Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/vK3ihf5V7sZEkvsLGu1Em4tlpnY.roa
File: vK3ihf5V7sZEkvsLGu1Em4tlpnY.roa (raw, json)
Hash identifier: LWiwXRuu83355n7G9NXr+RyaWU9oQKxE4/543tqGwZ4=
Subject key identifier: BC:AD:E2:85:FE:55:EE:C6:44:92:FB:0B:1A:ED:44:9B:8B:65:A6:76
Certificate issuer: /CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Certificate serial: 018B01732109A329BF9655248B3B39BAFC8F
Authority key identifier: E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/vK3ihf5V7sZEkvsLGu1Em4tlpnY.roa
Signing time: Thu 05 Oct 2023 20:06:44 +0000
ROA not before: Thu 05 Oct 2023 20:06:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 178.254.168.0/24 maxlen: 24
89.23.91.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 08 Oct 2023 19:28:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:01:73:21:09:a3:29:bf:96:55:24:8b:3b:39:ba:fc:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9713ef25277e13dd73f44196fda5cec0fd9ce16
Validity
Not Before: Oct 5 20:06:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bcade285fe55eec64492fb0b1aed449b8b65a676
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:0b:ed:ac:a7:fd:25:5f:c3:2a:d8:75:ed:a6:
ca:37:d4:96:a3:64:51:73:86:4d:f1:d2:d4:70:05:
8f:56:a8:03:0d:95:bd:e7:b7:3d:ab:bd:14:6d:86:
b4:d1:81:8d:7f:45:15:84:19:21:09:bb:62:18:fe:
cb:c7:80:15:06:11:41:f0:ac:0d:33:59:f6:64:00:
e3:e2:95:90:6e:60:38:e8:c0:97:c5:15:8d:b3:76:
05:49:a4:32:84:13:30:68:7d:45:32:8a:bc:cc:3b:
ea:86:59:4f:f7:db:59:38:9f:f5:ec:7e:42:4f:13:
9a:94:74:39:f9:b4:20:4a:6c:33:60:9f:c2:23:70:
39:07:73:b0:fd:47:79:20:a3:dc:6a:ad:da:07:53:
ba:14:9d:78:4e:e4:c6:64:43:73:40:47:ce:51:2e:
bc:63:0d:84:93:da:9e:ca:4d:e2:a2:27:74:41:3a:
ac:cd:88:7f:38:bf:20:3e:20:58:81:f0:14:3e:81:
59:d6:03:f8:e0:6c:99:f5:ad:5b:80:af:3b:86:83:
4f:3e:7e:3b:1f:e7:44:0f:5e:ef:97:61:f9:8d:31:
0d:21:55:a6:40:0e:f2:27:55:6e:fc:ee:5d:af:f9:
f9:70:a6:29:0a:cd:b3:05:14:9b:8c:06:e0:2a:29:
52:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:AD:E2:85:FE:55:EE:C6:44:92:FB:0B:1A:ED:44:9B:8B:65:A6:76
X509v3 Authority Key Identifier:
keyid:E9:71:3E:F2:52:77:E1:3D:D7:3F:44:19:6F:DA:5C:EC:0F:D9:CE:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/vK3ihf5V7sZEkvsLGu1Em4tlpnY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e176eb-56f2-4807-b101-0f66c1887916/1/6XE-8lJ34T3XP0QZb9pc7A_ZzhY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.91.0/24
178.254.168.0/24
Signature Algorithm: sha256WithRSAEncryption
00:61:11:ee:b1:50:64:6a:ab:94:04:f6:8e:fc:0d:56:ad:6d:
ec:4a:de:0a:ec:ed:6a:b1:4b:de:01:4b:b3:c3:a2:5a:10:b8:
11:f4:c1:14:29:06:9a:70:28:ed:bb:ab:18:d6:2f:bb:cc:d1:
9e:ff:e9:cb:5f:f9:65:1c:53:55:ff:51:32:0c:78:1f:96:c2:
3a:5a:4e:3f:1f:40:e7:27:ed:d0:7f:0a:86:ed:59:4a:5e:38:
ff:bc:58:5e:fd:bd:15:8f:88:72:02:80:53:38:11:50:1f:1f:
70:96:72:38:ff:c4:91:20:a3:23:32:31:1d:75:99:c0:9f:90:
53:18:42:92:f7:07:be:77:56:71:e2:1f:96:98:86:c3:5a:91:
23:c5:b4:b5:77:92:9d:e7:b0:c5:38:71:0e:24:be:8a:13:b6:
cf:a0:15:d5:45:92:c6:1d:fa:d7:a7:15:0e:0c:e4:2c:f8:cf:
bf:9d:57:8a:e9:21:18:2e:86:4a:aa:54:dd:56:23:e7:c0:c8:
ec:af:98:e7:5d:12:2d:3e:3e:60:e2:cf:13:d4:6c:11:52:f5:
a7:27:9b:c1:aa:d5:0c:77:f0:d1:2e:31:db:39:5e:c8:51:a7:
01:fc:df:3c:ff:18:76:01:ea:c6:f5:fa:19:23:8f:31:c0:3b:
4f:32:9b:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org