Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/tPJj9eUZiTPQXTrHpRe3QWI3Npo.roa
File: tPJj9eUZiTPQXTrHpRe3QWI3Npo.roa (raw, json)
Hash identifier: H96tsscowT7SmwVrnXfwTiDo4z1/7lPfh6eK6icSUjg=
Subject key identifier: B4:F2:63:F5:E5:19:89:33:D0:5D:3A:C7:A5:17:B7:41:62:37:36:9A
Certificate issuer: /CN=47bf2ffeda381e54818df07052cf67e222515f89
Certificate serial: 018CC56ED9771E36FEE92FFBE08C833980F7
Authority key identifier: 47:BF:2F:FE:DA:38:1E:54:81:8D:F0:70:52:CF:67:E2:22:51:5F:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/R78v_to4HlSBjfBwUs9n4iJRX4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/tPJj9eUZiTPQXTrHpRe3QWI3Npo.roa
Signing time: Mon 01 Jan 2024 14:30:25 +0000
ROA not before: Mon 01 Jan 2024 14:30:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24819
IP address blocks: 193.111.104.0/22 maxlen: 22
91.216.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 22 Oct 2024 09:08:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:d9:77:1e:36:fe:e9:2f:fb:e0:8c:83:39:80:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=47bf2ffeda381e54818df07052cf67e222515f89
Validity
Not Before: Jan 1 14:30:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4f263f5e5198933d05d3ac7a517b7416237369a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:87:f9:82:b2:b8:82:21:07:85:d6:ef:ac:20:
9e:5f:52:5e:af:3a:41:04:81:91:f8:32:2f:8f:25:
57:71:72:51:a0:dd:de:ef:bc:6d:4e:7c:cd:f1:15:
02:40:40:2a:06:21:4b:f2:79:d2:86:17:9b:94:56:
7b:33:73:2b:5b:c1:69:8a:2d:c1:89:81:98:18:66:
d7:e7:a6:5d:22:05:6d:3f:b0:0b:b8:10:11:ed:52:
8e:15:78:14:d5:12:1e:5c:e9:82:25:ce:84:1b:45:
ae:3c:af:ea:b7:d4:db:f8:09:d5:f2:d5:57:8e:9f:
3d:26:fb:1b:92:e9:41:96:df:42:5c:f5:c6:97:61:
7c:86:bf:d7:45:7e:e3:b6:2e:9c:07:e6:df:80:44:
c1:43:df:e0:9d:1d:02:74:68:67:af:76:ba:25:d4:
79:11:1e:92:3a:fc:f9:ff:09:c5:f4:53:31:ca:78:
fd:43:23:f1:fe:58:98:8e:5c:17:4a:a2:35:71:92:
d5:c9:7b:7c:9a:43:68:fe:6e:61:46:7a:20:19:83:
8f:50:8f:99:6b:c0:2e:d9:4d:9d:d5:70:8b:18:bf:
cb:f5:51:17:4b:28:bc:a5:08:b2:e9:aa:d0:00:80:
ca:7a:1c:f3:f6:9d:d0:6b:2e:a5:30:e0:72:ae:f0:
4d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F2:63:F5:E5:19:89:33:D0:5D:3A:C7:A5:17:B7:41:62:37:36:9A
X509v3 Authority Key Identifier:
keyid:47:BF:2F:FE:DA:38:1E:54:81:8D:F0:70:52:CF:67:E2:22:51:5F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/R78v_to4HlSBjfBwUs9n4iJRX4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/tPJj9eUZiTPQXTrHpRe3QWI3Npo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/246d03-e090-4325-82f1-0bd095da78ef/1/R78v_to4HlSBjfBwUs9n4iJRX4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.216.7.0/24
193.111.104.0/22
Signature Algorithm: sha256WithRSAEncryption
c7:df:1a:56:f5:96:06:1a:79:60:be:28:7e:08:e8:a4:cf:fb:
49:ca:20:2e:dc:70:59:7c:49:13:44:c3:60:4a:45:62:96:75:
10:fe:fe:cf:c4:38:6f:f5:b8:01:a3:8f:12:14:fc:2a:eb:52:
39:f9:8d:81:1c:b7:bc:2e:0a:de:73:96:b3:b8:d5:12:5f:6e:
71:be:dd:d4:86:eb:af:d7:bb:a7:12:e5:cb:e5:34:3a:9d:15:
74:a1:72:6d:71:3d:10:1d:80:55:9f:05:7f:e2:0f:6e:65:87:
44:28:78:eb:bb:c4:b0:e0:19:50:d4:60:29:b0:ac:71:96:a0:
d8:49:d9:b7:7f:71:ae:88:d8:ef:7a:58:96:4f:6e:ba:85:77:
f2:c8:8b:64:0f:72:0d:88:2f:2d:90:a3:1e:73:b0:7a:f7:09:
bc:1c:01:ce:77:4c:14:33:98:79:86:a7:a4:d7:62:49:e4:a5:
bd:5a:81:0c:87:0a:0d:20:16:95:ac:ae:63:e9:81:2f:7e:91:
0c:e1:88:a9:aa:d4:34:a3:00:d6:7d:be:28:2e:50:6d:b7:d6:
24:cd:7e:33:58:07:b3:a5:20:a8:50:b8:79:52:72:3b:35:a8:
aa:c9:9b:f8:c2:1d:5d:3a:29:bf:6b:39:7c:75:08:03:56:62:
01:14:37:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 22 11:00:17 2024 by rpki-client on console-ams.rpki-client.org