Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/B9LxPdq2qSvCB9fHhi6Jl7-P71U.roa
File: B9LxPdq2qSvCB9fHhi6Jl7-P71U.roa (raw, json)
Hash identifier: J15FOFSOV7LARapMOggXEdm8y9D2IiaVWUSiluzSzpQ=
Subject key identifier: 07:D2:F1:3D:DA:B6:A9:2B:C2:07:D7:C7:86:2E:89:97:BF:8F:EF:55
Certificate issuer: /CN=d895bee5605630f7048b1ffb3f003b39d29e47a0
Certificate serial: 019069EDEC612405AAE9D8A4B0518BC73683
Authority key identifier: D8:95:BE:E5:60:56:30:F7:04:8B:1F:FB:3F:00:3B:39:D2:9E:47:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2JW-5WBWMPcEix_7PwA7OdKeR6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/B9LxPdq2qSvCB9fHhi6Jl7-P71U.roa
Signing time: Sun 30 Jun 2024 16:15:18 +0000
ROA not before: Sun 30 Jun 2024 16:15:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215480
IP address blocks: 91.217.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 18 Aug 2024 07:27:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:69:ed:ec:61:24:05:aa:e9:d8:a4:b0:51:8b:c7:36:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d895bee5605630f7048b1ffb3f003b39d29e47a0
Validity
Not Before: Jun 30 16:15:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07d2f13ddab6a92bc207d7c7862e8997bf8fef55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:cb:81:72:19:fe:21:71:2b:a5:77:6e:c6:9e:
55:67:04:fe:d9:1a:16:38:7a:26:4d:b8:e4:67:c2:
8f:d3:5b:e9:33:f5:ca:e2:47:22:65:4b:19:f6:e8:
ac:0b:d5:ac:e8:37:fe:13:17:94:da:a0:d5:d2:ef:
c7:65:43:be:54:c4:cc:ce:5f:f4:69:f7:e7:f9:f3:
56:02:c4:d8:93:ec:e6:d5:bf:d8:ef:91:27:0a:88:
5c:f8:1a:a8:a6:8f:dd:4e:88:bf:5a:45:8d:4a:3e:
da:84:7c:23:17:c9:8d:78:00:8e:af:7f:fb:01:d8:
92:c3:dc:b6:da:ba:fa:02:03:06:ef:9b:52:19:5a:
1c:ca:f0:f6:90:6f:05:d8:dc:fe:56:a3:b3:e5:87:
c3:2d:e9:26:6a:42:5f:4e:4e:2d:05:b6:6e:31:03:
19:3c:d9:fa:e7:39:06:d6:7d:d5:e5:3a:30:24:50:
88:85:ce:3f:28:d4:af:3f:07:e8:be:0e:c7:20:18:
e0:79:84:72:12:ef:c2:c2:be:6b:f0:5b:f3:6f:3b:
30:2c:6f:27:d7:75:50:9b:66:0e:66:87:23:e6:65:
af:26:8f:03:d0:e5:27:a2:ee:18:dd:08:c7:cd:45:
0e:96:16:4a:a9:f4:0e:aa:2b:99:17:72:25:ed:f1:
cd:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:D2:F1:3D:DA:B6:A9:2B:C2:07:D7:C7:86:2E:89:97:BF:8F:EF:55
X509v3 Authority Key Identifier:
keyid:D8:95:BE:E5:60:56:30:F7:04:8B:1F:FB:3F:00:3B:39:D2:9E:47:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2JW-5WBWMPcEix_7PwA7OdKeR6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/B9LxPdq2qSvCB9fHhi6Jl7-P71U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/e754d6-0dac-4246-9fd6-202a0980c176/1/2JW-5WBWMPcEix_7PwA7OdKeR6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.217.241.0/24
Signature Algorithm: sha256WithRSAEncryption
99:2f:cf:5e:92:e9:2f:56:85:8a:f1:b6:9b:ce:bc:d3:5b:60:
65:60:44:d0:e2:75:41:31:4d:1f:a5:ee:da:6a:2f:bf:93:2b:
fd:d8:54:14:26:01:ae:0b:6c:19:e0:b5:c9:02:4b:c5:a4:94:
ef:ff:80:51:d7:4e:da:4d:fc:df:20:2a:bf:f0:6f:37:42:a6:
6b:ce:c8:db:59:3a:f8:38:55:45:fa:24:a0:e9:38:aa:49:e7:
71:a8:80:80:89:27:ad:f1:0a:5f:1d:33:c6:40:20:96:05:d1:
cb:cd:4a:a1:3b:30:33:76:e4:04:c3:bb:2a:66:0a:f9:91:7b:
55:65:0e:3f:ec:c0:f9:c4:00:95:07:b7:88:34:68:2d:d1:de:
f7:64:ce:7e:3a:91:37:64:a3:65:0c:26:26:a2:b6:50:3c:1d:
e8:a4:1f:88:9b:f3:1c:aa:8b:d5:10:23:56:0d:47:f0:f1:86:
f4:9e:14:b8:bd:b8:5c:df:77:17:a2:76:17:11:17:4d:e0:8c:
53:95:f4:c8:6b:09:f9:dd:de:3a:dc:ee:a2:d5:7c:69:f9:67:
54:b3:28:cf:64:0c:c3:f3:cb:9f:73:7c:c6:dc:4a:f1:7f:0b:
ce:e5:87:2b:93:ff:aa:05:a4:2c:2e:94:e2:fa:56:5c:0c:9d:
8d:f8:2d:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 18 09:58:22 2024 by rpki-client on console-fra.rpki-client.org