Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/OW8kyJmiTRXaQAx3Aa_mEkS3wbg.roa
File: OW8kyJmiTRXaQAx3Aa_mEkS3wbg.roa (raw, json)
Hash identifier: Cey1HMUt6aN2enbb7QuZIexa+ZKrTxg6Ekk66gFfybE=
Subject key identifier: 39:6F:24:C8:99:A2:4D:15:DA:40:0C:77:01:AF:E6:12:44:B7:C1:B8
Certificate issuer: /CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Certificate serial: 01936910D5F1D23AA485FFF51A015E21491A
Authority key identifier: 8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/OW8kyJmiTRXaQAx3Aa_mEkS3wbg.roa
Signing time: Tue 26 Nov 2024 15:22:11 +0000
ROA not before: Tue 26 Nov 2024 15:22:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 139471
IP address blocks: 91.238.114.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:69:10:d5:f1:d2:3a:a4:85:ff:f5:1a:01:5e:21:49:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b37183341a2ab6df3c59ec827ed71200b5a6244
Validity
Not Before: Nov 26 15:22:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=396f24c899a24d15da400c7701afe61244b7c1b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:6f:21:db:55:db:a5:87:e7:37:07:85:c1:a4:
cd:06:69:70:23:cb:cf:c0:31:a2:1a:39:0e:8b:65:
0b:5d:db:6e:48:29:92:3e:e3:63:84:ac:99:74:40:
04:d7:60:4d:d4:0d:57:ea:5b:8d:c5:64:05:fe:38:
61:8f:4b:be:5e:be:33:56:90:0d:0a:79:19:de:54:
18:30:0c:cc:ae:3b:99:f8:78:6d:50:32:dd:8a:57:
cf:a0:51:6e:b9:d3:51:83:2c:d6:42:f9:80:ad:aa:
c1:0e:34:42:9f:0d:5b:97:1b:1e:9b:bc:07:12:3a:
10:52:b2:bc:b0:a3:d4:c8:50:1e:32:63:69:05:58:
be:94:bc:6c:a0:4a:50:2c:d7:1d:81:b2:3a:6d:f0:
4f:00:1f:9b:32:9a:0c:fc:a1:a5:94:1c:0f:ea:95:
d4:4a:82:08:3f:59:2d:52:c0:2a:9c:7b:04:ec:ff:
31:84:76:3b:43:38:f1:b0:1a:59:3f:cf:30:b5:a3:
54:ec:fc:92:e6:05:e3:98:4b:db:c3:b6:4a:35:5b:
19:b6:16:62:7d:50:41:16:54:27:f0:f0:78:e6:67:
d6:91:5d:75:d2:de:84:a0:50:6c:be:0b:e9:cc:45:
6f:34:8a:4a:55:96:7d:e0:b4:20:d8:0f:6c:9c:a9:
af:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6F:24:C8:99:A2:4D:15:DA:40:0C:77:01:AF:E6:12:44:B7:C1:B8
X509v3 Authority Key Identifier:
keyid:8B:37:18:33:41:A2:AB:6D:F3:C5:9E:C8:27:ED:71:20:0B:5A:62:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/OW8kyJmiTRXaQAx3Aa_mEkS3wbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/1c78e3-67d6-4e90-aeb5-0852cb353293/1/izcYM0Giq23zxZ7IJ-1xIAtaYkQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.114.0/24
Signature Algorithm: sha256WithRSAEncryption
82:eb:40:47:77:65:fb:df:5d:6f:a4:3b:49:8f:b6:01:d4:3a:
ce:ab:56:77:57:1b:81:68:3a:01:ce:fd:d2:af:cd:18:0c:b6:
82:67:70:1e:a3:91:6c:a2:31:32:19:58:5b:0b:0a:ff:94:99:
ce:74:7a:1e:20:d1:65:04:55:44:74:fa:51:e5:61:c1:82:28:
6a:93:73:6e:03:2e:83:74:8c:32:5f:4c:13:5f:05:97:00:fd:
ae:ce:a7:d8:12:b2:61:5b:7e:3c:1e:12:71:d2:05:c0:2d:7a:
ae:7f:bc:1e:a8:cd:5d:79:86:20:47:a0:7a:33:62:4a:10:0a:
43:93:1f:75:48:bd:76:c2:f2:76:f2:28:f0:b6:d9:5c:58:12:
4b:0e:62:6a:b5:3b:fd:d5:84:37:f1:8a:8f:7a:dd:5a:b8:67:
63:02:a2:f9:54:73:f0:ae:91:27:0f:20:fd:74:b8:a9:35:40:
4c:a6:c2:20:2a:c9:cc:f0:17:68:c3:19:10:89:5b:4e:2a:7c:
59:44:0f:c9:2c:ac:a7:11:c1:17:19:89:6c:71:3f:30:bf:24:
a3:90:0d:9c:7a:a3:84:10:fd:9f:8c:0e:a9:a0:63:a4:28:12:
4d:fd:0c:bd:d0:75:60:e5:b7:d5:e7:3a:4b:67:4a:99:94:7f:
60:16:e6:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 18:15:23 2025 by rpki-client