Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/2da1ec-aa4b-4d94-98cb-a776e4a63e6f/1/a2NRJAqUhT81OCk-riZAZS_6Kh4.roa
File: a2NRJAqUhT81OCk-riZAZS_6Kh4.roa (raw, json)
Hash identifier: HO4/JUgTwlfhDwiyTVbU1OHqceC4mWjaPpItG03XX6w=
Subject key identifier: 6B:63:51:24:0A:94:85:3F:35:38:29:3E:AE:26:40:65:2F:FA:2A:1E
Certificate issuer: /CN=afa51165aa5036acda11fee0020e34fcc439ede6
Certificate serial: 018E66740C457982AEA07E2CC3A16F5AB607
Authority key identifier: AF:A5:11:65:AA:50:36:AC:DA:11:FE:E0:02:0E:34:FC:C4:39:ED:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r6URZapQNqzaEf7gAg40_MQ57eY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/2da1ec-aa4b-4d94-98cb-a776e4a63e6f/1/a2NRJAqUhT81OCk-riZAZS_6Kh4.roa
Signing time: Fri 22 Mar 2024 13:57:45 +0000
ROA not before: Fri 22 Mar 2024 13:57:45 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57115
IP address blocks: 91.230.83.0/24 maxlen: 24
195.191.92.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:66:74:0c:45:79:82:ae:a0:7e:2c:c3:a1:6f:5a:b6:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afa51165aa5036acda11fee0020e34fcc439ede6
Validity
Not Before: Mar 22 13:57:45 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b6351240a94853f3538293eae2640652ffa2a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:24:7b:85:f0:78:4d:24:b1:e8:e3:04:e6:7d:
c4:4e:00:4b:96:fa:c0:59:ac:95:2c:ed:6c:4a:c0:
45:2d:b8:c9:80:00:e6:d6:bd:1d:60:9b:65:e8:bd:
fb:62:33:22:2d:3f:74:87:82:f8:42:90:0f:87:ea:
9f:10:a6:0a:41:26:85:20:ed:36:30:f4:3e:49:28:
c4:9d:83:80:ba:5f:55:18:1c:44:5c:c0:1a:39:1a:
07:00:46:24:df:98:44:ca:b3:a8:74:21:7e:ae:18:
cc:54:27:68:be:df:96:b5:e1:fd:66:af:f6:af:18:
06:01:de:b2:9c:14:6d:5c:9c:71:55:cd:ce:cc:0c:
c7:2a:a9:83:3f:c2:c1:a0:c0:84:fe:f3:94:0a:e4:
65:c9:6d:8a:d6:1f:45:ba:e3:66:a7:e5:83:9b:93:
e1:eb:00:72:5a:41:9a:f4:f5:02:89:9d:bf:2c:b1:
04:50:4a:41:04:e7:3a:eb:62:ce:f0:24:b8:6c:6c:
1b:05:26:4d:78:97:25:88:4a:b7:27:e3:94:71:bd:
81:02:77:ed:20:15:48:dc:44:df:d1:ce:4c:e0:e2:
55:5c:7e:f2:ad:03:64:a1:17:12:62:1b:89:a7:e4:
97:11:ef:ef:ac:60:27:39:9e:77:0f:61:10:f1:f6:
0f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:63:51:24:0A:94:85:3F:35:38:29:3E:AE:26:40:65:2F:FA:2A:1E
X509v3 Authority Key Identifier:
keyid:AF:A5:11:65:AA:50:36:AC:DA:11:FE:E0:02:0E:34:FC:C4:39:ED:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r6URZapQNqzaEf7gAg40_MQ57eY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/2da1ec-aa4b-4d94-98cb-a776e4a63e6f/1/a2NRJAqUhT81OCk-riZAZS_6Kh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/2da1ec-aa4b-4d94-98cb-a776e4a63e6f/1/r6URZapQNqzaEf7gAg40_MQ57eY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.230.83.0/24
195.191.92.0/23
Signature Algorithm: sha256WithRSAEncryption
66:97:e1:45:1d:e2:90:5b:c1:26:57:e0:93:33:e1:1e:41:70:
6a:74:b3:96:82:2d:53:6e:a3:04:be:9c:13:63:d0:15:94:60:
95:97:06:c0:54:44:37:17:71:b8:e4:8e:f7:e2:14:3a:dd:8f:
0b:fa:d0:69:51:1b:c7:7b:4c:d2:99:ef:63:88:8c:7c:e4:d5:
da:9b:e6:a0:c5:e8:13:4d:bb:17:4f:d4:a2:dc:7c:e6:d7:a6:
30:56:68:68:ef:cb:d6:d5:5e:11:14:10:cf:55:b1:01:c0:23:
21:a0:8d:dd:24:3a:e8:1a:19:14:61:2a:35:93:7b:1e:55:f4:
a2:2a:b7:ab:34:72:f1:b6:4d:aa:8f:1f:1d:55:06:1a:41:ea:
a7:7d:17:c4:41:17:c8:8b:00:36:f3:a3:c6:15:8c:c5:72:76:
d3:17:ea:01:ec:ad:f9:2c:e8:b9:0d:a3:ef:74:83:2b:e4:bb:
ea:09:01:f5:5c:9f:dd:f6:0e:20:5c:3f:96:28:15:cd:c5:99:
a0:9e:dd:f8:91:40:e3:22:0b:f9:57:5d:01:57:01:b3:18:32:
5a:ec:5f:6c:0b:ad:1c:d2:06:d7:f2:cc:c8:03:a1:c8:9f:04:
92:20:01:1f:e7:d2:63:2c:09:2b:06:bd:b5:12:86:4f:09:a8:
cc:06:ae:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:15 2025 by rpki-client