Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/8BNmfHBH7L-QWWH0N7o0Ze-gb9A.roa
File: 8BNmfHBH7L-QWWH0N7o0Ze-gb9A.roa (raw, json)
Hash identifier: is0Z6LcL9BvM4yzfhazWA3EveWX3ITgUgQ6yqgB6Pvk=
Subject key identifier: F0:13:66:7C:70:47:EC:BF:90:59:61:F4:37:BA:34:65:EF:A0:6F:D0
Certificate issuer: /CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Certificate serial: 018C676204FB694BE6EF2151D2FF666D3002
Authority key identifier: 00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/8BNmfHBH7L-QWWH0N7o0Ze-gb9A.roa
Signing time: Thu 14 Dec 2023 08:12:06 +0000
ROA not before: Thu 14 Dec 2023 08:12:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48126
IP address blocks: 91.229.248.0/24 maxlen: 24
195.110.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jan 2024 02:29:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:62:04:fb:69:4b:e6:ef:21:51:d2:ff:66:6d:30:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=002647c801fb58fcfaac135bb48f5e61fea7e566
Validity
Not Before: Dec 14 08:12:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f013667c7047ecbf905961f437ba3465efa06fd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:5b:de:07:d3:97:3f:87:41:11:99:ae:92:b1:
94:fe:df:06:d7:c7:5c:79:5a:d6:10:62:1c:d9:b6:
f5:eb:57:80:fd:ed:34:17:1a:fc:88:2b:8d:70:14:
d1:75:eb:fb:15:2b:e1:f4:0c:83:b9:f7:54:ca:7b:
62:09:a0:55:12:0b:14:72:4d:c1:81:fd:2a:63:7d:
20:fa:65:62:e3:f2:e1:40:0e:48:cc:bf:ed:78:3d:
85:bd:4f:d1:1f:77:b5:7c:8b:66:15:88:cc:17:9f:
d9:66:f5:5d:b7:3f:13:39:b7:86:3d:fe:dd:b2:03:
0f:5c:52:7e:09:bc:d6:51:1b:24:e3:4b:df:d0:f2:
b2:81:62:a6:b6:70:69:c8:61:ac:92:eb:99:d2:69:
f5:f2:52:e4:39:24:88:dc:16:cd:64:8d:fc:91:e2:
4f:b8:3d:8f:a3:a0:15:55:6e:67:d3:57:b8:20:a6:
9a:45:4c:13:88:15:5a:1c:a5:85:27:47:0e:d8:3d:
7e:c4:24:05:3f:03:7f:4a:35:8e:f6:41:da:df:ae:
ed:ea:aa:30:79:cb:fa:d4:c2:a1:f6:d8:f4:7b:b5:
c4:eb:eb:3d:78:ac:ff:9d:68:57:ee:fb:97:5c:a7:
c6:f0:dd:a1:dc:38:2e:d9:09:15:1e:53:84:e7:5c:
b1:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:13:66:7C:70:47:EC:BF:90:59:61:F4:37:BA:34:65:EF:A0:6F:D0
X509v3 Authority Key Identifier:
keyid:00:26:47:C8:01:FB:58:FC:FA:AC:13:5B:B4:8F:5E:61:FE:A7:E5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ACZHyAH7WPz6rBNbtI9eYf6n5WY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/8BNmfHBH7L-QWWH0N7o0Ze-gb9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/cfc06f-82be-49fb-bc82-94efbf5cecd4/1/ACZHyAH7WPz6rBNbtI9eYf6n5WY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.248.0/24
195.110.21.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:80:6b:12:9e:f2:9c:ea:63:04:8f:b9:7f:7a:02:d2:4c:16:
41:2b:50:f9:59:8f:c3:4c:6a:20:54:01:17:6f:a2:b6:62:50:
85:ba:0b:d3:0b:10:a2:db:a8:b0:81:90:b1:84:03:20:00:3c:
77:07:4f:a6:7d:30:5d:ba:e1:a1:1f:39:c3:79:5c:f2:e3:14:
45:c2:ee:d6:b8:89:e4:52:25:c1:0b:7c:eb:ed:73:b2:58:92:
40:82:e1:50:62:f2:45:64:07:d3:b0:7f:c7:b9:7e:9d:cf:81:
34:90:e6:23:84:82:96:39:2f:85:04:6a:cc:61:d7:a1:43:89:
69:54:27:e6:b7:05:82:82:03:d4:3f:94:2e:3e:f6:76:9b:53:
b3:77:b5:d9:38:bd:e1:29:80:c2:4f:35:79:8f:23:f0:84:20:
67:79:87:a3:ae:72:93:1b:7d:11:ef:8f:8a:3a:c3:0c:9f:c0:
39:c8:83:8b:70:3c:50:b9:f3:83:b5:1d:92:63:7e:1e:09:df:
bb:0f:63:66:06:10:0f:a3:d7:b8:fd:f6:54:d6:9d:dd:df:3a:
89:b7:ab:7a:20:fc:8c:61:03:75:a1:38:ec:e3:d6:7b:e2:87:
3a:04:ef:66:3a:54:86:15:3b:7c:6e:a0:42:74:dd:31:b9:22:
12:bc:40:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:29 2024 by rpki-client on console-ams.rpki-client.org