Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/mPUhvD5ZuAWnUaIzeOBYI8NqEF8.roa
File: mPUhvD5ZuAWnUaIzeOBYI8NqEF8.roa (raw, json)
Hash identifier: ZVkX/JW2q+uda6tHjlGx8embWAH+Jgm0x8sVz0N+X+k=
Subject key identifier: 98:F5:21:BC:3E:59:B8:05:A7:51:A2:33:78:E0:58:23:C3:6A:10:5F
Certificate issuer: /CN=09ea1d4531b071d6574699c12e5afa41f89bd409
Certificate serial: 018570950519893747811E8992990BADF33A
Authority key identifier: 09:EA:1D:45:31:B0:71:D6:57:46:99:C1:2E:5A:FA:41:F8:9B:D4:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CeodRTGwcdZXRpnBLlr6Qfib1Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/mPUhvD5ZuAWnUaIzeOBYI8NqEF8.roa
Signing time: Mon 02 Jan 2023 03:44:52 +0000
ROA not before: Mon 02 Jan 2023 03:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5545
IP address blocks: 91.229.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 14:29:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:05:19:89:37:47:81:1e:89:92:99:0b:ad:f3:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ea1d4531b071d6574699c12e5afa41f89bd409
Validity
Not Before: Jan 2 03:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=98f521bc3e59b805a751a23378e05823c36a105f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:e2:e0:ce:83:70:e7:1a:ad:c4:84:77:31:5d:
6d:00:d3:82:81:f1:2b:be:23:85:97:9a:c8:31:89:
70:ee:5c:55:cc:6f:3f:e5:b8:87:aa:8b:0f:37:05:
12:a0:6c:30:be:51:04:60:c4:34:60:20:e8:7e:ea:
08:44:da:53:cd:17:65:65:c9:40:6b:f4:00:7b:80:
7f:19:5d:e4:e8:54:f7:d3:a6:5c:f7:64:9c:2b:f8:
d5:f0:d1:be:24:89:59:47:c4:4e:7d:9d:07:d1:95:
85:79:77:e6:0d:d5:3a:ef:41:16:95:b3:07:9e:df:
3d:e5:aa:2b:1b:bc:e3:d2:f2:9c:89:84:7e:6b:e4:
21:59:ad:48:71:ed:61:eb:9a:dc:75:c2:c5:65:09:
1c:b3:3a:ce:74:a7:bc:a8:5b:f8:b5:da:3d:48:d7:
9b:14:30:3d:2b:3d:82:cc:20:f6:56:e5:7f:cb:50:
19:2f:cb:a4:6b:0e:dd:71:c6:c8:2d:4b:aa:52:18:
70:09:ce:fc:95:46:c3:d7:da:cd:24:5c:a0:39:e8:
21:45:dc:e1:75:6f:84:8e:a0:aa:09:e5:91:23:01:
b2:de:d6:a7:eb:a6:32:14:8d:f2:4b:65:db:a9:0a:
d8:10:e9:fe:1f:46:bb:b9:39:d9:a2:2e:e7:de:fd:
c9:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F5:21:BC:3E:59:B8:05:A7:51:A2:33:78:E0:58:23:C3:6A:10:5F
X509v3 Authority Key Identifier:
keyid:09:EA:1D:45:31:B0:71:D6:57:46:99:C1:2E:5A:FA:41:F8:9B:D4:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CeodRTGwcdZXRpnBLlr6Qfib1Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/mPUhvD5ZuAWnUaIzeOBYI8NqEF8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a7ca61-2e8d-4bbe-9c36-4e6d130bda0f/1/CeodRTGwcdZXRpnBLlr6Qfib1Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.229.94.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:08:8e:60:77:ed:54:24:ac:0a:e7:21:2e:ee:95:1b:91:da:
b0:cf:53:ee:e4:6e:36:48:b9:7a:c2:37:a6:0b:31:af:ac:4c:
65:96:a8:a1:25:12:82:3c:e8:94:30:20:b4:a6:6b:44:a9:11:
e1:db:59:52:3b:4b:ca:14:f2:39:c8:a0:6f:1c:dd:ab:7a:27:
7d:5b:47:c8:fb:bd:6a:af:79:63:49:13:e1:52:24:25:12:ab:
2f:b1:34:46:e8:8d:29:18:ff:62:a3:9d:4f:af:32:f4:35:f7:
49:35:43:30:84:04:bc:6f:31:a6:7d:5e:e9:90:27:45:b8:66:
5c:80:39:fc:de:10:21:d8:98:e2:8e:6f:8d:ce:e6:34:de:d7:
98:91:bc:c9:cb:35:b2:bf:04:d8:11:48:b2:d6:98:0e:25:4c:
c4:58:3a:45:20:58:75:dd:71:34:ee:c1:33:44:28:34:88:b0:
9b:1f:e4:a8:de:2f:68:e1:d4:21:8c:9b:cd:8e:6e:68:0f:f7:
aa:0c:65:e9:ab:f4:cf:ea:41:39:cf:7f:bc:e7:c9:35:be:a3:
06:da:0a:9a:eb:92:82:f8:f2:72:43:c6:d7:25:16:19:11:36:
02:64:27:64:f1:f4:81:73:ab:06:f2:62:ca:3f:dc:5a:29:46:
0b:a7:e7:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:16 2024 by rpki-client on console-ams.rpki-client.org