Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/gU9ifeDXhemFg1zdGkntkgVwqzU.roa
File: gU9ifeDXhemFg1zdGkntkgVwqzU.roa (raw, json)
Hash identifier: 8C73ZsbHkAtXZ3vmQ3A5UYlp/Gtb0VqWV3UqWZSASaE=
Subject key identifier: 81:4F:62:7D:E0:D7:85:E9:85:83:5C:DD:1A:49:ED:92:05:70:AB:35
Certificate issuer: /CN=c092d8d5511b19ece456960f23bfa886ee1d570b
Certificate serial: 018F0F900992A6D4C3952692D1B85AEBBE22
Authority key identifier: C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/gU9ifeDXhemFg1zdGkntkgVwqzU.roa
Signing time: Wed 24 Apr 2024 10:04:08 +0000
ROA not before: Wed 24 Apr 2024 10:04:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210402
IP address blocks: 91.106.36.0/22 maxlen: 22
91.106.36.0/23 maxlen: 23
91.106.36.0/24 maxlen: 24
91.106.37.0/24 maxlen: 24
91.106.38.0/23 maxlen: 23
91.106.38.0/24 maxlen: 24
91.106.39.0/24 maxlen: 24
91.106.44.0/22 maxlen: 22
91.106.44.0/23 maxlen: 23
91.106.44.0/24 maxlen: 24
91.106.45.0/24 maxlen: 24
91.106.46.0/23 maxlen: 23
91.106.46.0/24 maxlen: 24
91.106.47.0/24 maxlen: 24
91.106.48.0/22 maxlen: 22
91.106.48.0/23 maxlen: 23
91.106.48.0/24 maxlen: 24
91.106.49.0/24 maxlen: 24
91.106.50.0/23 maxlen: 23
91.106.50.0/24 maxlen: 24
91.106.52.0/22 maxlen: 22
91.106.52.0/23 maxlen: 23
91.106.52.0/24 maxlen: 24
91.106.53.0/24 maxlen: 24
91.106.54.0/23 maxlen: 23
91.106.54.0/24 maxlen: 24
91.106.55.0/24 maxlen: 24
91.106.56.0/22 maxlen: 22
91.106.56.0/23 maxlen: 23
91.106.56.0/24 maxlen: 24
91.106.57.0/24 maxlen: 24
91.106.58.0/23 maxlen: 23
91.106.58.0/24 maxlen: 24
91.106.59.0/24 maxlen: 24
91.106.60.0/22 maxlen: 22
91.106.60.0/23 maxlen: 23
91.106.60.0/24 maxlen: 24
91.106.61.0/24 maxlen: 24
91.106.62.0/23 maxlen: 23
91.106.62.0/24 maxlen: 24
91.106.63.0/24 maxlen: 24
109.61.4.0/22 maxlen: 22
109.61.4.0/23 maxlen: 23
109.61.4.0/24 maxlen: 24
109.61.5.0/24 maxlen: 24
109.61.6.0/23 maxlen: 23
109.61.6.0/24 maxlen: 24
109.61.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 06:26:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:0f:90:09:92:a6:d4:c3:95:26:92:d1:b8:5a:eb:be:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c092d8d5511b19ece456960f23bfa886ee1d570b
Validity
Not Before: Apr 24 10:04:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=814f627de0d785e985835cdd1a49ed920570ab35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7b:dd:4e:dd:73:31:da:e2:18:10:1f:d6:61:
8f:fc:e2:af:66:3f:83:e7:0f:f5:0c:5a:35:41:1b:
96:da:98:52:68:f2:f8:16:5b:f0:6b:45:dc:8b:16:
27:ce:0c:49:07:95:fa:c3:54:ad:65:15:57:5c:57:
b9:79:01:d7:65:65:44:f2:bb:d0:29:a6:4a:18:18:
fd:ce:a4:25:05:73:ae:b6:e2:3e:78:69:5c:dc:cb:
ef:c6:3d:ef:1a:1d:e1:a8:83:a9:5a:1c:2a:98:05:
75:32:2b:cb:54:0b:ae:6b:1d:15:bd:04:a1:97:14:
8b:37:bb:77:82:45:0b:bb:08:2f:9a:43:fb:10:b7:
7a:34:8e:47:83:54:c7:9b:15:e1:28:cb:a0:aa:c8:
d0:61:44:a9:61:c5:3c:50:17:11:f2:9d:e9:e6:70:
c0:4a:a2:70:99:8d:f0:f2:11:60:95:d6:63:ee:de:
61:53:6e:7f:c3:bb:2d:5b:e4:14:d9:b0:f4:55:34:
39:06:53:d4:92:5a:fe:7c:f7:d7:9a:f2:6f:e0:3e:
e6:12:c7:10:22:bf:85:33:c0:52:79:7d:d0:2a:86:
7b:28:5d:5a:44:4c:87:25:3f:5e:16:f3:2a:76:a9:
32:1d:cf:fd:eb:9b:d8:a6:c7:10:05:81:83:9a:9a:
21:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4F:62:7D:E0:D7:85:E9:85:83:5C:DD:1A:49:ED:92:05:70:AB:35
X509v3 Authority Key Identifier:
keyid:C0:92:D8:D5:51:1B:19:EC:E4:56:96:0F:23:BF:A8:86:EE:1D:57:0B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wJLY1VEbGezkVpYPI7-ohu4dVws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/gU9ifeDXhemFg1zdGkntkgVwqzU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/d430d9-d214-41c0-8e51-267a16b4629f/1/wJLY1VEbGezkVpYPI7-ohu4dVws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.36.0/22
91.106.44.0-91.106.63.255
109.61.4.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:a3:a9:20:8b:ff:10:fe:ce:b8:4a:50:62:3f:15:f8:e5:d0:
86:bf:73:a9:22:18:5c:f7:c6:e6:af:40:34:98:a0:89:60:3b:
76:66:ce:d0:d5:59:c9:13:7d:60:a0:74:a0:0f:d6:ac:5f:cb:
fe:af:bb:56:32:b3:ec:11:89:5f:2a:61:61:89:ae:89:5e:3a:
64:b8:17:21:67:8c:12:1e:95:f4:2b:b3:e6:a9:63:81:a7:e3:
1c:15:12:bf:d3:ad:54:e5:cc:81:37:7d:da:22:fc:2b:02:45:
7d:73:71:df:b5:1b:0c:f2:41:37:e4:33:83:f1:35:aa:b8:c5:
0c:19:97:f4:f8:17:50:fe:ea:8f:3f:c7:68:26:a7:af:52:6e:
44:73:d9:ff:74:8c:91:f7:f3:ce:fe:24:b5:e3:a2:2d:ec:4a:
e1:bb:1b:6e:76:73:0f:c1:78:d0:19:f8:6c:17:b4:7b:15:74:
c8:8b:ae:86:90:fe:f7:69:54:68:56:8b:ca:ea:eb:42:38:fb:
ee:23:fe:91:78:20:ed:7f:61:32:c8:03:a6:ea:23:32:8a:f0:
d2:c4:7a:3e:58:27:2b:fe:70:47:fc:71:39:f7:0e:ab:4e:d2:
00:94:d8:45:6f:aa:a7:f1:15:84:2b:f8:12:81:63:e0:1c:f4:
96:83:9d:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:02 2024 by rpki-client on console-fra.rpki-client.org