Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/rYXzp5pZluQv8kotYGXlwzCuEj0.roa
File: rYXzp5pZluQv8kotYGXlwzCuEj0.roa (raw, json)
Hash identifier: WM3q3VNBX7xlpQT+oHNJ8t/g0Su//LF55ewe9X/wntA=
Subject key identifier: AD:85:F3:A7:9A:59:96:E4:2F:F2:4A:2D:60:65:E5:C3:30:AE:12:3D
Certificate issuer: /CN=a1dc0630e96096de4822d1f51ef80c6fff54191b
Certificate serial: 0194282703CBB3E09769B827EEE9D9C2FB7C
Authority key identifier: A1:DC:06:30:E9:60:96:DE:48:22:D1:F5:1E:F8:0C:6F:FF:54:19:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odwGMOlglt5IItH1HvgMb_9UGRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/rYXzp5pZluQv8kotYGXlwzCuEj0.roa
Signing time: Thu 02 Jan 2025 17:53:52 +0000
ROA not before: Thu 02 Jan 2025 17:53:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213993
IP address blocks: 91.227.62.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 08 Jan 2025 21:55:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:27:03:cb:b3:e0:97:69:b8:27:ee:e9:d9:c2:fb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1dc0630e96096de4822d1f51ef80c6fff54191b
Validity
Not Before: Jan 2 17:53:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad85f3a79a5996e42ff24a2d6065e5c330ae123d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:36:e4:0d:a2:98:01:12:7d:4f:69:98:c5:5a:
37:a4:6b:5f:0d:9b:c6:e4:10:b0:c5:7b:39:b7:a2:
c9:c5:c7:d8:35:fc:d3:c0:6c:ba:e3:99:6c:2c:6a:
26:03:5a:a4:fe:03:ed:06:d4:eb:87:16:9e:d3:34:
9d:8c:f4:42:c4:e3:4c:f9:d9:82:d4:b0:0c:94:92:
a6:54:43:2f:6f:2b:1f:e2:00:9a:bd:93:88:d8:d9:
cb:06:d6:12:07:f9:7b:d1:78:95:ef:aa:14:af:df:
56:62:d8:2d:38:99:12:b0:89:09:ec:69:61:30:3a:
68:24:6d:38:11:ed:08:ca:08:64:eb:4d:af:a5:42:
c3:10:84:1f:65:65:97:d5:71:d9:b8:e9:59:0c:12:
eb:8b:cf:90:05:81:c7:73:19:ee:60:eb:a3:9c:a3:
94:a8:b9:f8:e5:69:46:d9:0b:87:90:e7:26:a0:6e:
8c:8e:ea:cc:05:59:1b:d4:30:91:d0:2b:f0:a7:e3:
2f:80:6b:0f:e4:8e:ad:2d:f5:27:f7:fc:df:bc:24:
7c:ac:f1:a8:3f:19:77:85:34:13:8c:61:00:ea:54:
c1:b8:7f:51:35:16:a5:ff:5a:53:79:50:98:0e:90:
9b:15:06:fd:1c:be:da:13:be:de:dc:84:66:75:ad:
f5:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:85:F3:A7:9A:59:96:E4:2F:F2:4A:2D:60:65:E5:C3:30:AE:12:3D
X509v3 Authority Key Identifier:
keyid:A1:DC:06:30:E9:60:96:DE:48:22:D1:F5:1E:F8:0C:6F:FF:54:19:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odwGMOlglt5IItH1HvgMb_9UGRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/rYXzp5pZluQv8kotYGXlwzCuEj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/3f9158-6a90-4e57-a28f-3e06a0182614/1/odwGMOlglt5IItH1HvgMb_9UGRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.227.62.0/24
Signature Algorithm: sha256WithRSAEncryption
3c:1c:e1:39:3d:43:6a:fc:52:16:05:9c:35:32:16:09:92:e0:
b2:4a:c3:d5:76:1d:c6:b9:ca:78:4b:dc:3f:e3:a0:ad:bc:48:
35:c7:77:53:08:13:69:9b:e7:c1:14:f6:60:27:34:6e:ae:52:
8a:16:1d:41:7f:eb:80:06:d9:cb:db:7f:c9:5c:59:56:12:71:
0d:ae:e6:4b:9a:43:df:1e:43:ae:38:9b:26:14:27:30:87:44:
8d:36:e3:1b:f2:99:92:c7:14:33:00:30:d9:98:82:de:4e:6b:
f2:82:e2:ec:bf:2a:78:df:c7:df:23:0f:1a:80:40:84:dc:57:
b2:36:d5:aa:d9:bf:f4:ab:80:6c:ca:76:bd:a0:3f:da:18:c0:
93:28:9c:23:df:a1:a8:2f:57:44:1e:2c:65:53:db:a2:13:56:
d5:34:44:88:10:11:d9:44:e3:c5:e7:ec:5e:85:ae:55:7c:6e:
da:7a:51:a0:9f:17:82:02:7b:a4:b5:06:4e:0b:f8:8d:b6:38:
44:5e:ac:cf:19:5c:a6:a7:b8:1d:79:9a:22:22:ff:25:d9:b0:
38:b6:8a:96:77:48:f1:e5:b0:88:3e:a4:5f:db:f6:0e:73:75:
1b:34:ac:65:c2:35:a2:e0:ce:6f:b1:69:07:a3:58:13:b4:24:
61:40:51:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:03:36 2025 by rpki-client