Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/6fe110-2b31-4fed-a56b-5ad5d29d72dd/1/73T-a0mq1IYHYwv3tQIS_SjeVtE.roa
File: 73T-a0mq1IYHYwv3tQIS_SjeVtE.roa (raw, json)
Hash identifier: drQTG6q2vpOlfd1cNESZzkQoJbVC1/5Z0Ta9EUzSP7Q=
Subject key identifier: EF:74:FE:6B:49:AA:D4:86:07:63:0B:F7:B5:02:12:FD:28:DE:56:D1
Certificate issuer: /CN=9cf45e00ae164e67aa1354857237d09adf27c952
Certificate serial: 018CC94E40685CDB17DD7115CB76DC916D88
Authority key identifier: 9C:F4:5E:00:AE:16:4E:67:AA:13:54:85:72:37:D0:9A:DF:27:C9:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nPReAK4WTmeqE1SFcjfQmt8nyVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/6fe110-2b31-4fed-a56b-5ad5d29d72dd/1/73T-a0mq1IYHYwv3tQIS_SjeVtE.roa
Signing time: Tue 02 Jan 2024 08:33:17 +0000
ROA not before: Tue 02 Jan 2024 08:33:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48069
IP address blocks: 91.208.209.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 30 May 2024 15:09:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c9:4e:40:68:5c:db:17:dd:71:15:cb:76:dc:91:6d:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cf45e00ae164e67aa1354857237d09adf27c952
Validity
Not Before: Jan 2 08:33:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ef74fe6b49aad48607630bf7b50212fd28de56d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:e1:0c:4a:ed:0e:15:18:48:91:ac:ad:08:23:
e7:a4:d2:29:44:85:9c:9c:97:43:4e:1c:55:73:1f:
05:f0:32:cd:6e:e6:4b:43:49:fe:fc:b6:98:72:5f:
ed:db:d0:58:4b:e1:6e:48:ee:35:71:51:2f:29:f3:
fe:01:c7:2f:01:15:0e:0f:7b:28:a9:7f:5d:e5:de:
f9:90:8d:89:da:d6:39:0b:cc:3c:1b:0c:56:78:79:
1a:e0:92:52:df:86:86:6e:74:f0:ed:a8:d4:67:39:
01:7c:80:62:e5:d7:83:e1:61:00:2d:7f:e7:bd:0a:
42:18:34:19:71:5c:c5:0d:05:48:c0:03:f0:b9:3c:
dc:0f:ac:47:3d:55:6d:20:8b:18:f7:24:ca:d3:2f:
bb:ea:64:3d:36:a3:e3:b0:8d:c8:eb:31:3b:14:c9:
83:95:19:fc:3b:43:6d:a8:74:97:9c:78:5c:fc:9d:
46:fa:fe:c7:f8:8b:de:a9:8f:a5:d8:96:ab:42:c7:
15:ee:2e:19:f0:a1:10:5c:a7:f5:ab:2e:e8:f5:4e:
ec:2d:d9:d6:a4:11:93:d8:c9:d5:7f:b6:51:45:88:
80:c8:00:50:61:8e:ea:7a:e5:31:03:d5:d8:86:cf:
24:cc:6e:5c:11:52:4c:c4:82:80:30:87:26:f3:1c:
6b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:74:FE:6B:49:AA:D4:86:07:63:0B:F7:B5:02:12:FD:28:DE:56:D1
X509v3 Authority Key Identifier:
keyid:9C:F4:5E:00:AE:16:4E:67:AA:13:54:85:72:37:D0:9A:DF:27:C9:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nPReAK4WTmeqE1SFcjfQmt8nyVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6fe110-2b31-4fed-a56b-5ad5d29d72dd/1/73T-a0mq1IYHYwv3tQIS_SjeVtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/6fe110-2b31-4fed-a56b-5ad5d29d72dd/1/nPReAK4WTmeqE1SFcjfQmt8nyVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:77:ae:e7:c5:e0:bd:3a:2a:d9:ea:d6:71:b5:ab:48:3b:71:
75:ea:1b:6b:ff:2e:19:3a:95:2a:23:33:e2:df:b5:7d:f2:ec:
d6:75:27:ab:29:19:4a:3d:8b:95:23:a2:dc:8b:34:da:3c:b9:
c9:03:09:21:d2:85:da:4b:d2:52:c4:8d:8a:af:08:cd:ac:4c:
89:ec:66:c8:97:99:ef:9e:3c:cb:f3:48:8a:23:38:4b:6f:56:
b3:08:9c:93:ec:22:86:74:a3:40:e5:92:7e:5b:b3:6a:5c:dd:
97:3d:bb:9c:6a:26:dc:b6:45:d3:73:fd:cb:9a:88:a7:f1:25:
ed:ec:02:45:fc:9f:ae:58:62:97:6e:99:2e:f4:f9:c0:ef:40:
f5:17:1e:69:0d:e2:7b:06:b2:d9:08:9f:6c:2f:15:83:65:a4:
d2:67:66:fe:2f:28:5f:41:40:da:ee:54:40:01:48:6d:48:05:
01:9e:4b:17:79:8e:84:60:52:f0:25:81:db:02:96:cb:fe:7b:
3f:c7:32:04:cb:43:ad:1b:76:b0:11:4d:56:9c:04:fc:d5:d5:
7e:ea:9e:c8:10:a5:e6:4d:79:61:4e:dc:69:ec:ad:75:d8:66:
4c:d2:51:ba:95:7e:8c:f9:4a:73:85:37:fc:f8:6e:8a:d1:dd:
fb:12:a4:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:59 2024 by rpki-client on console-fra.rpki-client.org