Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/mYZ7BwUbD-y_MPrGcu5g4NIk10w.roa
File: mYZ7BwUbD-y_MPrGcu5g4NIk10w.roa (raw, json)
Hash identifier: HvfkN6Vu0hbSHRaR3o1yqMmXkM91h++aXh8Dm9WnmYA=
Subject key identifier: 99:86:7B:07:05:1B:0F:EC:BF:30:FA:C6:72:EE:60:E0:D2:24:D7:4C
Certificate issuer: /CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Certificate serial: 0193E3E78066BA49C0E79947787D3D257FF5
Authority key identifier: 27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/mYZ7BwUbD-y_MPrGcu5g4NIk10w.roa
Signing time: Fri 20 Dec 2024 11:50:19 +0000
ROA not before: Fri 20 Dec 2024 11:50:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 91.102.164.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:e7:80:66:ba:49:c0:e7:99:47:78:7d:3d:25:7f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27c8b427c313598a92e8d8ec60e2950da39fc2c9
Validity
Not Before: Dec 20 11:50:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=99867b07051b0fecbf30fac672ee60e0d224d74c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4a:dd:13:fb:7e:6f:2f:30:47:f8:57:8b:ff:
48:9f:5c:65:b5:ec:18:ad:b2:b4:58:31:24:aa:a9:
f5:6a:6c:63:42:ac:fb:b8:05:c9:37:34:61:d9:3b:
0d:8b:f1:06:18:0c:ff:81:4b:35:0c:4b:fc:50:f7:
64:65:18:46:ab:1a:c6:5f:e6:69:73:58:35:30:3d:
93:94:ea:fa:c0:f1:eb:79:0f:1a:03:18:b6:a1:52:
d7:b0:80:c6:58:ab:74:7b:c6:03:a2:40:f7:10:9a:
22:aa:29:fa:04:29:e3:3f:a3:75:3a:5d:6e:28:4b:
df:18:97:87:85:6e:64:63:9c:1f:18:a2:3a:c7:09:
18:10:c0:3a:e8:14:76:c2:85:24:b0:71:1e:40:8a:
d0:59:1e:b7:d4:5c:b3:2c:1e:fd:a9:ad:d7:39:df:
31:ba:4a:0f:3a:4d:f2:9d:74:93:bc:cb:8e:d9:14:
12:d7:90:6e:e9:d9:c6:13:e0:d5:67:c6:8a:89:f2:
f1:0b:9b:7d:de:f0:a2:06:21:7b:ec:01:54:47:cc:
1e:81:d9:b1:1e:fa:c9:eb:41:5c:e7:db:ca:f9:92:
93:a6:d0:f8:57:ab:6d:16:73:b9:db:6d:65:7a:79:
08:96:43:96:c7:68:08:3d:7d:0f:6e:63:17:3e:63:
5a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:86:7B:07:05:1B:0F:EC:BF:30:FA:C6:72:EE:60:E0:D2:24:D7:4C
X509v3 Authority Key Identifier:
keyid:27:C8:B4:27:C3:13:59:8A:92:E8:D8:EC:60:E2:95:0D:A3:9F:C2:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8i0J8MTWYqS6NjsYOKVDaOfwsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/mYZ7BwUbD-y_MPrGcu5g4NIk10w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/a7cdbf-da8e-4d43-bdc7-1c6ee44e11ad/1/J8i0J8MTWYqS6NjsYOKVDaOfwsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.102.164.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:70:a3:77:10:d8:0c:05:84:bd:bd:36:8a:88:80:1d:9b:00:
3b:06:52:77:45:b9:15:c6:de:1c:a3:0e:4e:8f:97:92:3e:b9:
da:3c:27:0b:ae:5b:a2:a0:1c:26:f6:25:c9:dc:58:f3:95:9e:
2a:fc:a7:93:1a:c6:f5:44:4d:78:d5:e8:bf:2d:93:9b:0f:2c:
62:e3:9b:cd:db:07:fc:c1:b8:78:06:03:84:4e:d3:8b:4b:54:
b0:4d:b0:3d:91:48:be:0c:f2:fa:6c:02:4a:8c:cb:87:cd:13:
91:f0:84:85:02:46:e2:bd:bd:61:21:6a:c4:cd:5a:fa:2b:a6:
9b:5c:4d:03:92:b6:57:f0:b2:2b:a2:70:b4:02:ce:56:a7:ba:
17:6d:e2:74:e5:ec:71:e7:83:1c:93:3e:09:a6:1d:df:e5:bd:
6a:49:ea:34:d6:66:65:20:b6:93:f9:62:76:c8:b2:54:08:f9:
8c:36:a1:f6:ba:0c:e7:f8:07:4c:3d:f3:b1:40:89:b1:a5:c9:
f9:a1:1c:fc:4d:1b:2a:83:c8:66:bd:0e:2f:0f:dd:43:60:53:
1f:1c:a4:2f:38:d0:b3:ff:d9:54:a4:aa:ce:3a:bd:7c:26:15:
dc:76:4a:e5:f6:3f:f0:3c:67:fc:6f:d5:37:8b:92:88:ca:1f:
7e:25:55:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:23:51 2025 by rpki-client