_lq3Rt6ppXgm8k.roa
Signing time: Thu 10 Oct 2024 09:58:11 +0000
ROA not before: Thu 10 Oct 2024 09:58:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48642
IP address blocks: 91.231.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:75:dd:52:f9:57:36:10:06:3e:24:46:ab:36:c3:28:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d0db3568e455f3da2b2274a9d525cac0931c7d5
Validity
Not Before: Oct 10 09:58:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d34e97cb83c479a0dccbf96add1b7aa695e09bc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:e1:4a:70:57:34:bb:43:e5:e3:0a:37:6a:
a2:e6:9b:49:fc:f2:8f:d7:88:51:40:8f:5e:75:65:
61:65:70:87:e9:bf:95:40:8c:69:e0:58:6a:8c:e1:
37:e8:85:95:09:97:be:9a:52:d9:9c:d6:8e:57:f2:
2d:5b:df:98:92:08:c1:63:33:b9:39:b5:14:4a:71:
07:e1:c9:74:9a:02:a8:3b:dc:ca:4d:57:c1:ca:7d:
d4:5e:82:03:04:ff:1a:05:d0:20:4f:6a:b0:73:1f:
8c:89:dc:20:34:8f:ee:ec:36:fd:71:7e:e4:3e:92:
4f:48:ff:b8:f7:6f:79:8d:86:0f:3d:18:5c:6d:e4:
ed:52:7f:ef:6f:d5:0c:98:51:d9:13:b1:15:0f:bb:
56:bf:e3:a1:19:34:89:98:be:03:d5:6f:f5:30:b4:
03:1e:3f:ac:61:b0:81:56:f0:ca:38:41:0a:93:10:
1c:6a:10:4e:5f:7c:be:54:98:0c:2f:23:f7:32:af:
66:90:4e:bc:b8:04:4b:7e:47:9e:76:4a:42:12:07:
f8:28:8d:9a:09:db:d5:d9:de:c7:3c:d7:58:54:5a:
f2:7a:1b:03:ba:5b:31:2f:76:c1:06:59:47:6f:b8:
c4:91:fc:08:61:52:5c:27:aa:1f:3b:42:9f:99:bf:
06:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4E:97:CB:83:C4:79:A0:DC:CB:F9:6A:DD:1B:7A:A6:95:E0:9B:C9
X509v3 Authority Key Identifier:
keyid:1D:0D:B3:56:8E:45:5F:3D:A2:B2:27:4A:9D:52:5C:AC:09:31:C7:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HQ2zVo5FXz2isidKnVJcrAkxx9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/006Xy4PEeaDcy_lq3Rt6ppXgm8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bcf09a-7c8e-4e20-8450-e088aa0aa8dd/1/HQ2zVo5FXz2isidKnVJcrAkxx9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.196.0/22
Signature Algorithm: sha256WithRSAEncryption
56:43:6d:ef:49:a8:70:eb:63:2a:ed:a5:70:dd:8a:9b:c0:b1:
29:64:d1:4a:6e:f0:2e:e1:f3:64:d7:d0:d6:9e:db:bb:3e:f0:
67:1f:b1:52:ad:b6:b5:a5:96:38:75:89:90:ba:e3:2c:71:9b:
0e:47:ee:22:3c:83:2c:97:f2:8b:17:51:dc:ad:9f:72:97:e5:
e8:03:2b:fe:35:88:68:9a:c2:fb:79:3f:58:0b:f9:a8:a8:0c:
ed:93:9a:85:c1:d9:83:5f:d6:a8:64:a5:05:81:2c:b3:e9:8a:
98:5d:82:46:09:37:6d:f2:36:f9:61:c9:3a:62:3f:c0:6c:bd:
38:97:3e:4e:47:16:5a:f9:4d:12:09:60:eb:cb:6a:4d:e1:25:
bf:25:26:ff:1a:12:b9:0f:6a:0a:99:49:44:ea:24:c9:40:c7:
35:32:dc:a9:29:1f:31:ec:4d:a8:89:11:3a:b4:fa:c3:77:3f:
dc:f3:dc:e7:1e:d7:92:72:4e:e2:60:71:33:98:91:e2:16:fe:
91:90:26:eb:e0:fb:05:58:d4:92:f7:da:ba:a4:ed:65:d6:19:
b1:b4:01:08:9b:aa:e5:9b:32:3a:dc:9b:4b:b0:74:07:0d:1a:
33:61:47:53:b0:8d:c2:3d:20:33:2a:21:ba:df:60:20:eb:69:
19:0d:46:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:44:42 2025 by rpki-client