Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/5efef4-6299-47cc-a9ca-d516f0e1487b/1/GEDy2z2SxJ5Gj_Z2IyORwlMw_go.roa
File: GEDy2z2SxJ5Gj_Z2IyORwlMw_go.roa (raw, json)
Hash identifier: 1yc4t5Xu3cgGhb6DS4lMMZugN9V5/Z6J7p33pH+kRgw=
Subject key identifier: 18:40:F2:DB:3D:92:C4:9E:46:8F:F6:76:23:23:91:C2:53:30:FE:0A
Certificate issuer: /CN=f72e9c9146ed7bc58c85cdab6eb858e42286eef4
Certificate serial: 018E66472FE7EEDE3D4914CBA6C8327A5669
Authority key identifier: F7:2E:9C:91:46:ED:7B:C5:8C:85:CD:AB:6E:B8:58:E4:22:86:EE:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9y6ckUbte8WMhc2rbrhY5CKG7vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/5efef4-6299-47cc-a9ca-d516f0e1487b/1/GEDy2z2SxJ5Gj_Z2IyORwlMw_go.roa
Signing time: Fri 22 Mar 2024 13:08:45 +0000
ROA not before: Fri 22 Mar 2024 13:08:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 91.208.108.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 25 Mar 2024 17:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:66:47:2f:e7:ee:de:3d:49:14:cb:a6:c8:32:7a:56:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f72e9c9146ed7bc58c85cdab6eb858e42286eef4
Validity
Not Before: Mar 22 13:08:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1840f2db3d92c49e468ff676232391c25330fe0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:92:74:fa:68:59:bb:4d:32:d1:b7:cc:ce:bf:
b2:49:43:c8:33:bd:cc:d3:6f:3b:02:dd:f6:62:cb:
49:fe:02:82:2f:ed:ba:9f:0e:b6:74:11:cf:b4:08:
9c:ff:23:66:5e:13:13:22:4e:ed:76:2f:ff:f0:e7:
3d:f4:a0:69:e0:a1:72:7e:93:c8:64:98:22:88:04:
97:85:3c:39:dd:3d:02:1a:c5:a9:1d:79:fe:07:2d:
3c:63:8d:7a:a1:74:f8:67:2c:f0:13:da:6e:b5:da:
bf:d8:8b:5f:c2:8d:c3:b5:7b:5d:52:76:3e:ad:bb:
2a:18:24:76:5b:b1:ca:05:33:8f:3b:78:77:2a:4e:
7b:c6:69:bf:d5:0e:8c:e9:80:30:d3:d8:03:af:8d:
de:2f:56:98:fc:12:69:f3:11:f9:e6:2d:f5:e4:82:
eb:0b:c8:11:ec:de:70:3e:56:4e:a7:aa:a5:1a:e3:
76:8e:4b:31:1e:ab:20:87:c7:c5:61:96:be:c3:f7:
05:e7:b2:cc:0e:be:0c:6a:7d:65:0e:4d:ba:0a:dc:
4a:70:f7:a9:09:ed:9e:2c:c4:74:55:92:8c:18:1a:
db:12:bf:0f:23:91:4b:00:b0:08:ef:e1:38:c1:78:
07:bd:0d:36:f8:5d:0c:95:41:f1:5f:01:69:7e:be:
79:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:40:F2:DB:3D:92:C4:9E:46:8F:F6:76:23:23:91:C2:53:30:FE:0A
X509v3 Authority Key Identifier:
keyid:F7:2E:9C:91:46:ED:7B:C5:8C:85:CD:AB:6E:B8:58:E4:22:86:EE:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9y6ckUbte8WMhc2rbrhY5CKG7vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/5efef4-6299-47cc-a9ca-d516f0e1487b/1/GEDy2z2SxJ5Gj_Z2IyORwlMw_go.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/5efef4-6299-47cc-a9ca-d516f0e1487b/1/9y6ckUbte8WMhc2rbrhY5CKG7vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.208.108.0/24
Signature Algorithm: sha256WithRSAEncryption
91:25:2f:27:c1:c5:e3:e5:96:82:58:71:f2:6e:9c:be:fc:b7:
6e:f7:cc:a5:b6:7c:54:52:ce:b1:3a:d6:a4:ed:9d:ed:b7:63:
bf:c6:ab:26:b8:a0:e8:00:a5:7b:a4:0f:fc:d0:25:5c:f7:dc:
42:63:9d:9a:5a:3d:18:b8:74:00:8c:55:4a:9d:ca:63:96:ae:
a1:77:6d:31:e0:6c:99:70:eb:39:74:b6:63:21:65:de:ac:d3:
ad:10:74:6e:2f:38:c2:6e:d3:93:e7:8a:ca:82:6b:ef:93:aa:
f5:78:3d:14:ab:48:9a:be:02:21:31:dc:1e:8e:d1:50:7e:2f:
8d:41:e6:cb:89:b5:e0:d1:f6:84:50:56:24:94:c8:df:07:b7:
f4:d5:d7:db:48:2d:36:36:e8:18:98:42:4c:56:64:b6:db:d3:
a1:dc:59:db:f3:39:eb:1f:b3:05:a3:4d:da:2e:84:04:dc:73:
49:03:e6:ef:12:43:b9:30:c6:aa:84:00:8c:80:a7:27:17:c1:
c8:1d:a3:62:c0:3f:95:64:0b:6f:f6:04:9b:e9:98:df:b8:38:
11:30:5c:d2:3d:21:4c:00:01:54:15:d1:60:20:e1:6e:a4:fb:
12:dc:9e:bb:cf:ca:35:4e:f7:c8:de:11:22:b3:f7:66:89:83:
97:17:d5:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:24 2024 by rpki-client on console-fra.rpki-client.org