Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/0Mbcj-L-Bumxgf5zpeOCM0-n86M.roa
File: 0Mbcj-L-Bumxgf5zpeOCM0-n86M.roa (raw, json)
Hash identifier: Uo4K3afN/RNh1UF5zHlSG0RCRBGELTU3O7gQueA9d8E=
Subject key identifier: D0:C6:DC:8F:E2:FE:06:E9:B1:81:FE:73:A5:E3:82:33:4F:A7:F3:A3
Certificate issuer: /CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Certificate serial: 01925764AE7777C54B18F0F160E1EC729D53
Authority key identifier: 27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/0Mbcj-L-Bumxgf5zpeOCM0-n86M.roa
Signing time: Fri 04 Oct 2024 11:57:48 +0000
ROA not before: Fri 04 Oct 2024 11:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215133
IP address blocks: 91.204.76.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 19 Nov 2024 11:08:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:57:64:ae:77:77:c5:4b:18:f0:f1:60:e1:ec:72:9d:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27a7d1f0d73fe481c2188d28def0e858e715697e
Validity
Not Before: Oct 4 11:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d0c6dc8fe2fe06e9b181fe73a5e382334fa7f3a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:df:6c:14:16:5a:15:e5:8a:2d:f9:a6:3c:85:
af:8d:65:4d:88:18:74:c9:f7:ed:a7:4b:18:99:24:
c0:6e:76:64:2c:03:d8:d2:42:8f:5e:cf:fe:55:cf:
16:c5:7a:c8:20:3c:5c:ad:15:9d:45:f0:51:85:8d:
f7:f1:89:11:41:c5:f2:04:5a:67:53:c5:22:39:bb:
a8:d1:07:13:da:96:d7:3d:88:73:ff:5d:95:91:8f:
ee:79:b5:64:ba:63:fc:28:bc:14:fa:da:d1:03:17:
95:21:3a:3e:fc:84:8d:fb:55:b4:e4:e9:0d:71:c8:
1c:e5:58:99:3b:8e:32:b5:f8:e8:8f:b6:e7:79:ca:
c4:c0:9b:c1:23:fb:3f:14:9c:a3:63:7c:5e:59:cd:
1b:1f:f3:be:31:3b:7e:d3:7c:b1:86:f7:3b:80:18:
47:d9:87:92:13:eb:10:84:fd:10:77:43:2d:23:6e:
8c:b7:bb:8c:f7:5d:db:4e:24:a3:cd:24:35:55:c6:
74:7a:c3:55:d0:0f:dc:d0:0d:e7:ad:05:45:7b:9f:
fb:39:11:bc:15:8f:a1:65:f0:fe:fa:4f:df:21:70:
e6:ae:89:74:ab:98:bf:bb:5d:a9:0e:ea:37:c2:3d:
4c:e2:42:88:b5:c9:54:7e:8e:fa:4c:03:8e:dd:e4:
73:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:C6:DC:8F:E2:FE:06:E9:B1:81:FE:73:A5:E3:82:33:4F:A7:F3:A3
X509v3 Authority Key Identifier:
keyid:27:A7:D1:F0:D7:3F:E4:81:C2:18:8D:28:DE:F0:E8:58:E7:15:69:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/0Mbcj-L-Bumxgf5zpeOCM0-n86M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/d82ef6-836a-47c7-a6c1-d6eaafc6b4f5/1/J6fR8Nc_5IHCGI0o3vDoWOcVaX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.204.76.0/24
Signature Algorithm: sha256WithRSAEncryption
62:fa:97:8f:39:68:4b:28:7b:f6:8f:09:57:fe:38:6a:7d:3e:
86:1e:05:70:16:c1:85:3c:2e:15:a2:54:4f:49:10:ed:25:76:
f2:51:f3:e9:0b:01:26:64:10:f6:d1:02:88:4a:1b:be:0a:ff:
7f:4c:19:07:dd:ab:3e:03:0a:63:fe:a7:75:2b:b1:62:a9:18:
33:dc:4f:33:f5:5d:b3:f4:19:64:7c:fb:1b:7f:e4:8a:6c:87:
11:a4:a5:36:ee:4e:05:5a:28:81:67:e8:ec:fc:6c:1c:73:4b:
b8:af:2e:15:66:d8:b5:2c:5f:54:f4:57:d0:fc:c8:7e:42:a7:
78:11:47:81:7c:ea:ec:a4:99:d8:93:ba:9c:1e:48:5f:88:24:
0f:82:db:e4:ec:a4:72:93:aa:3c:d4:8c:b2:8e:fc:15:25:3f:
8a:1d:04:12:42:c7:fa:b1:6d:99:60:be:c1:81:d5:ce:88:d9:
e1:58:15:36:e1:c4:98:10:9e:b5:1a:a5:2f:a4:e0:2f:c1:81:
82:5e:5f:ec:54:6e:27:d5:53:f1:95:06:db:1f:c8:e1:43:b6:
60:8d:8d:d5:36:27:59:c1:93:fd:98:5c:39:bd:50:49:02:f9:
d1:ba:ec:d8:e6:27:75:ff:01:af:52:da:6f:33:5f:48:ef:66:
d4:02:a2:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 19 13:48:23 2024 by rpki-client on console-ams.rpki-client.org