Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/SDqifN5tsE5bO19T8LTPJCEdnoQ.roa
File: SDqifN5tsE5bO19T8LTPJCEdnoQ.roa (raw, json)
Hash identifier: eUS1QmbX7Ogc1Vp2B1l85TVMzV6lqDvWHO5tTgI9t3Y=
Subject key identifier: 48:3A:A2:7C:DE:6D:B0:4E:5B:3B:5F:53:F0:B4:CF:24:21:1D:9E:84
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 0191218BA1C6FC571AEA954E7146D16C2451
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/SDqifN5tsE5bO19T8LTPJCEdnoQ.roa
Signing time: Mon 05 Aug 2024 07:58:04 +0000
ROA not before: Mon 05 Aug 2024 07:58:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 185.91.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 06 Sep 2024 04:29:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:21:8b:a1:c6:fc:57:1a:ea:95:4e:71:46:d1:6c:24:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: Aug 5 07:58:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=483aa27cde6db04e5b3b5f53f0b4cf24211d9e84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:2a:56:70:c9:ed:58:1f:9c:c1:52:84:67:a0:
f7:8c:18:80:bc:0d:2a:1d:13:36:a4:9d:77:7f:ef:
95:41:70:04:e2:0b:dd:d5:00:92:44:83:4d:7c:c5:
47:e2:3e:83:8f:08:4e:21:02:82:dd:ca:1b:00:51:
7e:9c:9d:3a:32:b6:4d:81:68:6e:ca:f3:9f:7d:65:
67:e4:68:91:82:a5:1b:54:12:0b:c7:f6:2f:62:3b:
59:83:5f:4d:d8:dc:64:22:a4:b2:09:68:62:62:d4:
06:50:81:34:e2:34:8d:22:87:ae:11:1d:d0:c4:26:
de:b5:8c:9e:68:8e:4b:8f:fd:ae:3c:1c:5b:ca:4d:
39:12:f2:e7:88:8d:65:b0:58:20:d0:a1:5e:69:9b:
29:29:da:0c:44:94:c2:30:54:8e:88:5a:ec:9b:71:
7d:f3:65:d6:1f:f7:30:31:80:03:90:a6:ae:c7:b6:
21:49:7c:02:a5:39:0b:a6:3c:81:4d:2e:c7:a2:0d:
98:e6:f8:00:e6:90:4a:d1:d2:cd:17:e5:c0:61:37:
71:1f:12:45:bd:4d:b3:6a:af:f8:ae:ba:d5:ae:78:
6f:8d:43:03:31:ba:db:00:68:47:9a:0c:bb:e0:97:
db:89:b1:0d:c0:a4:fc:6d:e0:e5:da:cd:a6:6a:cd:
9b:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:3A:A2:7C:DE:6D:B0:4E:5B:3B:5F:53:F0:B4:CF:24:21:1D:9E:84
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/SDqifN5tsE5bO19T8LTPJCEdnoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.205.0/24
Signature Algorithm: sha256WithRSAEncryption
77:11:5a:30:16:87:11:d7:2e:fa:55:d8:e8:bd:2c:15:92:a1:
c7:cc:68:89:d4:9a:a5:2b:ec:d9:98:01:6c:2c:d2:d1:af:d3:
dd:71:71:8c:71:20:54:2f:e2:55:8e:9e:e7:b3:2e:8b:fd:19:
49:64:b1:ab:fb:f3:ef:00:78:db:ba:33:82:b9:51:b0:e0:c7:
36:58:50:a5:f0:02:19:17:3d:11:c2:50:df:95:ab:f9:4d:20:
83:7c:56:bb:b5:4d:dd:18:15:35:3a:6e:87:b2:f9:d5:0f:59:
5c:93:23:63:3c:bc:2e:e1:c9:f5:5e:93:a7:47:b3:fd:64:77:
51:84:f9:2a:eb:dd:32:d5:98:8c:3f:c7:ad:e3:28:c7:f9:51:
b4:f1:77:b6:e1:4f:d7:59:af:ba:9b:a7:c1:9f:ef:51:42:49:
90:99:c7:22:5a:9e:46:a1:0d:c5:73:9b:1a:0f:ae:a7:ee:26:
ec:c9:40:fc:f5:eb:fc:e5:c4:4a:4d:0c:f1:b8:2e:fd:b3:3f:
88:ea:e4:f1:a8:c3:3d:42:35:17:33:36:d6:f1:21:e9:4e:ed:
57:7b:40:f1:5c:d1:f1:93:b4:27:fb:5a:91:93:2a:a4:82:10:
91:58:a0:fa:95:1c:bb:72:32:96:97:70:1b:f9:2a:fa:07:a5:
c3:44:37:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 6 06:37:23 2024 by rpki-client on console-ams.rpki-client.org