Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/drqXuTMXyLlHJ1plwdf0YdPrqe0.roa
File: drqXuTMXyLlHJ1plwdf0YdPrqe0.roa (raw, json)
Hash identifier: vkuHeQziGDm5jbhKvsgtKwWmG6UOhbpxPE3axXzU59Q=
Subject key identifier: 76:BA:97:B9:33:17:C8:B9:47:27:5A:65:C1:D7:F4:61:D3:EB:A9:ED
Certificate issuer: /CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Certificate serial: 0191E0F9334713AC6C8358C8F68509A5C2A4
Authority key identifier: F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/drqXuTMXyLlHJ1plwdf0YdPrqe0.roa
Signing time: Wed 11 Sep 2024 12:05:13 +0000
ROA not before: Wed 11 Sep 2024 12:05:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50436
IP address blocks: 92.206.254.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 07 Oct 2024 09:52:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e0:f9:33:47:13:ac:6c:83:58:c8:f6:85:09:a5:c2:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4b769a53dd86352d3440f222bdf907cf09c2dba
Validity
Not Before: Sep 11 12:05:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=76ba97b93317c8b947275a65c1d7f461d3eba9ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:01:92:5b:99:7d:35:bd:0b:76:25:5a:eb:12:
88:a6:76:45:e3:38:29:f8:1f:af:c3:2d:8b:75:ec:
c8:a8:09:ae:cb:87:71:87:fa:41:9a:77:fb:1e:07:
35:3b:bb:35:5b:ef:2d:27:76:83:29:fd:c3:f8:3f:
e2:89:94:1a:75:70:91:ce:e9:e4:f9:a1:45:e1:37:
32:9b:34:71:05:fd:df:a7:db:9f:c1:f7:f6:4e:de:
b1:26:e7:db:be:9a:4e:9c:77:90:19:33:e1:4b:e3:
65:67:11:5e:55:4e:d1:00:ec:31:7b:73:1e:4a:26:
57:06:58:86:a3:67:a9:b0:d4:34:0c:84:0f:bd:a3:
6d:1c:af:1c:cb:d2:a7:38:f9:b5:e6:7a:86:45:2d:
3c:db:dc:6f:56:de:8b:a1:56:4f:89:24:ee:ce:4d:
55:a7:0c:93:b5:3e:ce:fc:fe:2b:29:c6:36:c0:fc:
ee:18:61:33:13:57:76:88:0a:01:26:af:51:40:65:
30:cb:c6:9c:f6:dd:33:75:26:9c:ea:67:c6:b3:fe:
cd:6e:43:5e:db:0e:57:b2:25:16:8f:4b:b6:04:17:
3c:91:00:e7:04:41:4e:ec:c1:10:96:75:4f:01:e2:
ca:35:94:c4:70:6e:b2:94:47:01:39:67:73:b8:47:
0c:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:BA:97:B9:33:17:C8:B9:47:27:5A:65:C1:D7:F4:61:D3:EB:A9:ED
X509v3 Authority Key Identifier:
keyid:F4:B7:69:A5:3D:D8:63:52:D3:44:0F:22:2B:DF:90:7C:F0:9C:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9LdppT3YY1LTRA8iK9-QfPCcLbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/drqXuTMXyLlHJ1plwdf0YdPrqe0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/70d50f-ff3c-4f63-8dec-d7c36c27c087/1/9LdppT3YY1LTRA8iK9-QfPCcLbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.206.254.0/23
Signature Algorithm: sha256WithRSAEncryption
3c:b2:9b:a5:a1:9f:b1:92:3c:63:ad:9b:b6:fe:36:54:ac:5d:
c2:3f:4d:98:9a:3a:1a:2a:e1:be:39:d7:c1:79:76:2c:94:da:
13:73:14:db:aa:17:3f:93:ef:9b:1d:42:4a:8a:b5:c5:eb:77:
dd:f4:7f:30:f1:f1:2c:8c:9b:e4:83:23:06:fd:08:bf:36:b9:
3e:a3:bb:e5:11:3a:d6:53:32:c1:e1:f9:2d:02:34:f2:16:f4:
0c:fa:7c:2d:f7:f3:5b:61:c0:aa:3e:33:2a:a9:cd:83:e9:0b:
ae:cf:54:8e:17:a9:50:6c:c3:09:30:ba:28:b9:1b:83:0e:4b:
71:22:d3:95:e1:c2:a0:9a:cc:c7:80:af:24:f5:c7:b7:63:42:
7c:5a:fb:35:91:cc:64:06:59:d7:fc:cd:de:4f:76:3d:e5:bd:
3b:23:3e:d7:6a:fe:46:5c:e2:70:b1:8a:10:7e:0a:4e:fa:99:
4a:a0:15:f8:0e:b6:26:75:40:21:b7:8a:43:d2:01:c5:ce:83:
ab:56:4b:be:21:b0:f9:a0:19:70:36:99:f5:d5:f7:50:40:61:
82:f2:20:3b:31:dc:87:4a:d8:10:90:47:70:61:e8:aa:88:61:
6d:b2:ff:cc:78:3b:0c:53:33:65:c4:af:9c:21:3a:98:1f:ba:
57:c7:60:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 7 13:25:52 2024 by rpki-client on console-fra.rpki-client.org