Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/8W40kO-I1OnJ5TbrLMugauitiak.roa
File: 8W40kO-I1OnJ5TbrLMugauitiak.roa (raw, json)
Hash identifier: nY8pt96syjBwTLwZSDvbUJywl7ACWkORgJNz0Ek5uJw=
Subject key identifier: F1:6E:34:90:EF:88:D4:E9:C9:E5:36:EB:2C:CB:A0:6A:E8:AD:89:A9
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0187C604456E1622264B45E7B908B72D729C
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/8W40kO-I1OnJ5TbrLMugauitiak.roa
Signing time: Fri 28 Apr 2023 03:59:41 +0000
ROA not before: Fri 28 Apr 2023 03:59:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 20473
IP address blocks: 95.214.176.0/24 maxlen: 24
91.238.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 08 Sep 2023 22:59:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:c6:04:45:6e:16:22:26:4b:45:e7:b9:08:b7:2d:72:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Apr 28 03:59:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f16e3490ef88d4e9c9e536eb2ccba06ae8ad89a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:63:fd:a1:95:aa:3b:db:8d:1b:eb:f2:a3:85:
83:b7:ac:80:0b:45:79:e2:db:bb:be:7d:0d:39:e6:
0f:80:c7:79:82:c4:82:ad:1e:46:14:f6:f4:09:94:
c2:75:21:7b:2a:42:b2:61:c2:4a:31:6e:e4:57:62:
03:00:40:72:84:1b:fb:47:3f:ef:64:54:61:49:5f:
5b:4d:6b:a2:47:9d:dc:04:3b:ed:83:8c:89:79:af:
dd:5e:76:0b:2a:6f:14:e1:bc:f6:5f:e2:5f:1c:d6:
12:04:20:89:52:e7:59:0a:87:aa:96:d1:38:61:51:
ec:88:ed:c2:d4:64:79:87:65:15:bf:38:17:ab:c7:
84:f6:c4:d1:06:26:fe:5b:d4:a6:41:24:48:fa:64:
60:6b:3b:b7:38:c8:d3:0e:ef:aa:2c:ec:10:fa:14:
e2:4a:ea:7a:50:43:ee:8e:3d:db:68:7f:1c:7f:39:
e9:37:5d:05:eb:63:42:2a:62:3e:3f:d0:92:93:a2:
1e:7f:b4:89:52:00:af:97:07:e3:b9:07:82:6a:83:
ee:0c:db:a8:88:a7:3d:9c:cb:9f:c8:d1:75:c7:26:
dd:da:9b:55:a6:8d:15:40:46:2b:b9:ac:eb:4d:7b:
1d:e8:7d:f2:87:9a:5c:23:63:48:00:e6:a7:d2:04:
66:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:6E:34:90:EF:88:D4:E9:C9:E5:36:EB:2C:CB:A0:6A:E8:AD:89:A9
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/8W40kO-I1OnJ5TbrLMugauitiak.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.93.0/24
95.214.176.0/24
Signature Algorithm: sha256WithRSAEncryption
93:10:70:0d:b2:33:4c:7d:f4:f1:92:a1:c5:f3:5a:05:3e:8b:
36:fc:4e:6d:53:c8:04:41:b2:ff:0f:b0:8c:91:0c:c7:4c:9f:
ba:8a:fc:13:7a:50:28:e3:61:a8:8f:1e:e9:dd:56:fa:c2:3e:
a3:65:de:a0:e9:0c:8d:55:db:eb:e5:40:0d:60:9a:97:ea:a1:
2a:43:09:0c:76:51:12:8b:9a:c6:a3:95:5c:9d:34:64:03:dd:
f4:bc:27:90:55:f3:1a:d2:75:66:f7:ad:c0:54:87:bc:f9:f3:
e6:aa:8e:b6:0f:db:57:f1:ab:b9:fd:94:e6:c4:af:29:77:5b:
a5:54:b7:96:5c:54:8a:b5:16:34:8d:fb:d4:ab:54:ce:30:57:
d6:f9:c5:67:01:8c:a3:e7:a0:2f:3b:a3:df:1b:d6:56:3c:f9:
4a:1c:00:f8:e9:63:b7:09:ab:db:10:e1:72:9e:dd:bb:b3:df:
65:3e:c5:0d:c4:22:09:1f:8b:03:ff:ed:03:20:24:f4:aa:46:
27:69:44:d1:f9:c4:be:c9:7a:8b:98:e8:4a:6a:a1:0e:1b:8f:
6e:41:5f:1a:e9:72:60:f8:ac:74:e5:b8:e4:eb:be:bd:c0:21:
82:75:60:bf:f9:d9:7e:d0:d7:34:e7:46:29:bd:d7:61:8f:ab:
9e:7b:53:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org