Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/CHJc0rJtBEt-hh1-iY8fs96bsq0.roa
File: CHJc0rJtBEt-hh1-iY8fs96bsq0.roa (raw, json)
Hash identifier: rhDUlCWtGPanttW7kKTKOmfd52NfhsslEKZfe/v48zI=
Subject key identifier: 08:72:5C:D2:B2:6D:04:4B:7E:86:1D:7E:89:8F:1F:B3:DE:9B:B2:AD
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 018FB930EDB3E590244FF746B858424A2993
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/CHJc0rJtBEt-hh1-iY8fs96bsq0.roa
Signing time: Mon 27 May 2024 08:35:42 +0000
ROA not before: Mon 27 May 2024 08:35:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.91.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 May 2024 13:08:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:b9:30:ed:b3:e5:90:24:4f:f7:46:b8:58:42:4a:29:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: May 27 08:35:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=08725cd2b26d044b7e861d7e898f1fb3de9bb2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:a4:8b:3b:bc:b9:0a:42:c2:b3:b0:a7:44:03:
06:76:03:d1:59:d0:c4:6a:53:68:13:4d:0c:3b:1b:
99:83:e7:21:ce:43:07:e1:64:ca:e1:f9:b0:9e:57:
b7:b2:a6:71:2b:6c:4c:6c:79:5d:72:6d:33:71:a0:
ee:10:1d:e3:4c:da:7f:56:bb:84:37:62:5c:ba:5d:
eb:46:52:ef:98:f9:80:a9:85:61:0f:2a:e0:e2:6d:
9c:f1:53:70:6c:b9:c9:d3:6e:de:65:b4:9f:19:cb:
24:73:7a:ba:29:4c:c0:f8:55:6c:a0:fe:f7:f0:bc:
0b:41:34:1a:eb:1f:59:cd:f5:cd:64:8e:9c:d3:61:
76:0f:5a:b9:50:dc:5c:e8:93:74:e4:a2:8c:12:af:
d3:19:3e:02:ce:0d:a9:5a:89:fb:08:89:f5:83:b5:
d5:33:5f:9c:25:61:90:67:08:b7:c1:ab:6c:94:e6:
09:ab:10:9e:43:8b:3a:b9:22:5a:f1:86:e7:7d:f7:
da:8c:c6:00:60:62:0c:e5:7b:07:f0:c2:d8:a3:31:
f2:f8:0d:af:79:bb:26:46:b1:96:da:39:89:35:e6:
0a:3b:e6:4f:d7:27:04:19:d7:de:16:4a:26:27:9d:
16:18:77:4c:a0:45:85:b6:89:77:4d:c6:51:70:75:
61:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:72:5C:D2:B2:6D:04:4B:7E:86:1D:7E:89:8F:1F:B3:DE:9B:B2:AD
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/CHJc0rJtBEt-hh1-iY8fs96bsq0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.205.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:11:07:54:f0:3b:12:64:c6:a1:3f:23:2b:74:60:e3:db:7c:
33:08:cf:58:f4:bb:ce:54:c4:53:6c:ac:e9:54:e6:38:80:28:
fc:3d:21:ce:7f:26:c8:35:ce:86:44:60:90:96:c9:cc:ec:2f:
cc:94:34:4f:8d:b4:71:99:31:eb:b2:39:68:d2:c1:96:13:cf:
b6:74:9f:b2:77:65:f4:d6:8a:3c:bf:ec:e8:9d:2a:ba:22:37:
c1:1c:b8:be:38:17:2c:d9:1a:6c:ab:62:7a:62:5a:ad:32:69:
3e:06:dd:d6:a6:71:85:5b:00:06:2c:85:f2:34:ef:2d:53:36:
4d:90:52:6d:88:22:1b:ef:3f:14:be:76:c8:45:53:a0:ed:d7:
55:40:1f:30:19:06:99:4b:dd:ec:4e:24:fb:c2:7b:0f:64:b2:
aa:e2:29:c6:f0:e7:f2:b8:35:df:75:26:c6:a9:60:bc:6a:25:
43:19:00:9e:00:e7:ab:95:f6:51:db:d5:fa:3c:62:22:df:5d:
b8:41:d7:f7:82:f1:54:18:6a:f9:7d:7e:e6:98:39:40:d1:2e:
3c:5e:c4:df:79:52:50:75:00:54:47:7f:57:8c:d5:85:8d:91:
21:c7:59:81:97:56:35:b0:b8:8c:33:a5:15:85:61:c6:66:2c:
9e:3f:90:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:38:29 2024 by rpki-client on console-fra.rpki-client.org