Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/7vIlQuwN5D9SQlVLBnx-bhut2zI.roa
File: 7vIlQuwN5D9SQlVLBnx-bhut2zI.roa (raw, json)
Hash identifier: 7YtZXDwSQGWNfiJ3iqbdZeXLVTlH/tHVsoCF81pZWEw=
Subject key identifier: EE:F2:25:42:EC:0D:E4:3F:52:42:55:4B:06:7C:7E:6E:1B:AD:DB:32
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01900486639045CDC8E7006A803F1D3D9052
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/7vIlQuwN5D9SQlVLBnx-bhut2zI.roa
Signing time: Mon 10 Jun 2024 23:40:34 +0000
ROA not before: Mon 10 Jun 2024 23:40:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 91.239.149.0/24 maxlen: 24
176.105.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Jun 2024 16:03:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:04:86:63:90:45:cd:c8:e7:00:6a:80:3f:1d:3d:90:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jun 10 23:40:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eef22542ec0de43f5242554b067c7e6e1baddb32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4a:9c:33:60:56:8a:ef:29:4f:01:45:b5:76:
37:23:01:f5:ac:6e:b1:30:5d:13:8b:12:bf:3e:35:
4f:93:93:93:4e:73:43:e4:11:ae:61:c5:d4:5e:5c:
a0:94:b1:87:d1:3a:cc:e4:33:6e:b7:9e:ff:ec:1d:
9f:bc:11:94:c7:4c:27:ec:3e:2b:7d:51:5b:c0:4e:
3d:f2:59:08:ca:61:37:14:a1:66:d8:f6:10:9a:1a:
01:04:12:a9:8c:79:36:27:a9:9b:6c:d4:c5:cd:1a:
62:be:1a:cf:bf:c6:ad:1c:ec:cc:76:87:6e:e3:26:
71:07:6a:a7:89:ec:75:75:f4:30:af:b2:66:02:56:
b2:43:24:cd:f0:3a:bb:f0:0e:64:8c:eb:31:ee:e5:
70:f3:3a:1c:78:45:5b:d8:74:4f:f0:a4:66:6a:d7:
61:76:b2:f8:4f:9f:d4:da:d9:2a:49:17:9a:cb:d6:
d2:04:3d:50:0b:e4:e2:79:5f:b2:9c:86:a8:d1:b2:
07:44:d2:55:20:ae:8c:ee:85:62:dc:77:ef:44:15:
27:65:ad:6f:bb:c5:ae:3b:ea:44:d7:78:ba:3c:1d:
1a:a8:50:ca:45:50:42:98:10:b6:d3:a5:ef:38:a0:
da:0c:29:cd:0c:77:53:02:05:fb:ba:3a:99:70:78:
68:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:F2:25:42:EC:0D:E4:3F:52:42:55:4B:06:7C:7E:6E:1B:AD:DB:32
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/7vIlQuwN5D9SQlVLBnx-bhut2zI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.149.0/24
176.105.229.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:3e:16:c4:f9:de:73:c7:ba:0c:33:fe:89:97:d8:5c:5b:e8:
b1:8e:96:f4:ee:ac:34:59:64:2c:4b:8f:df:e3:84:19:ae:6f:
f9:bc:0e:57:7f:08:4c:ab:40:d7:9f:04:e6:f3:26:5f:85:e2:
9e:46:e7:e1:e1:63:a0:51:64:6f:1e:30:81:c7:6d:7a:af:da:
ee:e3:8e:26:50:53:5f:a9:e7:b4:43:43:4e:9d:72:b9:78:a8:
1f:52:ab:d3:a0:0c:78:27:b1:a9:94:76:40:ca:d0:73:6e:5a:
b1:72:60:70:74:06:f0:4c:f5:2a:00:a8:24:e7:2e:75:75:57:
eb:ab:4c:82:c4:c7:72:fc:86:62:14:9e:e6:1b:23:f7:08:6f:
a2:86:7a:ed:0b:c4:28:b8:a6:74:81:c6:e3:4e:6b:6f:38:1b:
e8:b8:60:f0:80:5a:09:2c:fd:f4:63:0d:cf:9b:ba:98:69:b2:
d7:95:ae:86:e8:94:ea:4e:34:69:21:ca:45:54:cf:bc:7d:88:
93:99:e3:81:bc:c2:c8:4d:b3:d9:ad:51:5d:36:d5:47:ee:79:
fc:1c:92:bf:e0:18:05:94:fc:85:c1:94:ee:a7:28:fc:10:d1:
31:c6:7c:9c:45:53:4f:69:c4:59:6f:aa:38:57:dd:74:ed:06:
b4:0f:62:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 12 19:06:59 2024 by rpki-client on console-fra.rpki-client.org