Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/GS9ZcTGUENkQ1xr3ZB_ohVySwi4.roa
File: GS9ZcTGUENkQ1xr3ZB_ohVySwi4.roa (raw, json)
Hash identifier: k4pYHPVQ0YWRkW2daWQdnn38AHvJUem2bxF511InirE=
Subject key identifier: 19:2F:59:71:31:94:10:D9:10:D7:1A:F7:64:1F:E8:85:5C:92:C2:2E
Certificate issuer: /CN=68e95817406095ec7cb5c7b286b11333497b9451
Certificate serial: 0192868FECE0D260F0E1C0EB752FA3CD6AEF
Authority key identifier: 68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/GS9ZcTGUENkQ1xr3ZB_ohVySwi4.roa
Signing time: Sun 13 Oct 2024 15:47:12 +0000
ROA not before: Sun 13 Oct 2024 15:47:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208477
IP address blocks: 91.208.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:86:8f:ec:e0:d2:60:f0:e1:c0:eb:75:2f:a3:cd:6a:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68e95817406095ec7cb5c7b286b11333497b9451
Validity
Not Before: Oct 13 15:47:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=192f5971319410d910d71af7641fe8855c92c22e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:4c:23:44:79:e2:ae:e0:9a:57:67:15:23:62:
78:a9:9d:84:0b:9e:21:f8:6a:2f:eb:4b:db:25:30:
c9:78:73:c1:a3:8c:ad:be:67:11:be:22:33:68:27:
32:e5:8b:56:b6:f1:bb:aa:ce:52:38:7c:3c:94:de:
87:60:57:8d:0e:b9:29:b0:f1:a7:f5:a9:27:19:3c:
b4:0b:b3:9c:ba:63:d1:e6:ce:f8:11:80:8e:c1:d8:
fd:ce:2a:89:39:60:2d:1b:15:9f:4c:bc:93:1a:a4:
4a:e8:7c:66:01:bc:3e:bb:00:eb:37:1f:02:0e:77:
13:16:c3:c9:70:71:9a:1a:9d:33:28:8a:a0:d1:ee:
c1:ca:dd:2c:79:b9:20:d1:f7:9a:1e:e0:c5:40:df:
0f:d8:e4:c3:e6:39:08:ac:03:e1:b7:37:d5:a8:3c:
73:5a:f8:66:be:3a:77:22:cc:e8:7e:c7:33:fe:d4:
e4:4c:bb:50:b0:ad:3b:73:55:65:e5:d9:a2:04:ce:
52:af:45:7d:a2:4e:2d:c7:24:25:63:48:d7:19:f2:
8b:ec:f6:b0:48:66:52:8c:21:fb:fe:c9:e2:34:7a:
99:d2:8b:40:39:f8:5f:96:6b:b0:89:00:04:2e:b9:
6e:8a:48:1c:2b:82:bc:e4:63:a3:3c:8a:73:e7:23:
83:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:2F:59:71:31:94:10:D9:10:D7:1A:F7:64:1F:E8:85:5C:92:C2:2E
X509v3 Authority Key Identifier:
keyid:68:E9:58:17:40:60:95:EC:7C:B5:C7:B2:86:B1:13:33:49:7B:94:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aOlYF0Bglex8tceyhrETM0l7lFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/GS9ZcTGUENkQ1xr3ZB_ohVySwi4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/4a5d71-e11d-4d32-b597-019ec9d9a758/1/aOlYF0Bglex8tceyhrETM0l7lFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.31.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:55:06:bf:bf:09:23:70:51:d1:8d:8d:b4:eb:41:d5:db:3a:
04:79:e4:59:52:66:c6:5a:63:74:08:4a:eb:49:90:a3:26:50:
d8:14:69:b5:bb:13:29:4a:21:34:11:fc:01:ae:de:f7:7c:b8:
c8:ae:ee:e6:14:28:45:9e:48:7b:3a:9f:74:ea:dd:dc:21:d7:
8a:af:21:7f:d3:40:7e:84:7b:61:77:9f:14:00:19:de:51:cd:
36:3b:c2:12:0a:30:22:55:a3:2a:73:ab:76:93:6f:ee:1c:15:
ac:b1:ab:79:2c:30:17:a6:4f:4f:4e:fb:4e:e1:1c:0d:53:76:
c7:77:b7:7f:85:ed:ed:4a:dc:e9:1c:64:b5:15:d3:a3:ef:c3:
c9:23:c0:5a:d0:a8:b0:36:b3:a9:74:d5:de:d6:3b:6b:9c:ce:
5e:0a:33:4c:9b:ff:43:af:6d:82:40:ae:1b:c4:41:a7:81:9c:
50:2f:37:07:af:1f:c7:69:1d:21:13:95:6c:b8:2d:fa:f0:c4:
3a:6d:01:ae:f4:5d:4b:bb:99:f2:cd:94:30:c0:20:1d:25:70:
3a:72:8a:2c:da:2c:47:65:76:43:95:ed:8e:2e:4a:89:9b:d3:
81:99:f1:a2:44:a7:83:f6:df:18:8b:4d:4f:c4:d9:50:72:51:
78:12:34:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:21:29 2025 by rpki-client