Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/d9d664-b018-4896-8cbd-aeccb632d288/1/mBXcNrx1VXIrnXGY1JqsLvVTAdg.roa
File: mBXcNrx1VXIrnXGY1JqsLvVTAdg.roa (raw, json)
Hash identifier: W1WTqTpP1zwhyXGj4jQ+B+KLdySaaE949h7JMrUcoeA=
Subject key identifier: 98:15:DC:36:BC:75:55:72:2B:9D:71:98:D4:9A:AC:2E:F5:53:01:D8
Certificate issuer: /CN=67bb39cf24a674248f694f6d1c3bfb5c8267eefa
Certificate serial: 0192666BB926F235A85108A3576FBCBCEAFA
Authority key identifier: 67:BB:39:CF:24:A6:74:24:8F:69:4F:6D:1C:3B:FB:5C:82:67:EE:FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7s5zySmdCSPaU9tHDv7XIJn7vo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/d9d664-b018-4896-8cbd-aeccb632d288/1/mBXcNrx1VXIrnXGY1JqsLvVTAdg.roa
Signing time: Mon 07 Oct 2024 09:59:48 +0000
ROA not before: Mon 07 Oct 2024 09:59:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212974
IP address blocks: 91.216.146.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:66:6b:b9:26:f2:35:a8:51:08:a3:57:6f:bc:bc:ea:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67bb39cf24a674248f694f6d1c3bfb5c8267eefa
Validity
Not Before: Oct 7 09:59:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9815dc36bc7555722b9d7198d49aac2ef55301d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:38:34:a2:86:cf:21:2a:44:61:f6:74:28:58:
14:6c:a8:10:4f:03:20:8c:72:f0:f4:b3:42:15:89:
97:43:b5:38:76:b2:61:f2:5c:ac:20:1c:1d:76:2e:
fb:e0:36:7a:ee:0a:50:b7:8c:52:64:54:a5:a7:4d:
91:88:5b:35:eb:3c:b1:0b:e3:6d:19:23:5a:9a:54:
0b:b5:7d:71:c7:96:d7:be:9f:29:21:98:4f:f3:89:
ad:2d:d1:dc:f5:d4:f3:fe:2f:a8:66:a3:7f:78:3c:
3c:a7:f5:f7:3d:62:c3:9f:78:1c:59:2c:13:20:ff:
35:8e:fc:ae:a9:b0:a4:25:6d:91:da:ec:4d:dd:7a:
3a:67:17:12:ef:fb:80:66:74:29:6f:e8:48:79:5a:
5c:81:92:f7:54:44:71:75:0d:de:90:15:98:b2:51:
ed:31:e2:28:08:20:12:98:d6:b6:8d:f8:c0:83:f8:
91:46:ff:59:d3:ef:b7:01:8d:8d:21:80:0e:f6:0f:
01:32:d0:bd:7f:21:4c:39:c5:41:f0:a9:48:d6:4c:
ed:e7:d4:b9:01:f1:88:ea:e5:f7:e1:80:e5:af:ab:
76:43:ed:7d:36:da:2e:99:f3:66:4d:6f:7e:2e:fe:
16:4f:cd:27:c2:51:ee:36:cf:e4:4d:4e:74:56:be:
fb:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:15:DC:36:BC:75:55:72:2B:9D:71:98:D4:9A:AC:2E:F5:53:01:D8
X509v3 Authority Key Identifier:
keyid:67:BB:39:CF:24:A6:74:24:8F:69:4F:6D:1C:3B:FB:5C:82:67:EE:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7s5zySmdCSPaU9tHDv7XIJn7vo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d9d664-b018-4896-8cbd-aeccb632d288/1/mBXcNrx1VXIrnXGY1JqsLvVTAdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/d9d664-b018-4896-8cbd-aeccb632d288/1/Z7s5zySmdCSPaU9tHDv7XIJn7vo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.146.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:37:e0:ee:a9:bf:1c:ba:fd:39:1b:16:a7:79:d1:d3:99:ab:
18:f3:ad:6d:1e:d8:df:af:10:aa:fb:d5:c7:0f:7f:46:fc:03:
60:ff:4a:25:6d:5d:97:db:c1:d1:5c:ee:64:c5:bf:c0:43:93:
07:8a:24:99:7e:59:02:bd:be:1f:b8:f4:07:f6:a5:a6:40:11:
f1:68:c3:b1:e2:4b:52:80:ff:fa:9d:d6:a5:9f:e4:4b:69:1a:
6d:49:ff:35:db:7f:85:70:cb:f5:4c:de:f7:85:4d:5a:e5:70:
28:e4:26:4c:15:1d:34:0a:cd:25:91:ab:a9:eb:d5:33:7c:22:
3e:a5:3f:4a:54:18:96:77:59:97:17:5a:8d:cf:0a:7c:8d:df:
7c:59:3f:be:69:f3:ba:4e:59:b4:8e:24:25:35:14:23:c0:b7:
a2:96:52:42:22:b5:25:a5:fb:ce:4c:6d:51:11:cb:8f:1f:49:
27:bb:3f:b8:2f:5b:45:e4:9a:5a:a9:51:29:d4:b5:03:b1:38:
39:02:0c:69:09:e0:0b:47:21:b4:4a:b8:8b:b6:d0:8c:e4:a4:
96:91:6c:56:96:d1:03:cf:bf:4a:70:ea:f4:2f:9c:cf:33:69:
a1:f3:ad:7d:74:6b:da:30:e3:bf:ba:02:e5:f7:f4:7a:87:c6:
59:f7:f5:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 20:20:21 2025 by rpki-client