Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/9NeYawwx-LTygaMW_mJ3XNOhoQU.roa
File: 9NeYawwx-LTygaMW_mJ3XNOhoQU.roa (raw, json)
Hash identifier: Yoq+xHsPWSGxJXhDuSWErwwtoA9QIRI0V5W/hGams0M=
Subject key identifier: F4:D7:98:6B:0C:31:F8:B4:F2:81:A3:16:FE:62:77:5C:D3:A1:A1:05
Certificate issuer: /CN=560d1e89b4e742e69062a95d351deea96b5178fb
Certificate serial: 0191C1FA76AF91A82A8070839781DFEF63A3
Authority key identifier: 56:0D:1E:89:B4:E7:42:E6:90:62:A9:5D:35:1D:EE:A9:6B:51:78:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vg0eibTnQuaQYqldNR3uqWtRePs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/9NeYawwx-LTygaMW_mJ3XNOhoQU.roa
Signing time: Thu 05 Sep 2024 11:38:22 +0000
ROA not before: Thu 05 Sep 2024 11:38:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198154
IP address blocks: 91.231.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:47:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:c1:fa:76:af:91:a8:2a:80:70:83:97:81:df:ef:63:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=560d1e89b4e742e69062a95d351deea96b5178fb
Validity
Not Before: Sep 5 11:38:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4d7986b0c31f8b4f281a316fe62775cd3a1a105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:fa:c6:3e:90:a4:a0:82:0b:51:ff:b6:e9:
09:a4:e7:74:71:4a:b4:e6:9e:5d:c3:dc:50:a3:8f:
af:ca:76:f7:2d:c5:77:88:81:46:8b:ef:40:28:3c:
09:60:96:bd:01:ad:4a:d8:e9:65:65:f3:15:dc:b1:
84:f2:8e:fe:f7:5e:9a:a6:f6:d8:b4:74:59:08:b2:
4d:09:49:01:12:de:46:a5:62:17:ff:ce:7c:30:3a:
a2:4d:a5:e6:ff:ac:f7:d6:fa:2f:33:ee:22:53:0f:
70:67:91:84:dc:dd:cb:dc:1b:ed:83:72:91:d2:a8:
ce:6c:e0:84:32:b6:54:59:50:82:2a:a5:ee:c1:b1:
44:4d:50:50:0e:6a:8f:96:02:ae:76:d6:d0:27:76:
30:93:f6:ac:ef:7b:e8:05:81:51:62:8d:24:dd:37:
95:f0:26:7d:0e:7c:94:dd:bd:6a:ec:9c:c5:50:02:
c8:2c:41:0a:4d:71:71:07:80:31:74:8b:87:cf:32:
0f:e5:b9:18:d3:09:3e:85:5b:59:69:79:b0:e3:44:
5a:0d:6f:92:73:4c:7b:a8:93:06:35:50:ae:b8:5b:
cd:53:47:76:63:b4:26:46:67:cd:1b:cc:c0:2e:3e:
57:77:88:19:52:63:5a:74:f0:23:41:29:f9:58:3f:
0f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:D7:98:6B:0C:31:F8:B4:F2:81:A3:16:FE:62:77:5C:D3:A1:A1:05
X509v3 Authority Key Identifier:
keyid:56:0D:1E:89:B4:E7:42:E6:90:62:A9:5D:35:1D:EE:A9:6B:51:78:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vg0eibTnQuaQYqldNR3uqWtRePs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/9NeYawwx-LTygaMW_mJ3XNOhoQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/8a734a-d2b8-411e-a557-50d6ba6aacb8/1/Vg0eibTnQuaQYqldNR3uqWtRePs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.222.0/24
Signature Algorithm: sha256WithRSAEncryption
28:1e:7e:46:7e:f1:61:cc:d9:bd:25:c9:07:20:c7:eb:5f:f0:
2f:66:fc:36:53:87:fe:7d:fb:81:bb:7f:9d:95:05:17:fc:0d:
b7:a7:f5:c1:2d:89:6d:4e:59:31:ed:c4:67:c8:b6:26:02:4a:
68:4f:86:66:d4:5f:15:c6:1e:82:8f:04:e9:3f:73:6e:e1:2a:
83:88:9d:01:59:26:c7:48:3e:5e:36:c3:b0:2a:5a:40:2e:bc:
ac:d4:61:ac:8b:c3:06:3d:24:8a:d2:b3:13:8d:bc:5a:04:cd:
23:6b:e5:a4:32:8b:38:e1:07:f4:88:1d:65:f4:f7:ec:fc:30:
d4:b5:79:bb:08:6f:6a:1e:3b:b0:90:dc:79:43:01:03:c3:b2:
99:6d:30:fd:48:27:e8:9f:ac:a0:e4:60:47:6b:01:73:46:02:
76:58:07:46:f1:a8:c2:42:6b:48:18:15:72:8a:93:00:22:54:
39:d4:de:c3:b1:22:ec:05:0f:89:80:cc:5c:6c:9b:eb:6d:cf:
bd:34:58:76:2b:34:3c:18:54:fc:ab:20:f2:a3:24:df:e4:9a:
15:67:82:cd:ea:64:ca:e1:88:4d:dc:02:b4:dd:c6:b0:2f:37:
6a:1c:a7:74:a2:6f:c4:75:05:64:bb:bb:b2:eb:17:23:15:c0:
60:99:08:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:21:41 2025 by rpki-client