Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/vX9jVbOr6ZN--BaYmTonoDKfJ4c.roa
File: vX9jVbOr6ZN--BaYmTonoDKfJ4c.roa (raw, json)
Hash identifier: pkzzMN5B53HCFVT9lRMogpSlJ4//lYC+rovdxbGq1XE=
Subject key identifier: BD:7F:63:55:B3:AB:E9:93:7E:F8:16:98:99:3A:27:A0:32:9F:27:87
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 018F19F9690F7BBC483FC10F12E9C7E8D4C8
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/vX9jVbOr6ZN--BaYmTonoDKfJ4c.roa
Signing time: Fri 26 Apr 2024 10:35:26 +0000
ROA not before: Fri 26 Apr 2024 10:35:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.91.206.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 01 May 2024 05:43:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:19:f9:69:0f:7b:bc:48:3f:c1:0f:12:e9:c7:e8:d4:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: Apr 26 10:35:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd7f6355b3abe9937ef81698993a27a0329f2787
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:57:54:59:40:5e:4d:03:13:bb:ad:43:40:0a:
d2:5e:48:6d:5d:f3:34:b8:5c:25:e8:66:b2:10:82:
f0:c9:c7:04:3e:af:b7:1d:4d:4c:b2:0e:09:0b:61:
54:bf:b8:b5:e2:bd:34:ec:40:37:1e:52:38:51:7e:
bd:ee:42:19:d2:d4:64:96:66:99:02:30:57:23:2b:
9a:12:47:92:37:19:b9:31:b4:0b:8a:24:94:95:ed:
fa:8c:3c:44:d7:94:91:35:c3:b8:01:80:cb:fd:6c:
8b:47:dc:03:06:0c:17:06:eb:0e:0b:20:1a:0e:15:
db:28:13:32:21:d1:4d:e7:ff:f1:a4:95:09:6f:6e:
9d:8a:f1:19:f5:80:4c:57:05:0d:c4:48:dd:fa:90:
8b:3f:1c:ce:b3:ec:5f:c7:cd:5c:24:a2:40:32:c7:
ec:9b:3e:5d:70:a9:ee:6f:ea:55:b5:a5:ce:82:af:
56:a8:66:fc:b2:e0:3f:3a:75:6e:71:49:ae:1e:30:
e3:e1:e9:28:45:38:6b:09:29:28:6c:dc:63:9d:db:
64:43:2e:ad:e0:0b:60:e8:34:b5:f2:25:ae:4b:ea:
3d:9f:7b:a3:3c:73:c3:1b:5f:55:1a:3e:47:ca:93:
61:a1:2b:ae:33:e6:73:24:71:a9:5e:13:52:2d:0f:
71:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:7F:63:55:B3:AB:E9:93:7E:F8:16:98:99:3A:27:A0:32:9F:27:87
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/vX9jVbOr6ZN--BaYmTonoDKfJ4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.206.0/23
Signature Algorithm: sha256WithRSAEncryption
12:f1:91:fa:2c:d0:c1:ab:7d:1b:23:10:75:47:21:c1:18:cb:
2f:53:0c:09:57:03:49:b2:45:d2:9e:90:36:ba:d1:c5:05:b7:
8f:54:9a:77:d3:84:95:b9:d0:34:7e:3a:32:8c:ad:f0:54:38:
f4:44:3d:ea:0b:04:9f:21:3c:d0:38:e9:25:ba:8d:55:e2:c2:
c9:af:7a:f0:ac:df:52:6b:e0:9d:ad:52:99:67:94:30:92:db:
86:15:c5:e6:1b:64:66:a2:75:91:df:06:bc:03:48:10:27:cb:
5e:4d:73:91:0c:90:fd:73:84:99:54:f4:48:c4:a3:d6:47:c3:
97:93:29:50:ab:8e:0c:ee:07:16:15:d9:96:d1:25:62:65:15:
0d:15:9e:cb:a9:80:8a:f5:4a:60:37:b2:43:8a:91:78:c0:34:
78:4c:03:b6:84:62:8c:d0:b8:07:44:ce:75:ca:82:0f:17:8a:
ee:72:07:6a:1b:85:5f:76:bf:75:95:71:91:61:c1:13:52:36:
62:f9:7a:30:67:82:03:81:c6:3a:fb:03:83:3d:28:3f:a6:e5:
68:76:d6:81:30:a4:0f:df:42:f4:25:ce:a0:b1:fb:63:6f:76:
c3:32:6a:3a:f9:a1:1e:92:a2:bb:40:3f:8b:8c:95:8c:d9:99:
39:ff:68:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:47 2024 by rpki-client on console-ams.rpki-client.org