Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/uJN2nDxBR98L844XLB6VGTmSqTg.roa
File: uJN2nDxBR98L844XLB6VGTmSqTg.roa (raw, json)
Hash identifier: arQX2MvgeQBKN+SG5Oyd4B+qV779NMvSGP8ag0Ci1CE=
Subject key identifier: B8:93:76:9C:3C:41:47:DF:0B:F3:8E:17:2C:1E:95:19:39:92:A9:38
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 0193CAEAC1A75FC350A628089E1BA62C0A96
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/uJN2nDxBR98L844XLB6VGTmSqTg.roa
Signing time: Sun 15 Dec 2024 15:23:22 +0000
ROA not before: Sun 15 Dec 2024 15:23:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 91.231.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Dec 2024 15:11:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ca:ea:c1:a7:5f:c3:50:a6:28:08:9e:1b:a6:2c:0a:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Dec 15 15:23:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b893769c3c4147df0bf38e172c1e95193992a938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f0:a7:fd:0b:05:b8:1f:8e:92:2f:28:7b:22:
46:0b:36:23:c3:ad:a4:cc:a5:c1:4b:14:0b:17:d6:
cb:1f:69:f8:e0:ce:b9:99:cc:80:3a:ed:ad:bf:c3:
ec:ed:6a:cd:6a:59:14:ef:4f:84:15:36:25:e1:ef:
3e:0f:1d:8e:8f:29:ac:e5:1c:11:a2:c1:a8:10:a0:
19:c7:ae:da:29:30:eb:1d:01:b7:48:05:bb:64:79:
63:8f:02:db:2a:8b:01:73:b6:c3:42:b5:94:4b:74:
1e:46:bd:47:48:12:67:aa:97:30:61:eb:5e:60:87:
24:34:b2:1d:10:b9:57:b1:4a:b6:7c:6f:f8:09:b8:
27:f0:e9:34:0d:f3:46:60:13:b5:ad:99:23:6a:28:
77:de:77:d1:e3:7a:db:54:6d:6e:b2:a2:08:58:58:
d1:f1:f0:15:3f:cf:11:70:c7:22:d6:af:bf:96:bd:
8f:0c:26:7b:76:0c:70:c4:60:47:03:49:88:4c:2e:
1c:ab:88:e4:d3:05:b6:ed:97:1d:07:fa:ad:0e:05:
4c:32:a1:10:08:94:05:16:86:ab:47:b8:77:bd:84:
84:41:4e:bb:45:3e:a6:98:55:f9:3e:2f:2f:ba:e1:
c0:71:b5:fb:15:1e:92:5c:ff:3c:81:9c:aa:63:78:
df:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:93:76:9C:3C:41:47:DF:0B:F3:8E:17:2C:1E:95:19:39:92:A9:38
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/uJN2nDxBR98L844XLB6VGTmSqTg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
Signature Algorithm: sha256WithRSAEncryption
24:b2:f8:d0:af:65:d1:2e:45:0a:ba:db:ff:67:87:bd:0d:24:
70:d3:a4:b8:ef:4e:5b:18:e9:8e:21:e0:ce:25:9b:f7:de:ff:
04:ce:13:9e:78:23:bf:cf:d1:6d:42:98:22:97:fe:d6:11:45:
2a:1b:0a:54:3b:ea:ab:cf:60:7c:c7:f0:63:f8:96:cc:57:5c:
61:47:0b:cf:97:62:a2:f5:31:6d:08:f9:27:49:5c:ca:96:17:
30:9f:da:21:9b:e1:26:82:5c:8d:4f:a5:b3:0d:6e:ff:56:17:
eb:91:53:9b:d2:e9:bc:fe:4b:0b:26:fc:08:8d:35:21:9e:d8:
e8:e2:52:1f:35:74:47:80:fc:9f:8b:d9:59:0e:3b:7d:40:8f:
39:06:f3:cf:93:c0:92:0e:8a:6a:a3:95:3b:aa:57:cd:b9:a5:
ce:30:08:8e:3d:4e:e2:00:e1:f0:f3:c3:10:ac:19:77:d3:75:
3d:54:7f:b4:12:23:7f:8e:71:eb:3a:6d:a0:d4:ef:62:ab:8f:
29:a2:2f:3c:0e:db:1d:e3:e6:cf:f2:22:1f:35:5c:90:fa:b9:
60:15:59:5b:a0:47:d3:01:1e:e2:6e:bd:39:86:b3:19:fe:5d:
4e:79:a1:dd:80:75:df:6e:ce:ac:eb:6d:cf:ba:fe:46:8b:c4:
38:ae:81:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:03 2025 by rpki-client