Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/DWPlCDt32sMODeC7NYYC5634o7s.roa
File: DWPlCDt32sMODeC7NYYC5634o7s.roa (raw, json)
Hash identifier: mFnFHy0Q9d/TMQAmB0eR9AP2cPIprwXjtrhRGM9C2cY=
Subject key identifier: 0D:63:E5:08:3B:77:DA:C3:0E:0D:E0:BB:35:86:02:E7:AD:F8:A3:BB
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 0191899B01D3CE53B20949CC75BFC56F0B42
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/DWPlCDt32sMODeC7NYYC5634o7s.roa
Signing time: Sun 25 Aug 2024 12:55:22 +0000
ROA not before: Sun 25 Aug 2024 12:55:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60707
IP address blocks: 91.228.12.0/24 maxlen: 24
91.228.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Nov 2024 13:42:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:89:9b:01:d3:ce:53:b2:09:49:cc:75:bf:c5:6f:0b:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Aug 25 12:55:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0d63e5083b77dac30e0de0bb358602e7adf8a3bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:51:c0:a9:83:29:d3:73:83:6a:49:32:56:0f:
ff:b6:37:11:0c:29:4e:70:2b:ca:01:b5:93:9d:74:
bd:94:fd:84:97:6a:2a:3c:61:ec:5d:a2:0f:56:fd:
2a:2c:1e:12:58:c7:4c:95:0e:43:a7:a9:f8:67:35:
ff:09:95:d8:7b:a8:15:cc:32:75:2f:04:2c:d3:a0:
a1:2d:c2:70:83:62:8a:f6:8c:b0:aa:82:6b:db:35:
e5:5e:60:dc:c8:97:9a:64:82:f5:50:0b:50:d9:d0:
61:15:8d:f1:9e:f4:31:36:73:e0:50:2d:8d:63:34:
50:c4:c9:80:58:f8:9f:0c:48:b3:53:33:07:c8:24:
48:73:70:a5:39:42:42:7f:b5:63:4e:1d:5d:87:27:
76:21:36:95:db:91:3c:5f:4e:b2:0c:dd:3d:a9:6f:
52:e9:be:59:0f:8a:37:33:41:cd:f1:76:31:d7:69:
c4:9f:fe:09:76:80:f1:e7:a9:7d:76:49:5d:35:bd:
8d:a0:9c:76:f5:a8:4e:17:ba:f0:8b:0d:0f:c3:c9:
24:a9:22:4a:89:94:d5:25:70:ca:ac:32:00:fe:19:
1b:21:85:aa:21:d5:18:0a:7a:5e:40:66:db:3e:94:
23:be:0c:dc:1e:dc:46:39:d8:12:3d:c6:8b:f5:80:
94:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:63:E5:08:3B:77:DA:C3:0E:0D:E0:BB:35:86:02:E7:AD:F8:A3:BB
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/DWPlCDt32sMODeC7NYYC5634o7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.12.0/24
91.228.14.0/24
Signature Algorithm: sha256WithRSAEncryption
33:6a:f5:00:58:11:c5:e7:60:a0:31:08:70:9f:ef:d4:37:02:
21:63:48:ea:c6:a6:e9:04:d2:05:fa:0d:34:d8:e2:94:dc:08:
ec:5b:bd:75:cf:f6:48:7b:7a:6e:63:4a:31:98:be:9c:b1:50:
9c:52:83:a9:a8:8d:21:58:4f:84:bc:79:5c:9e:95:17:0f:e5:
3b:77:9e:5e:0f:1d:9f:1f:3f:ea:ad:9c:20:4d:07:a1:50:fc:
f1:a3:78:0c:20:c0:2a:b6:89:e0:fa:8c:d5:49:d3:5d:d2:e6:
ac:cc:ff:9e:89:b1:54:89:0d:a9:16:29:f6:c3:da:91:45:75:
01:f9:5d:46:23:87:cb:75:bc:1b:4d:0e:f9:04:c3:21:04:23:
df:6c:fc:6a:f9:ce:51:bf:8c:2c:38:c6:db:60:06:68:ad:22:
8c:5d:93:4f:90:9b:7e:05:c7:33:de:6f:e2:87:44:6e:af:e4:
32:c0:64:bd:e2:9d:16:1b:45:11:3e:3f:7d:31:49:ac:a2:f4:
ed:d6:be:ff:7d:09:95:36:b9:32:26:9d:87:26:9e:a8:bd:b1:
29:72:3a:2d:0d:92:f2:20:81:c7:60:4f:b8:ab:90:1b:a3:73:
bc:bd:65:6f:ec:84:e4:d8:7d:1b:ad:ba:ed:1c:32:58:b0:83:
5b:8b:42:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 16:41:13 2024 by rpki-client on console-fra.rpki-client.org