Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/bGITOcUqqrorVAe1I-GhfIN6V6g.roa
File: bGITOcUqqrorVAe1I-GhfIN6V6g.roa (raw, json)
Hash identifier: KfYfAJVvnIhXr1GSKBYXEVGY2yFbiVVi+c0CaNZXYJo=
Subject key identifier: 6C:62:13:39:C5:2A:AA:BA:2B:54:07:B5:23:E1:A1:7C:83:7A:57:A8
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 018CC7261629662C272ED9F8668E7555C156
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/bGITOcUqqrorVAe1I-GhfIN6V6g.roa
Signing time: Mon 01 Jan 2024 22:30:11 +0000
ROA not before: Mon 01 Jan 2024 22:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 14907
IP address blocks: 91.198.174.0/24 maxlen: 24
185.71.138.0/24 maxlen: 24
185.15.56.0/22 maxlen: 22
185.15.56.0/24 maxlen: 24
185.15.57.0/24 maxlen: 24
185.15.58.0/24 maxlen: 24
185.15.59.0/24 maxlen: 24
2a02:ec80:300::/48 maxlen: 48
2a02:ec80:600::/48 maxlen: 48
2a02:ec80::/29 maxlen: 29
2001:67c:930::/48 maxlen: 48
Validation: Failed, certificate revoked on Sat 27 Apr 2024 18:51:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:16:29:66:2c:27:2e:d9:f8:66:8e:75:55:c1:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: Jan 1 22:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6c621339c52aaaba2b5407b523e1a17c837a57a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:75:7b:55:e6:9e:0f:39:1a:cf:de:f6:b4:4d:
dd:f5:56:2c:16:6c:3a:44:d5:8b:81:6e:ba:ad:9d:
18:37:44:13:50:a8:fe:9b:b1:7f:c7:ef:6a:01:b0:
d7:9f:e2:4a:69:c4:18:06:df:9e:4c:77:9e:c3:bc:
4c:91:81:46:73:4d:c6:5d:6f:01:2b:16:4c:30:f4:
3b:7e:83:67:b4:87:2a:1e:26:a5:d1:d1:2a:61:ea:
24:44:dc:d4:1e:b3:9d:8c:26:57:e0:6c:06:5f:8f:
f0:07:bd:5b:c9:eb:9d:04:4c:82:f1:b8:46:42:c3:
48:55:5c:6d:39:97:7d:c0:58:76:72:e5:29:97:61:
06:3c:51:0a:98:b4:9a:6b:a0:62:d5:3e:52:b1:e0:
07:be:8e:83:c8:98:22:85:d2:dd:64:46:7b:73:a3:
66:60:70:f1:fb:1b:f5:1e:65:64:3e:4e:ff:56:37:
d5:c5:e8:12:fc:fa:3c:5f:04:ee:6f:cc:fe:0c:c0:
28:04:a5:12:16:83:8b:fc:b5:0d:25:1e:93:2e:5a:
91:06:74:d7:39:17:ab:d2:f8:c8:bb:ba:5a:9e:d0:
96:42:9e:e2:32:88:60:1f:7c:69:7f:56:df:3d:92:
55:d0:52:e7:d5:2c:4a:1a:86:90:a0:97:88:db:49:
c3:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:62:13:39:C5:2A:AA:BA:2B:54:07:B5:23:E1:A1:7C:83:7A:57:A8
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/bGITOcUqqrorVAe1I-GhfIN6V6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.174.0/24
185.15.56.0/22
185.71.138.0/24
IPv6:
2001:67c:930::/48
2a02:ec80::/29
Signature Algorithm: sha256WithRSAEncryption
1e:74:28:c6:4a:57:f5:6e:a8:76:49:cc:e4:13:d9:62:d4:f5:
bf:97:12:ee:c5:3b:e3:50:48:dc:53:cf:f3:37:69:f7:e3:9c:
c2:c8:23:e0:5b:ae:7d:19:95:bd:5d:12:1d:d2:97:e8:6f:c4:
d5:10:c1:57:dd:51:c1:43:2a:bb:f1:2b:fe:b6:1e:2c:80:79:
02:e2:88:c7:ab:34:dd:82:8a:94:4a:e5:57:3b:3a:10:1e:be:
cf:1a:30:49:ce:64:13:85:56:c5:5c:c7:79:10:cd:56:7f:16:
b0:77:a3:6f:2b:36:0a:08:49:47:f1:98:fc:b3:24:32:ca:ea:
53:5a:9b:50:73:fe:ce:bc:2b:51:a5:10:e0:c5:ac:a3:37:71:
1b:76:df:9b:42:f8:e4:a6:c7:bd:43:7f:21:0c:21:5a:87:af:
f0:61:af:52:b4:3a:83:40:8c:1a:f7:de:36:10:73:3a:ed:6d:
21:ad:a9:2f:71:dc:cc:ab:de:2a:ea:46:c7:06:89:d6:e5:45:
e9:b6:69:92:2e:68:e8:e4:84:59:38:33:0c:e8:9a:33:90:04:
b4:5b:5d:06:ed:c9:de:55:83:a6:55:58:cf:58:20:e5:f6:57:
e7:81:12:11:b5:b8:7b:c7:90:67:f9:01:20:c3:b5:89:2c:ba:
95:0d:68:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:38 2024 by rpki-client on console-fra.rpki-client.org