Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/_On8BO-H_FL4-4W8C5llZ6aSyIo.roa
File: _On8BO-H_FL4-4W8C5llZ6aSyIo.roa (raw, json)
Hash identifier: VqLW9iLlkvd4DRJ4d6+kwNGX11DRuwtyKvv27/5OtAg=
Subject key identifier: FC:E9:FC:04:EF:87:FC:52:F8:FB:85:BC:0B:99:65:67:A6:92:C8:8A
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 01906F41BA7AF86559D3E49B0F3D99CF17FF
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/_On8BO-H_FL4-4W8C5llZ6aSyIo.roa
Signing time: Mon 01 Jul 2024 17:04:56 +0000
ROA not before: Mon 01 Jul 2024 17:04:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 91.228.14.0/24 maxlen: 24
94.154.36.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 03 Jul 2024 20:24:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:6f:41:ba:7a:f8:65:59:d3:e4:9b:0f:3d:99:cf:17:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Jul 1 17:04:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fce9fc04ef87fc52f8fb85bc0b996567a692c88a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:6e:27:0e:df:b3:92:f3:44:b9:63:e8:65:dc:
ea:29:eb:2e:f5:f3:99:18:c4:7d:c8:4d:3b:7f:c9:
2b:bb:a7:73:44:db:0d:fb:c0:f0:10:a2:93:f5:d3:
f2:e9:91:92:ba:cb:e7:ac:af:0d:65:b5:4c:69:d0:
34:02:30:68:30:5d:a6:34:95:2d:d6:d1:c7:33:41:
e1:a6:93:bb:1f:b6:82:42:97:4f:32:a5:dc:97:92:
b0:5e:89:5b:b8:2a:72:f8:a7:c4:36:ec:0c:54:21:
b1:69:77:fb:1c:6e:d9:1c:8b:ff:46:e4:f3:b6:dd:
e4:05:09:76:44:a9:d0:65:4e:a9:71:db:aa:98:3d:
8d:5a:db:9e:01:3e:e7:1b:98:05:35:b8:1f:72:e0:
25:51:8a:32:26:4b:aa:63:ac:e8:07:50:a3:3e:a0:
97:14:64:87:ff:e4:f6:6f:97:09:a7:57:72:49:4f:
84:68:5b:e2:18:b3:a9:75:c3:04:79:74:bf:00:3b:
20:66:64:b6:4c:1d:25:80:2a:b0:b9:2c:bc:9e:bc:
08:af:a7:b6:15:fd:88:08:56:77:40:64:39:b8:78:
9a:cb:60:8d:3a:2a:f0:2d:a6:9a:36:15:9a:c3:12:
87:8d:54:b1:70:77:d5:5f:b0:37:d6:65:6d:bd:89:
36:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:E9:FC:04:EF:87:FC:52:F8:FB:85:BC:0B:99:65:67:A6:92:C8:8A
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/_On8BO-H_FL4-4W8C5llZ6aSyIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.228.14.0/24
94.154.36.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:0e:d9:88:78:15:33:07:ee:7a:f6:af:57:4f:2a:60:bc:c6:
ef:d0:39:1d:5e:cf:17:c5:1f:94:2f:de:1c:04:c4:39:69:92:
42:77:c7:4c:9f:18:ae:c4:20:a3:77:45:94:b7:12:ed:22:10:
ce:f9:f9:66:17:14:07:d9:23:07:74:69:8c:73:78:e2:e8:b1:
20:42:6e:3e:50:13:56:51:8c:2d:e0:55:12:7c:ca:0f:e1:b3:
4d:99:16:25:41:d4:e8:21:a0:19:18:50:a3:2c:93:f5:17:71:
59:67:41:7c:b3:77:5a:d9:ec:fa:d6:11:bb:24:30:02:91:f1:
76:8c:ad:e7:0a:a4:a2:f0:3f:fe:aa:83:0a:2f:fa:ac:2f:99:
d9:f9:0a:f9:92:77:9c:0f:6b:a6:70:28:9a:7b:1c:28:8a:d1:
2e:62:30:1a:b3:67:27:82:d9:84:4f:fd:44:20:a5:3a:50:a4:
2d:d4:9c:e7:7b:d9:4d:c4:6a:b1:71:0b:ed:32:df:99:18:df:
9f:75:9a:23:eb:0c:60:cc:a6:49:07:8c:11:95:86:b7:ef:6a:
f7:58:2e:43:d9:c0:82:1f:63:c9:9b:a5:89:94:84:8a:ec:3d:
56:c0:90:05:cf:81:b8:c2:1f:34:e5:55:8a:3e:fd:1e:69:f9:
f5:1b:00:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 3 21:09:18 2024 by rpki-client on console-fra.rpki-client.org