Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VNNqHWSlx4df7hQxdT-xrqoJYuE.roa
File: VNNqHWSlx4df7hQxdT-xrqoJYuE.roa (raw, json)
Hash identifier: ORh1r0PifTiMrM1BCAbfGr/pguFnf3rNvghf4s79rpE=
Subject key identifier: 54:D3:6A:1D:64:A5:C7:87:5F:EE:14:31:75:3F:B1:AE:AA:09:62:E1
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018B495A4BCF13FC01DE287559272B824638
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VNNqHWSlx4df7hQxdT-xrqoJYuE.roa
Signing time: Thu 19 Oct 2023 19:12:16 +0000
ROA not before: Thu 19 Oct 2023 19:12:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 23470
IP address blocks: 91.239.149.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 20 Nov 2023 22:16:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:49:5a:4b:cf:13:fc:01:de:28:75:59:27:2b:82:46:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Oct 19 19:12:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=54d36a1d64a5c7875fee1431753fb1aeaa0962e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:33:ec:08:de:1a:5a:d9:3b:28:54:2e:c8:38:
0d:ed:e2:9a:4b:a9:58:07:e9:31:c8:fc:15:2c:a9:
ba:34:bf:48:40:98:68:83:8d:99:41:30:93:43:80:
fd:30:00:51:4d:59:6b:18:b6:5e:54:3b:bb:d0:b4:
69:34:c3:41:2d:89:97:26:b6:8c:21:b8:35:f6:43:
c4:6b:44:d6:63:32:e4:4e:d2:58:df:2f:90:2d:e1:
0a:2a:cd:ca:7d:f2:b1:81:fa:07:c8:ff:55:ab:59:
ff:7e:49:8e:fe:cf:2c:17:b6:be:9a:68:7f:9b:94:
e0:39:ed:67:dd:e6:d5:b3:a9:b0:58:f3:4a:2f:d6:
31:7b:cc:71:45:31:32:ba:91:c7:7b:12:9d:8d:60:
03:e5:b2:bc:d5:4c:c2:91:f3:23:37:26:c2:70:86:
78:3f:e1:0e:c5:6b:9a:0d:5a:88:5f:74:8c:bd:2e:
95:4a:37:b7:44:b4:f2:11:35:a1:af:d1:84:8d:e5:
8a:74:34:f1:ed:fc:c4:22:32:f4:8a:d6:0f:c1:01:
2d:30:6d:14:8b:a9:72:f9:fb:94:e8:f1:07:57:48:
2f:5c:b8:93:04:37:66:d1:19:a3:b5:3a:2b:8e:e7:
23:a2:ae:b3:8b:65:3e:1f:cf:c8:6a:7f:2b:78:cb:
d8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:D3:6A:1D:64:A5:C7:87:5F:EE:14:31:75:3F:B1:AE:AA:09:62:E1
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/VNNqHWSlx4df7hQxdT-xrqoJYuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.149.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:a1:45:d9:b2:2a:f8:a7:22:55:79:a2:32:0a:9f:2e:39:89:
f6:a9:4c:65:05:e5:6a:52:fa:80:2c:88:cd:ab:27:bf:b3:10:
ce:3f:c5:22:d2:2f:ba:28:c2:58:73:96:ba:c6:8a:33:91:cf:
a5:d5:ce:fb:c2:aa:1e:56:99:63:e9:a4:f9:67:59:35:67:77:
bf:fc:ee:9d:a3:8f:37:e5:13:83:9e:0c:24:12:a8:20:26:b3:
40:1d:bf:f0:b5:24:25:7c:fd:96:14:00:ff:ea:10:bd:46:33:
ad:cd:4a:1f:b2:41:44:fe:fd:0f:87:ae:e5:43:45:5f:3e:ea:
9b:93:8c:0e:75:5f:2b:f0:6c:07:af:e4:c4:73:d5:17:ed:34:
cc:c2:94:e7:01:6b:80:a1:64:ac:89:71:09:73:ce:26:4d:84:
64:e6:2c:c6:ce:a2:47:22:be:02:c4:4e:19:69:f4:06:3e:21:
c2:75:f5:5a:a4:2c:10:6c:8c:20:17:e5:f7:b3:f7:04:65:0a:
a7:d8:b9:e5:fc:c6:6c:4b:b5:d5:5d:05:40:1a:4e:fa:9a:1a:
76:29:cc:01:16:d5:7f:33:cc:98:76:ab:52:ff:20:6c:b5:5c:
74:55:8b:ab:b1:7e:cf:49:db:22:e3:a5:9c:80:19:b9:07:0f:
84:39:69:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:43 2024 by rpki-client on console-ams.rpki-client.org