Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/M9rDLpbtmHTEgptVXocnlxs42m8.roa
File: M9rDLpbtmHTEgptVXocnlxs42m8.roa (raw, json)
Hash identifier: v/3tGO0wCp4RM+i3gXor7MXmF/59OttpAIDpl++m4lA=
Subject key identifier: 33:DA:C3:2E:96:ED:98:74:C4:82:9B:55:5E:87:27:97:1B:38:DA:6F
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0185A6B8267782FD81A6BF818462AA8EAC73
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/M9rDLpbtmHTEgptVXocnlxs42m8.roa
Signing time: Thu 12 Jan 2023 16:02:44 +0000
ROA not before: Thu 12 Jan 2023 16:02:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14445
IP address blocks: 91.239.148.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 12 Apr 2023 04:51:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a6:b8:26:77:82:fd:81:a6:bf:81:84:62:aa:8e:ac:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 12 16:02:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=33dac32e96ed9874c4829b555e8727971b38da6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b6:b6:e2:89:8d:de:41:94:98:1f:0c:1c:24:
77:02:80:18:82:1f:c2:b5:cb:02:d4:8a:fc:1a:3b:
ed:c8:2e:3d:91:fb:b5:93:15:1c:09:cb:e5:bd:6c:
ca:50:ea:dc:7b:9a:dc:45:d5:52:8d:8d:3d:62:e3:
66:c2:48:60:f7:7e:bc:6c:ab:5f:2d:ca:2b:d6:16:
d2:05:ad:b2:6b:25:c5:22:7e:e4:ee:ea:5a:80:93:
25:30:40:73:d3:51:a6:ce:ac:d5:04:2d:ed:e9:d6:
ad:af:7e:9a:c1:67:e5:2a:1d:52:cd:48:12:69:2e:
8a:d7:b0:5d:64:65:dd:8f:c3:dd:c9:34:dd:95:28:
54:94:a3:91:23:f9:a6:d3:57:e4:f2:1f:db:fb:a0:
fa:13:6d:0c:78:6c:35:54:c5:dd:12:d0:36:e5:9a:
68:14:44:5e:50:fa:a8:91:02:f8:1d:e0:51:ff:8d:
57:76:4a:ff:cd:fc:bb:72:a8:ec:c8:6d:70:22:2c:
39:93:ef:84:6c:b9:fd:31:82:ff:e7:a2:68:be:3e:
f1:a0:ed:36:4a:d8:3d:74:03:f9:04:47:90:59:b0:
ab:6d:de:62:6a:f1:2a:77:99:ed:2c:da:20:bc:33:
d3:e4:3d:8e:32:82:90:b2:33:57:7f:04:7f:59:18:
e4:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:DA:C3:2E:96:ED:98:74:C4:82:9B:55:5E:87:27:97:1B:38:DA:6F
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/M9rDLpbtmHTEgptVXocnlxs42m8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.148.0/24
Signature Algorithm: sha256WithRSAEncryption
85:63:60:27:f1:a4:10:ef:a8:ac:dd:78:1b:cd:70:49:4e:1c:
c9:30:8d:73:df:d5:10:91:aa:90:84:e0:3d:c2:2d:d4:f0:74:
3c:0a:af:6c:c0:fd:b3:dc:94:d8:8f:30:4f:a9:f3:89:aa:55:
cc:27:d2:0c:8b:5d:68:17:c9:b0:bf:0b:82:a3:de:ec:1b:85:
ec:e0:56:19:21:f0:03:f2:f8:08:23:91:1c:16:f4:d5:a8:0d:
59:39:ae:e7:88:a2:6f:ba:92:d0:75:7a:18:1e:ca:0f:e5:87:
74:07:6c:aa:41:70:14:57:bd:95:c5:ff:37:21:8b:67:0a:ee:
cc:64:51:70:19:12:d1:1f:47:58:2d:6b:8a:a3:a7:d0:4d:b4:
b6:3c:36:df:1d:04:70:1f:c3:00:2e:78:0b:90:2c:0e:df:0a:
8d:57:28:a4:7d:93:16:e8:d3:08:e8:6f:bc:44:a9:a3:74:74:
ed:92:10:12:4a:66:16:6c:e6:d0:c3:b9:f7:0c:2e:68:0e:5a:
86:f3:c4:2e:ac:19:4e:39:6b:7d:ac:50:9a:93:66:bf:06:32:
e4:f6:9b:54:97:31:1a:aa:fe:fc:ad:a2:c4:47:0f:e6:28:6c:
83:f8:55:cb:bf:62:5e:10:2c:bc:0d:eb:63:dc:46:91:3f:11:
45:11:76:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:00 2024 by rpki-client on console-fra.rpki-client.org