Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/yAl0YwofzcaJK67ciyDVaD7JYB0.roa
File: yAl0YwofzcaJK67ciyDVaD7JYB0.roa (raw, json)
Hash identifier: DONKgtFTB1xZj7+F/7L/doq3tXaXCVWyK0mYd3hA+sA=
Subject key identifier: C8:09:74:63:0A:1F:CD:C6:89:2B:AE:DC:8B:20:D5:68:3E:C9:60:1D
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 01878F62AD09456AF51F914278F3246F3B9E
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/yAl0YwofzcaJK67ciyDVaD7JYB0.roa
Signing time: Mon 17 Apr 2023 13:23:41 +0000
ROA not before: Mon 17 Apr 2023 13:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 176.105.230.0/24 maxlen: 24
91.238.93.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 25 Apr 2023 14:30:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:62:ad:09:45:6a:f5:1f:91:42:78:f3:24:6f:3b:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Apr 17 13:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c80974630a1fcdc6892baedc8b20d5683ec9601d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ed:d3:f3:ed:4d:4d:92:a7:05:84:39:9f:df:
c9:7b:d2:cb:be:ac:ea:ba:3a:51:78:8c:63:03:f3:
c1:d1:66:63:08:24:c7:f1:ae:30:69:ed:3b:45:04:
a0:80:5a:7d:fa:eb:e5:d8:e0:45:e9:73:3a:d3:7d:
c9:5e:f5:83:bf:5d:0a:e8:e9:16:8f:60:38:e9:d9:
4f:d9:90:e6:4a:4a:8a:a3:25:33:08:ab:fc:a7:80:
cf:8a:19:08:a3:02:b5:1d:5c:8b:b2:8e:14:a8:09:
24:3b:53:cf:b1:68:e4:0d:53:96:38:52:8e:88:1f:
0a:ca:e8:cf:14:87:1e:20:b9:2a:97:aa:85:44:d2:
5d:53:2e:fa:29:46:05:db:b5:4f:e9:b5:07:6a:76:
88:b9:52:9b:9d:e2:12:a5:fe:58:01:07:f4:62:62:
a0:c2:59:8f:e3:e3:2f:77:b1:d2:42:f4:5e:df:ba:
88:33:9e:44:76:cd:79:06:67:86:84:33:93:d8:44:
03:85:34:9b:c4:77:5a:7d:57:ee:8a:fc:73:e1:14:
16:2a:f1:95:40:db:37:3c:63:3a:c7:ae:40:04:49:
a6:6e:ca:23:fd:ed:6d:53:e4:4f:68:42:6d:7c:65:
eb:83:2f:65:65:14:85:c3:36:08:a9:04:52:44:48:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:09:74:63:0A:1F:CD:C6:89:2B:AE:DC:8B:20:D5:68:3E:C9:60:1D
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/yAl0YwofzcaJK67ciyDVaD7JYB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.238.93.0/24
176.105.230.0/24
Signature Algorithm: sha256WithRSAEncryption
57:29:a6:48:1e:43:51:ec:9d:fb:12:09:5a:de:ad:be:56:3c:
b2:14:02:3a:94:85:44:9d:b5:a2:d0:46:3c:34:76:26:bb:fd:
eb:94:00:2b:6e:a3:7f:a6:8e:10:0b:ea:eb:81:65:90:98:55:
d4:b5:67:cd:ea:7b:93:e9:ca:92:6b:59:d6:1f:28:2e:f0:22:
ca:5f:e9:7e:28:61:8d:6e:29:48:49:0f:66:08:5e:49:1b:54:
62:d8:1d:cf:8b:cb:c9:94:14:a1:1f:c0:27:a1:27:b5:e3:41:
99:89:92:77:c6:f0:51:89:6e:93:d2:47:47:d5:c3:2a:61:ac:
b6:98:10:0d:55:54:f0:e2:1b:e6:3d:03:47:29:56:1e:70:b3:
cf:fb:03:92:00:13:92:0a:ff:a8:49:9e:3d:68:62:16:eb:5c:
df:a2:63:fc:47:11:df:e6:72:47:10:db:4f:b1:05:fa:4b:4b:
ed:a6:61:f3:c6:43:34:c0:71:9b:14:57:c3:7d:8e:65:ee:f2:
a2:ed:f2:ad:63:c3:44:b6:13:f4:1f:d7:2c:1a:e3:b7:e4:b7:
94:36:10:e3:6b:96:fe:ee:32:04:73:4d:78:d4:d7:9a:31:c1:
36:da:ac:f3:66:99:be:75:23:d1:b7:c9:16:94:7e:1c:37:41:
85:71:d9:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:01 2024 by rpki-client on console-fra.rpki-client.org