Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/wn1URMROgUiBHMu4m8rNi3XMCjU.roa
File: wn1URMROgUiBHMu4m8rNi3XMCjU.roa (raw, json)
Hash identifier: mWbvc0Mc2qPiDtdr0HyeX8fDirgIdjQpqaO73VXW+9E=
Subject key identifier: C2:7D:54:44:C4:4E:81:48:81:1C:CB:B8:9B:CA:CD:8B:75:CC:0A:35
Certificate issuer: /CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Certificate serial: 0190FD7161EA54B842992931A0BCFE6CE642
Authority key identifier: 9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/wn1URMROgUiBHMu4m8rNi3XMCjU.roa
Signing time: Mon 29 Jul 2024 07:43:04 +0000
ROA not before: Mon 29 Jul 2024 07:43:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 185.91.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 05 Aug 2024 07:58:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:fd:71:61:ea:54:b8:42:99:29:31:a0:bc:fe:6c:e6:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9faf0bf93fc4381fff7e7aa86b4076c033242ffa
Validity
Not Before: Jul 29 07:43:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c27d5444c44e8148811ccbb89bcacd8b75cc0a35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:99:03:be:6f:b8:e7:bd:2a:05:87:65:ae:c7:
e2:79:17:e7:ca:8f:77:07:5c:b7:93:6c:fe:f9:ec:
5b:73:d2:c2:32:db:4b:7f:78:68:7e:d9:de:11:82:
57:f1:8b:af:42:7f:28:6f:d7:cc:aa:5a:c6:9f:c6:
c8:c4:3f:0e:89:3b:06:ff:36:2c:aa:f9:d2:1e:52:
9f:63:ee:32:1a:c8:56:95:f7:32:4d:bb:c6:fe:53:
67:1c:16:bb:b2:a3:31:48:f7:4a:ac:c1:bc:50:27:
2c:3c:f7:79:05:7f:aa:d1:6d:6a:f4:43:27:88:1b:
05:81:3e:86:28:b8:ac:9a:28:51:b9:0e:92:55:f5:
a8:e9:75:6a:99:53:4d:d0:8b:f8:8b:51:fe:3f:5c:
55:3c:46:ea:2e:42:7a:47:57:1b:24:c5:b8:d0:50:
0d:65:59:45:ba:b9:92:ee:5d:23:a9:54:88:db:f3:
4d:a0:39:f4:e8:95:22:e7:35:45:e9:00:88:bb:ef:
8d:bb:f4:84:92:b6:80:f7:2c:4f:c5:4f:df:91:e5:
50:8e:11:f0:0c:d5:97:2a:7e:52:26:00:a3:ec:f8:
49:44:8a:30:07:86:20:ee:d1:82:a0:d8:56:ee:cd:
15:75:7a:19:a4:bc:32:50:0d:ec:65:10:2e:18:bc:
ed:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7D:54:44:C4:4E:81:48:81:1C:CB:B8:9B:CA:CD:8B:75:CC:0A:35
X509v3 Authority Key Identifier:
keyid:9F:AF:0B:F9:3F:C4:38:1F:FF:7E:7A:A8:6B:40:76:C0:33:24:2F:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n68L-T_EOB__fnqoa0B2wDMkL_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/wn1URMROgUiBHMu4m8rNi3XMCjU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/a4ff33-b290-4307-afc8-f520a7d71ef5/1/n68L-T_EOB__fnqoa0B2wDMkL_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.91.205.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:f8:fb:c0:ac:eb:17:19:b1:fd:31:94:d1:9a:8f:9a:7a:34:
11:ee:4b:c2:b0:ce:83:97:c4:79:41:55:cb:b9:f8:c1:5b:22:
7f:65:3e:16:4f:ce:d9:c7:50:0b:22:9f:da:f7:38:d2:64:f0:
8f:47:68:f8:1c:51:07:21:19:7a:56:82:e5:b5:bd:d3:6e:53:
c9:29:a5:16:03:d3:55:b7:6c:ad:d8:2a:5b:49:7c:ba:8b:a2:
ca:f3:be:17:52:5f:9b:b2:cb:20:f2:04:40:c3:ee:cb:01:e7:
a9:c5:15:04:ea:4b:e4:86:e3:f6:ff:4b:8d:e4:35:91:36:ed:
58:fb:83:03:e1:e6:a4:db:49:46:89:56:63:c8:10:77:39:10:
5a:ab:bf:49:58:c9:2a:9a:ad:37:4e:aa:7b:73:d2:8c:62:1a:
4e:c4:c4:8e:f1:6d:43:20:b1:1b:49:f0:c9:c5:02:8e:0a:c0:
17:09:5a:b0:41:4b:44:57:c7:f6:aa:5f:d2:94:d2:75:45:d7:
9d:90:d2:bf:da:98:04:d3:f8:9e:d8:8e:6c:9b:ee:33:ae:d5:
ef:16:2c:eb:f3:a7:e8:3d:55:46:65:ab:66:24:f4:55:56:49:
8a:65:fa:d7:30:59:b0:00:6b:4e:5c:df:d9:a3:ee:5b:4c:33:
2d:b8:df:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:47:06 2025 by rpki-client