Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/0MnPY8iA7nsG9u9-r3eWWEWwmcI.roa
File: 0MnPY8iA7nsG9u9-r3eWWEWwmcI.roa (raw, json)
Hash identifier: WK9/sducnAAfVw58+LZfSw+pENPwxXy7svKilbnI534=
Subject key identifier: D0:C9:CF:63:C8:80:EE:7B:06:F6:EF:7E:AF:77:96:58:45:B0:99:C2
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 019127AB03A22882053CF06DE55EF7180F7B
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/0MnPY8iA7nsG9u9-r3eWWEWwmcI.roa
Signing time: Tue 06 Aug 2024 12:30:04 +0000
ROA not before: Tue 06 Aug 2024 12:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25773
IP address blocks: 92.61.228.0/24 maxlen: 24
92.61.230.0/24 maxlen: 24
92.61.231.0/24 maxlen: 24
92.61.232.0/24 maxlen: 24
92.61.236.0/24 maxlen: 24
92.61.237.0/24 maxlen: 24
92.61.238.0/24 maxlen: 24
94.188.201.0/24 maxlen: 24
94.188.202.0/24 maxlen: 24
94.188.203.0/24 maxlen: 24
94.188.205.0/24 maxlen: 24
94.188.206.0/24 maxlen: 24
94.188.207.0/24 maxlen: 24
94.188.208.0/24 maxlen: 24
94.188.209.0/24 maxlen: 24
94.188.210.0/24 maxlen: 24
94.188.211.0/24 maxlen: 24
94.188.212.0/24 maxlen: 24
94.188.214.0/24 maxlen: 24
94.188.215.0/24 maxlen: 24
94.188.216.0/24 maxlen: 24
94.188.224.0/24 maxlen: 24
94.188.225.0/24 maxlen: 24
94.188.226.0/24 maxlen: 24
94.188.227.0/24 maxlen: 24
94.188.228.0/24 maxlen: 24
94.188.229.0/24 maxlen: 24
94.188.230.0/24 maxlen: 24
94.188.231.0/24 maxlen: 24
94.188.232.0/24 maxlen: 24
94.188.234.0/24 maxlen: 24
94.188.236.0/24 maxlen: 24
94.188.237.0/24 maxlen: 24
94.188.239.0/24 maxlen: 24
94.188.240.0/24 maxlen: 24
94.188.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 08 Aug 2024 10:31:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:27:ab:03:a2:28:82:05:3c:f0:6d:e5:5e:f7:18:0f:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Aug 6 12:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0c9cf63c880ee7b06f6ef7eaf77965845b099c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b4:27:68:90:34:fd:cb:df:7c:0e:14:da:dd:
15:22:47:b6:e9:18:24:cd:c2:6b:b8:b2:e6:fa:7e:
0c:0f:2b:c3:62:24:34:83:57:2e:0a:a2:bd:f1:3b:
73:48:bf:f9:50:f2:27:b1:4f:68:36:17:18:70:29:
25:36:7c:7c:7e:3e:b0:67:99:55:f8:14:a2:04:d6:
1a:aa:ce:7d:59:66:96:00:ee:e0:dc:a9:8f:20:17:
7c:dd:9b:a4:49:3f:71:4a:d2:cb:ef:b1:04:05:a6:
28:f1:73:70:b6:57:05:eb:aa:74:84:c7:6a:17:d9:
c8:ff:14:b7:47:32:ed:82:ce:74:30:c4:99:0d:90:
91:32:80:62:48:ad:d0:f5:79:49:77:f2:7d:ba:87:
34:40:88:66:4a:01:f2:d7:02:89:eb:55:8a:e6:17:
90:1e:76:a6:66:20:90:ff:a6:fe:70:b0:3f:6d:f9:
a7:06:38:5e:ca:f4:9a:70:fe:6c:dd:9f:0a:b3:f5:
ea:6d:65:f0:3c:53:1b:2b:57:e2:74:32:e3:84:97:
06:2c:6d:f0:31:68:1c:25:bb:12:99:8d:3c:0d:c8:
2c:9e:48:ac:71:b1:51:b9:19:7e:ee:f9:ea:c9:55:
9a:02:73:cb:b3:f7:bd:65:34:11:f1:f1:a8:17:54:
47:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C9:CF:63:C8:80:EE:7B:06:F6:EF:7E:AF:77:96:58:45:B0:99:C2
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/0MnPY8iA7nsG9u9-r3eWWEWwmcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.61.228.0/24
92.61.230.0-92.61.232.255
92.61.236.0-92.61.238.255
94.188.201.0-94.188.203.255
94.188.205.0-94.188.212.255
94.188.214.0-94.188.216.255
94.188.224.0-94.188.232.255
94.188.234.0/24
94.188.236.0/23
94.188.239.0-94.188.241.255
Signature Algorithm: sha256WithRSAEncryption
99:e1:9a:4e:48:90:85:bc:ab:d6:8f:66:07:31:46:eb:50:ed:
2b:62:8d:fc:ca:7c:c5:44:14:3a:ed:4c:9c:a7:7b:2f:af:d2:
89:d0:4e:c4:a9:e4:d4:a7:81:f9:f0:64:91:f4:67:3b:2b:a8:
d6:6f:75:1d:64:69:52:0b:24:be:1c:1f:4c:49:e3:4e:c9:5f:
04:4e:cb:f9:53:25:23:a5:ce:77:68:77:94:5a:74:15:68:ea:
2d:0f:b6:15:3d:2d:c5:88:cb:86:5e:2f:55:88:f3:da:6b:72:
d2:ef:5b:b3:be:d0:d3:dd:05:1e:6a:38:94:d2:98:bf:ec:86:
63:91:dc:f4:ce:6d:7c:c1:2d:d5:09:55:41:30:cf:78:dd:b7:
fe:be:d2:10:21:e5:52:4c:48:80:aa:06:3c:44:37:44:3f:83:
23:54:6a:90:c1:3b:2b:97:fc:2f:bb:a9:fd:e8:be:14:ed:52:
31:8e:35:7a:0c:32:e3:17:b0:f1:34:a2:bd:29:95:8d:e9:52:
db:12:0c:63:74:a8:90:eb:c4:a2:17:2b:f5:1e:60:78:24:28:
7f:bb:b2:c7:10:99:4f:16:1c:f9:49:e3:c3:4b:94:f6:27:d5:
22:4d:a8:db:6b:4f:65:2e:1b:a4:c2:ef:c2:18:dd:5a:0e:92:
62:fb:f6:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:36 2025 by rpki-client