Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/3VUBe1SwnclM6Q4EBfGAmumszAU.roa
File: 3VUBe1SwnclM6Q4EBfGAmumszAU.roa (raw, json)
Hash identifier: vDl6jk8RoPWm8uxC5JpdWbuFV1aUVajsTJYmmfpymCI=
Subject key identifier: DD:55:01:7B:54:B0:9D:C9:4C:E9:0E:04:05:F1:80:9A:E9:AC:CC:05
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 018DEBD9CE07DD5C1A912931E7D797033D17
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/3VUBe1SwnclM6Q4EBfGAmumszAU.roa
Signing time: Tue 27 Feb 2024 18:35:36 +0000
ROA not before: Tue 27 Feb 2024 18:35:36 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48031
IP address blocks: 91.246.48.0/24 maxlen: 24
91.247.165.0/24 maxlen: 24
91.247.166.0/24 maxlen: 24
91.247.173.0/24 maxlen: 24
109.107.136.0/24 maxlen: 24
176.97.203.0/24 maxlen: 24
193.160.219.0/24 maxlen: 24
194.105.60.0/24 maxlen: 24
194.107.92.0/24 maxlen: 24
217.198.176.0/24 maxlen: 24
217.198.179.0/24 maxlen: 24
217.198.180.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 08:54:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:eb:d9:ce:07:dd:5c:1a:91:29:31:e7:d7:97:03:3d:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Feb 27 18:35:36 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd55017b54b09dc94ce90e0405f1809ae9accc05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:08:e7:81:a1:51:cd:e7:1e:3e:f3:1d:cb:05:
45:4d:ae:e0:37:ad:68:cb:08:5c:83:27:bd:7f:ca:
6e:aa:82:f9:99:c9:c1:ce:41:bf:5d:3c:ce:27:eb:
3b:da:78:76:c8:2d:cc:aa:39:00:09:9b:d7:c1:0d:
ac:b1:2c:83:db:60:4b:6c:26:b0:ed:97:06:f8:85:
7d:ee:78:f1:3b:e4:6b:3c:4b:6b:44:48:36:eb:4e:
ff:35:25:e4:95:3b:12:ab:fe:42:d5:c6:d6:07:dd:
f1:d3:a1:af:b6:1f:9e:f5:94:5b:eb:b3:2d:df:9f:
19:84:98:a4:7e:eb:53:8f:60:47:47:fc:22:c7:85:
65:1d:aa:41:1d:37:12:ca:91:5c:1b:de:95:b2:4d:
d1:ae:7f:e2:3c:89:7a:b3:b9:16:e8:0c:f5:1a:91:
4d:8e:5a:a0:40:1d:be:5a:f3:4a:20:1c:55:74:81:
5d:74:0a:7b:25:86:df:58:c0:a9:dc:4e:80:3e:ab:
d4:18:26:e6:af:c0:bc:dd:41:bf:21:86:88:a3:d0:
7a:60:53:41:cb:6c:cb:9e:8c:5a:90:dd:dd:1f:af:
f0:6c:e4:47:38:88:2a:55:42:91:9a:63:9c:34:f2:
40:17:d2:7d:51:04:25:e2:6e:93:f8:5d:1a:82:35:
65:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:55:01:7B:54:B0:9D:C9:4C:E9:0E:04:05:F1:80:9A:E9:AC:CC:05
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/3VUBe1SwnclM6Q4EBfGAmumszAU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.246.48.0/24
91.247.165.0-91.247.166.255
91.247.173.0/24
109.107.136.0/24
176.97.203.0/24
193.160.219.0/24
194.105.60.0/24
194.107.92.0/24
217.198.176.0/24
217.198.179.0-217.198.180.255
Signature Algorithm: sha256WithRSAEncryption
61:38:61:4d:91:21:9c:4d:95:c4:d0:0f:a9:2b:4f:87:c5:4c:
a8:b2:ee:97:f6:f1:47:aa:51:65:61:a1:e0:13:91:b3:58:e1:
1d:61:1d:15:08:6e:cd:71:a6:b5:f4:9c:ee:6a:b0:1b:36:0b:
bd:d2:5c:54:03:fd:2c:c1:af:93:1a:f4:ce:1f:cc:94:a1:1b:
98:d6:30:49:30:cc:3e:c3:59:5f:a3:a8:f8:80:44:b6:60:11:
ef:2f:55:cb:ea:e7:d1:fe:2c:e3:2f:5a:71:59:21:23:de:31:
3b:b1:f5:45:ac:45:5a:22:a2:50:14:76:27:7b:bc:91:55:da:
84:94:fa:3e:9a:9a:8b:b6:19:41:ff:6d:99:9f:28:96:02:a8:
35:3f:f5:27:e9:06:a2:89:77:20:0d:7b:53:58:23:60:44:3f:
95:86:01:31:f8:08:ec:df:ce:bf:df:01:12:26:b0:ec:75:7b:
b0:6a:0a:62:0e:05:77:ae:57:b6:da:84:bf:81:65:83:be:43:
b6:fb:2a:fb:c1:ee:78:cf:46:50:c1:19:ee:d0:49:7f:f6:c9:
d7:a6:d2:b1:84:40:78:22:a6:7a:e3:c0:75:ed:74:48:4b:68:
cf:8a:a3:10:fe:04:d1:7a:f4:1f:c5:08:21:2b:38:16:c5:a8:
87:01:4a:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:22 2024 by rpki-client on console-fra.rpki-client.org