Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Sup0L-gtSai7TJDq1xO5ksoMzjg.roa
File: Sup0L-gtSai7TJDq1xO5ksoMzjg.roa (raw, json)
Hash identifier: LnNRxyKRNZ+oIviHFrui9MePKY4FcW5QVGLpyqJoSlQ=
Subject key identifier: 4A:EA:74:2F:E8:2D:49:A8:BB:4C:90:EA:D7:13:B9:92:CA:0C:CE:38
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 018D6074FDA58F3695D865DDBB6863090B92
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Sup0L-gtSai7TJDq1xO5ksoMzjg.roa
Signing time: Wed 31 Jan 2024 16:58:16 +0000
ROA not before: Wed 31 Jan 2024 16:58:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212744
IP address blocks: 91.228.14.0/24 maxlen: 24
94.154.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 14 Feb 2024 14:15:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:60:74:fd:a5:8f:36:95:d8:65:dd:bb:68:63:09:0b:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jan 31 16:58:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4aea742fe82d49a8bb4c90ead713b992ca0cce38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:09:a0:d0:c2:9d:b3:5a:e7:37:fa:49:ff:e1:
ee:71:cd:4b:06:f2:30:c7:38:a9:9f:63:28:51:97:
b5:cb:a6:97:57:37:7e:09:a4:9d:97:e3:64:01:43:
8b:3d:e9:20:2c:e5:9b:45:8a:65:b0:a9:bf:cf:2a:
af:2a:8e:d5:57:16:df:28:83:c7:72:5c:46:5b:88:
db:5a:2f:c7:5e:41:94:65:18:a2:60:14:db:b5:fe:
9e:dc:27:74:fd:69:b5:8e:02:f6:0a:e1:a4:40:d4:
8d:f8:28:c3:2a:26:ef:ce:59:97:c2:30:1b:96:c3:
d2:36:e6:bb:bf:22:1d:1b:da:b6:5d:30:a1:1a:b0:
50:49:2d:be:0f:5a:18:96:b1:ad:fa:be:e6:e7:fe:
31:55:16:84:c7:e9:dd:a4:4a:fd:c4:73:a7:a6:06:
a4:af:fd:4d:d2:94:94:3d:00:22:c1:bf:5b:f5:7c:
84:bd:f6:99:7e:54:47:56:18:4a:46:3e:71:52:05:
69:f9:fe:ee:ff:c8:87:71:d9:c1:6e:3e:87:b1:73:
68:ec:e1:4d:18:1d:63:44:9e:b7:84:f9:3f:59:3a:
82:54:8a:58:bb:c0:81:0b:46:88:8a:5a:8d:5b:ae:
dc:ad:6b:f4:d3:2e:60:c9:09:bb:76:5f:49:1d:ea:
5d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:EA:74:2F:E8:2D:49:A8:BB:4C:90:EA:D7:13:B9:92:CA:0C:CE:38
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/Sup0L-gtSai7TJDq1xO5ksoMzjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/24
94.154.35.0/24
Signature Algorithm: sha256WithRSAEncryption
75:47:e2:53:de:71:9e:45:17:28:9d:35:68:89:4d:56:30:cf:
04:67:a9:32:76:60:27:5b:6b:d9:e6:f2:ec:1e:00:b3:ce:a3:
d0:ed:34:b8:5e:2b:87:69:76:12:ae:2a:78:f6:b4:77:ae:b5:
6f:11:f6:4f:af:92:50:f1:34:a6:d5:15:5d:7a:fb:c6:00:ce:
3b:9c:e9:5b:d7:d3:a2:2f:64:34:e0:87:bd:3e:73:ed:9d:cc:
e9:af:91:1b:85:f1:1b:16:c6:40:95:1b:33:a6:76:a5:a5:24:
78:0f:6b:1a:7d:de:1e:32:8d:46:35:bd:dd:1a:c3:33:c6:1c:
35:54:fe:f8:64:05:40:20:d5:c9:52:bf:03:0f:3b:f2:3e:d8:
56:74:a6:a8:50:ba:95:ed:eb:37:84:ea:5d:1e:e1:5d:d1:cc:
f7:b5:4b:fa:b4:56:d8:91:78:53:3b:cc:da:5c:2f:ac:d8:b3:
9a:9b:2d:44:ae:1d:3a:9a:96:b9:8f:94:c8:25:09:aa:d7:9c:
16:bb:d6:5c:b3:33:bc:bc:23:57:bf:fe:62:7a:f7:bd:8f:70:
52:d8:5d:d0:c9:f1:39:95:84:de:f4:aa:25:f6:02:fe:1a:95:
3d:76:05:a7:1a:ad:d8:38:69:46:17:69:b0:1a:03:b3:b5:6b:
f3:b7:96:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 14 18:19:20 2024 by rpki-client on console-fra.rpki-client.org