Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6zCsbE_9crinUT1MyMcyE5PqnCk.roa
File: 6zCsbE_9crinUT1MyMcyE5PqnCk.roa (raw, json)
Hash identifier: 8+XhB8oE7y7/w12Am6Ucs7RepA1DJrAw3t6xGxgHrI4=
Subject key identifier: EB:30:AC:6C:4F:FD:72:B8:A7:51:3D:4C:C8:C7:32:13:93:EA:9C:29
Certificate issuer: /CN=c2778de2a9be9802120382e750d159e95872c2ae
Certificate serial: 018A38BF5F3962E415EEC2F8AFE71A3590B5
Authority key identifier: C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6zCsbE_9crinUT1MyMcyE5PqnCk.roa
Signing time: Sun 27 Aug 2023 20:46:20 +0000
ROA not before: Sun 27 Aug 2023 20:46:20 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9123
IP address blocks: 91.186.198.0/24 maxlen: 24
91.186.199.0/24 maxlen: 24
91.186.196.0/24 maxlen: 24
91.186.197.0/24 maxlen: 24
94.241.168.0/24 maxlen: 24
94.241.169.0/24 maxlen: 24
94.241.170.0/24 maxlen: 24
94.241.171.0/24 maxlen: 24
178.253.40.0/24 maxlen: 24
178.253.41.0/24 maxlen: 24
178.253.42.0/24 maxlen: 24
178.253.43.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 27 Aug 2023 20:52:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:38:bf:5f:39:62:e4:15:ee:c2:f8:af:e7:1a:35:90:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2778de2a9be9802120382e750d159e95872c2ae
Validity
Not Before: Aug 27 20:46:20 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=eb30ac6c4ffd72b8a7513d4cc8c7321393ea9c29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:55:f8:ea:20:ea:94:2c:a8:21:c2:61:18:eb:
49:ab:b2:0c:79:24:8a:b0:84:bd:c9:41:77:0a:50:
9e:16:6a:62:ab:a2:f1:1c:b7:61:35:b4:0d:98:df:
ab:71:6a:20:cb:45:bb:00:a0:c1:46:e1:e0:cb:52:
41:24:bb:2b:12:cf:60:c8:a0:98:5b:5e:63:20:1c:
80:81:58:bc:bd:df:3b:30:c9:10:59:d5:17:e5:ef:
35:f0:64:00:02:83:e3:39:c4:5e:0c:1b:2e:80:74:
26:be:cd:60:f1:b5:08:63:0a:13:ed:30:d0:82:ae:
03:2d:e3:4b:8d:90:90:91:55:3d:84:87:27:b3:9d:
55:98:e4:84:1c:4a:d2:ad:df:12:91:f2:10:74:7f:
32:b9:95:1c:f4:6d:23:c3:a4:94:b3:71:b4:ed:14:
48:9c:6a:1a:e2:f8:ab:bf:5c:d0:40:76:b4:09:b4:
ef:6d:03:fd:84:7f:24:a4:6b:23:d8:a5:48:9a:55:
5c:3d:39:bd:d7:fb:d0:77:35:45:38:64:92:c6:1e:
cd:6f:1c:03:78:90:30:b7:90:8e:6b:a9:03:54:72:
e7:9e:2b:cc:a1:b9:57:39:80:c6:f3:1b:e4:23:02:
c1:e6:51:46:15:c5:4c:05:bf:a8:81:cf:c5:00:13:
82:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:30:AC:6C:4F:FD:72:B8:A7:51:3D:4C:C8:C7:32:13:93:EA:9C:29
X509v3 Authority Key Identifier:
keyid:C2:77:8D:E2:A9:BE:98:02:12:03:82:E7:50:D1:59:E9:58:72:C2:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wneN4qm-mAISA4LnUNFZ6Vhywq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/6zCsbE_9crinUT1MyMcyE5PqnCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/410930-9d65-4be8-9eba-f98da54af434/1/wneN4qm-mAISA4LnUNFZ6Vhywq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.186.196.0/22
94.241.168.0/22
178.253.40.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:90:4e:fb:8e:c2:4f:30:28:be:7a:3f:1c:ee:94:3d:f7:19:
61:71:8c:bf:33:a1:85:c4:2f:6c:fa:87:3b:0d:0c:26:2b:c8:
61:f3:e9:69:5b:77:a4:83:51:b9:2c:18:d5:83:df:d6:6b:5a:
35:73:c8:df:bd:71:f7:1a:a2:54:ce:a3:af:8f:18:3f:6f:13:
44:40:8a:c1:24:3b:a3:5e:a7:dd:fc:93:e9:39:ee:cc:54:26:
3e:4b:14:76:0c:83:7b:a0:03:3f:79:ad:1f:b4:36:60:fd:c9:
f0:0f:91:80:38:f2:1e:5d:a7:02:3d:ad:68:70:06:84:ec:ce:
b7:b3:f1:2d:90:fe:62:91:aa:e4:a3:e6:15:17:d2:27:9c:5b:
7e:dd:c5:b3:70:5f:6d:6d:25:10:00:ed:3e:9f:a4:d3:12:bf:
8d:fe:c5:58:29:02:41:1d:48:7d:45:dc:10:8e:1e:b1:bf:a9:
8f:ae:45:53:2e:1a:f6:91:e1:52:40:06:02:d4:b9:11:ad:3b:
5e:30:20:e9:b2:a0:32:aa:01:e4:6a:fb:f2:f8:fb:84:6d:a2:
66:46:19:1d:7e:db:55:d6:fd:f6:21:b3:d0:e5:07:6a:7f:8d:
c9:dc:35:c2:c8:8d:ab:4e:43:ff:f5:47:2c:ed:cc:48:94:62:
2f:1e:1b:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:09 2024 by rpki-client on console-fra.rpki-client.org