Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/3b_1b_9GvA8hjPTKDblC8mfxAYY.roa
File: 3b_1b_9GvA8hjPTKDblC8mfxAYY.roa (raw, json)
Hash identifier: dnNc9Fdp+RYRStoYoALelw7wTFV/pelGHl0wP+/Ab6o=
Subject key identifier: DD:BF:F5:6F:FF:46:BC:0F:21:8C:F4:CA:0D:B9:42:F2:67:F1:01:86
Certificate issuer: /CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Certificate serial: 018CC86F04B0A739ED8CFDC82D95C5660C08
Authority key identifier: 27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/3b_1b_9GvA8hjPTKDblC8mfxAYY.roa
Signing time: Tue 02 Jan 2024 04:29:28 +0000
ROA not before: Tue 02 Jan 2024 04:29:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7029
IP address blocks: 91.188.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 24 May 2024 10:05:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:04:b0:a7:39:ed:8c:fd:c8:2d:95:c5:66:0c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2793bde946ae936d3cacc136a5f3239edf2431f4
Validity
Not Before: Jan 2 04:29:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ddbff56fff46bc0f218cf4ca0db942f267f10186
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:20:d9:6f:51:7d:3d:b6:21:77:10:1e:c0:56:
92:22:35:01:72:1d:ec:00:4f:56:7f:45:f0:59:81:
61:76:b9:11:31:de:8e:41:d2:f1:8c:57:ae:11:c2:
95:8c:e2:3c:fd:d7:09:01:61:71:d9:ae:a1:13:12:
bc:5f:c7:1e:83:9f:f7:e0:cc:dd:41:78:dc:09:22:
54:25:a7:e4:3d:68:5b:c1:96:58:6c:38:c2:d7:ee:
53:29:ba:c1:56:1d:54:bb:dd:f2:52:17:d2:24:40:
cb:4f:b0:dc:7e:5f:fd:66:d9:f0:84:22:52:c8:52:
54:1a:00:bb:79:51:0c:34:81:c4:60:2a:d9:14:c7:
11:0f:cb:99:2a:de:af:7c:d7:2c:93:7a:ba:3b:21:
e7:93:61:06:8b:49:3e:53:3f:14:96:b5:85:2c:63:
ec:d1:7d:ea:9e:c1:7b:4d:6a:87:52:85:7a:41:3a:
2c:5c:ec:a8:8f:57:db:5b:22:16:54:2b:a1:a6:af:
c6:12:12:a7:06:af:dd:3e:f3:f7:66:8f:16:35:23:
09:a2:74:e1:ae:09:a7:42:9f:d7:24:a5:aa:0b:f2:
88:c5:c0:b1:d0:e6:89:6a:27:b8:5f:44:d3:6b:b7:
98:b3:c0:a4:35:be:bb:6c:05:11:4c:66:96:54:c5:
78:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:BF:F5:6F:FF:46:BC:0F:21:8C:F4:CA:0D:B9:42:F2:67:F1:01:86
X509v3 Authority Key Identifier:
keyid:27:93:BD:E9:46:AE:93:6D:3C:AC:C1:36:A5:F3:23:9E:DF:24:31:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J5O96Uauk208rME2pfMjnt8kMfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/3b_1b_9GvA8hjPTKDblC8mfxAYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/bf58da-a9d2-421a-b43a-92c3bf74a97b/1/J5O96Uauk208rME2pfMjnt8kMfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.188.252.0/24
Signature Algorithm: sha256WithRSAEncryption
30:25:78:2f:25:38:d8:f1:c8:fc:8e:68:bf:85:3c:10:8d:a2:
7c:8e:5e:1b:10:22:e8:f9:34:2d:7a:5f:2a:34:20:6f:8d:85:
b7:57:0a:b2:3e:ab:a4:a9:e5:88:18:77:34:9c:fc:7b:bb:7e:
e3:91:b5:32:3f:7e:2b:7f:6e:ec:ea:90:2f:0a:37:05:26:b0:
5c:08:1b:ba:5e:31:ea:4b:f5:ec:1d:19:57:26:89:59:8e:e6:
28:eb:f4:c7:42:61:07:4c:dc:da:db:39:d0:24:04:ef:57:04:
57:34:6a:95:70:2e:5a:24:7a:71:cc:e9:c2:af:d5:86:6b:0e:
78:9b:5b:07:dd:c5:83:44:16:f6:1a:5c:24:dc:ff:17:aa:2d:
89:2a:ad:64:f2:48:5a:dc:7f:0d:b2:30:8c:a2:eb:0d:96:da:
d2:6d:79:72:f7:68:93:fc:5e:97:83:78:52:a5:df:ef:62:f8:
be:76:49:7c:c3:8e:ff:80:a8:58:c0:ff:f0:73:d6:a4:93:f5:
d7:18:12:46:6b:f6:e9:61:ea:6a:11:ce:4b:28:8d:dd:db:f7:
99:55:3e:9d:6f:b7:27:50:ce:c9:2c:68:7f:2f:be:7a:bd:38:
98:08:9f:9f:a9:a2:c6:ae:9c:92:83:b6:b0:15:8d:88:c5:5e:
88:bb:fc:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:37 2024 by rpki-client on console-ams.rpki-client.org