Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/jtCenWrEl6vO_akY-lyg3tZbtxY.roa
File: jtCenWrEl6vO_akY-lyg3tZbtxY.roa (raw, json)
Hash identifier: +IBOu5hY4VEKsbWCeh5K+QA1T/kOGadHQqVLdUyltCA=
Subject key identifier: 8E:D0:9E:9D:6A:C4:97:AB:CE:FD:A9:18:FA:5C:A0:DE:D6:5B:B7:16
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01856C78628A7686DFE877FCEF358ED0355F
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/jtCenWrEl6vO_akY-lyg3tZbtxY.roa
Signing time: Sun 01 Jan 2023 08:35:06 +0000
ROA not before: Sun 01 Jan 2023 08:35:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 91.244.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 17 May 2023 02:49:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:62:8a:76:86:df:e8:77:fc:ef:35:8e:d0:35:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 08:35:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8ed09e9d6ac497abcefda918fa5ca0ded65bb716
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:f6:6e:32:b8:57:cf:a4:ec:11:16:13:13:68:
f9:92:81:e8:be:2a:ee:0b:be:f4:49:9b:f1:b1:16:
b4:c8:27:cb:9a:12:83:da:25:84:de:02:7c:45:46:
48:c2:08:62:a4:1b:68:f9:4e:b8:3d:2f:68:29:02:
fb:fe:07:cf:2f:3a:90:98:21:7e:11:25:35:98:01:
f9:50:2a:65:13:11:7b:0d:9f:70:84:da:b1:ae:7a:
23:d3:c6:67:3d:01:3f:19:40:c6:6b:60:d5:4d:37:
00:26:54:98:5e:a0:b5:06:94:34:1d:21:e3:b4:80:
8a:67:2a:42:bb:7b:6b:c4:2a:b3:44:4e:4a:fc:cf:
04:a0:24:f2:fc:08:15:50:64:75:d9:28:f0:f0:38:
ee:23:b0:f2:1b:fd:12:78:4e:04:e2:85:57:c6:22:
4d:89:e5:8b:e3:67:8c:e2:ba:63:22:ea:36:77:6b:
ec:22:6c:c1:62:8e:08:2f:5b:ba:be:d2:eb:a5:52:
a3:54:21:63:60:88:5b:a7:84:28:7d:db:96:22:e7:
28:fd:89:e7:f0:b8:83:a4:bf:1f:ee:57:41:1d:c2:
ab:a3:d3:29:4e:16:52:c6:75:63:37:31:45:fa:43:
de:28:fc:d2:fc:11:9c:96:64:c1:97:b1:31:f3:65:
53:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:D0:9E:9D:6A:C4:97:AB:CE:FD:A9:18:FA:5C:A0:DE:D6:5B:B7:16
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/jtCenWrEl6vO_akY-lyg3tZbtxY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.244.198.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:31:e7:fe:ee:c4:5f:68:02:98:00:36:7b:51:d5:17:88:f6:
ac:86:16:b6:ab:c0:b3:83:68:5a:ad:f8:5a:63:ba:4a:82:ee:
ed:8c:c8:34:c2:f4:de:41:49:48:e6:40:28:cb:58:34:93:1b:
d4:4a:68:f9:15:ca:04:00:da:c8:57:10:d4:d2:1a:f0:e2:af:
8e:e8:91:44:23:05:ee:a1:cc:ff:ea:6f:63:0e:13:11:2c:77:
c1:8f:d9:18:77:28:5d:35:19:04:8a:62:8f:e7:48:d4:d2:97:
7c:d5:01:41:2c:d7:38:06:ec:1d:ea:cd:2d:d4:e1:20:58:68:
34:fb:6c:bf:3d:94:c8:4d:24:c9:bc:c2:5b:c7:b4:6a:a2:e7:
db:10:05:01:e4:80:13:4d:bc:7f:f1:bb:aa:16:04:04:a3:3b:
84:ef:4f:9f:f5:b0:26:d8:3f:72:89:cb:9c:7c:03:2e:ab:01:
05:c6:92:e1:c9:c3:ef:21:e9:08:88:fe:45:c3:ac:4b:93:5b:
01:c6:e7:34:4a:7f:66:bb:2d:0b:bd:df:3a:23:9f:2d:18:72:
ca:fd:44:d4:19:2f:6e:c9:b8:55:ae:9f:0f:d0:9d:ff:25:f8:
b9:d4:f2:19:9a:e7:c4:90:8b:5c:42:ca:62:cb:ba:b8:8e:8c:
06:f7:98:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:49 2024 by rpki-client on console-ams.rpki-client.org