Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/sso7UWr2utcoPtP1GW2Vc7GX7XU.roa
File: sso7UWr2utcoPtP1GW2Vc7GX7XU.roa (raw, json)
Hash identifier: wJbfSRxt8hTBT4LDGDqNx1w5SDMZM2BTZnh0UB8hm7E=
Subject key identifier: B2:CA:3B:51:6A:F6:BA:D7:28:3E:D3:F5:19:6D:95:73:B1:97:ED:75
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 018CC8017D749B8914CE0D4B6BDF0AAEE52D
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/sso7UWr2utcoPtP1GW2Vc7GX7XU.roa
Signing time: Tue 02 Jan 2024 02:29:49 +0000
ROA not before: Tue 02 Jan 2024 02:29:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 91.193.252.0/24 maxlen: 24
91.193.255.0/24 maxlen: 24
91.193.254.0/24 maxlen: 24
93.89.219.0/24 maxlen: 24
93.89.223.0/24 maxlen: 24
93.89.222.0/24 maxlen: 24
93.89.221.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 14 Mar 2024 09:13:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:7d:74:9b:89:14:ce:0d:4b:6b:df:0a:ae:e5:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Jan 2 02:29:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b2ca3b516af6bad7283ed3f5196d9573b197ed75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:16:35:88:19:8a:28:e4:79:33:87:a5:53:17:
40:e5:58:66:3b:0e:df:82:e5:42:5a:47:6e:4d:d2:
6b:02:1d:9a:f7:29:1e:d8:66:26:7b:41:f1:24:77:
65:5a:f7:c0:d8:9f:f2:b0:13:7f:bf:b8:30:dc:6c:
e9:a4:22:0c:36:11:88:d4:ef:54:81:94:c7:0d:9b:
80:70:9c:b9:ae:13:17:e7:39:4e:44:03:06:d4:6d:
fd:1d:57:d5:86:30:f5:50:b2:aa:84:1d:0e:7f:5a:
2a:14:2d:e2:e5:53:67:65:5f:93:2e:5c:a2:84:fb:
64:68:3f:e8:0f:0a:4a:8e:a2:56:56:05:63:69:1e:
8d:11:c1:f1:0d:42:7a:db:37:fc:e1:a1:38:73:db:
5f:d8:af:b3:b8:d4:32:c2:cb:b5:a6:e2:86:be:e9:
32:fa:62:89:79:cc:17:42:bf:d9:b3:96:38:1f:21:
31:e0:7a:b1:98:f5:a7:24:df:54:d9:1e:60:58:4c:
03:81:4a:f8:77:fd:2f:cf:d7:ae:f8:0a:66:8f:de:
da:ac:e7:ba:59:e4:b5:27:12:d1:25:d0:c2:9e:20:
14:45:92:c6:42:1e:e3:e8:e1:01:ab:11:77:d5:4f:
8b:4f:15:a3:1b:b6:03:f7:14:1d:72:af:50:7e:d3:
cc:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CA:3B:51:6A:F6:BA:D7:28:3E:D3:F5:19:6D:95:73:B1:97:ED:75
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/sso7UWr2utcoPtP1GW2Vc7GX7XU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.193.252.0/24
91.193.254.0/23
93.89.219.0/24
93.89.221.0-93.89.223.255
Signature Algorithm: sha256WithRSAEncryption
16:19:57:03:65:f8:c5:05:e5:4c:1b:55:fe:66:4c:8d:b5:1d:
90:c6:26:af:be:2f:94:fe:29:51:64:c2:c5:36:26:eb:df:65:
39:17:8a:88:1f:e5:1e:f7:cb:fb:1a:78:35:b5:10:0f:11:da:
ec:34:ef:00:10:14:4d:33:63:49:cf:81:04:78:dd:b1:b5:18:
e8:45:8d:42:83:af:85:60:58:c7:01:1b:3a:c0:ef:3e:06:ac:
f2:90:29:22:90:34:da:18:2e:aa:c3:b9:60:a3:3e:b9:ec:95:
9b:68:9b:e2:05:0c:aa:a7:c7:11:ff:78:1d:6e:07:25:ed:1b:
61:74:3a:5d:75:ed:97:b1:1c:33:28:6f:98:bf:ef:e4:5b:c7:
f4:c5:66:ea:35:33:3d:e3:65:7e:26:59:6d:38:72:bc:18:ac:
8c:e7:0a:0a:b7:9c:58:b8:0e:20:ad:13:e6:68:ef:d0:99:d2:
56:55:e9:a4:1d:b4:15:88:f3:ae:36:77:68:02:a4:3f:c2:c7:
52:6c:cd:64:ed:91:22:a7:29:ef:be:00:ca:61:82:53:58:1d:
11:e3:94:98:63:38:87:cb:79:78:d6:af:c0:c5:2c:00:ee:30:
19:0e:7f:38:ff:6a:35:67:96:0c:02:0b:2f:33:93:95:b9:2a:
01:ef:a3:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:05 2024 by rpki-client on console-fra.rpki-client.org