Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/kIVDEoFg-rGeIvow9Qkwzgc8b7o.roa
File: kIVDEoFg-rGeIvow9Qkwzgc8b7o.roa (raw, json)
Hash identifier: CrdDy9XarT7YrpmCPG8OWmWEbdEP6kvw5cwGU1OBCV8=
Subject key identifier: 90:85:43:12:81:60:FA:B1:9E:22:FA:30:F5:09:30:CE:07:3C:6F:BA
Certificate issuer: /CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Certificate serial: 018A649BD1F2F1185104B48507D454ED99BC
Authority key identifier: A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/kIVDEoFg-rGeIvow9Qkwzgc8b7o.roa
Signing time: Tue 05 Sep 2023 09:10:47 +0000
ROA not before: Tue 05 Sep 2023 09:10:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 14907
IP address blocks: 91.198.174.0/24 maxlen: 24
185.71.138.0/24 maxlen: 24
185.15.56.0/22 maxlen: 22
185.15.56.0/24 maxlen: 24
185.15.57.0/24 maxlen: 24
185.15.58.0/24 maxlen: 24
185.15.59.0/24 maxlen: 24
2a02:ec80:300::/48 maxlen: 48
2a02:ec80:600::/48 maxlen: 48
2a02:ec80::/29 maxlen: 29
2001:67c:930::/48 maxlen: 48
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:30:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:64:9b:d1:f2:f1:18:51:04:b4:85:07:d4:54:ed:99:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a9a8e44e573c53c7192312fcc72150d2de377d6d
Validity
Not Before: Sep 5 09:10:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=908543128160fab19e22fa30f50930ce073c6fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:87:9a:d6:c3:26:74:07:58:4e:32:c1:8e:06:
61:7e:1d:be:51:7a:31:ec:30:c7:18:6a:4c:65:ee:
88:0c:ba:57:15:9c:a0:77:e9:1f:d0:b7:70:64:d7:
88:b5:c1:8c:81:c3:fe:86:3a:f4:1d:86:67:c1:ae:
2c:14:5e:a8:22:aa:56:c7:6b:e7:33:b9:00:fd:76:
d6:c3:04:5c:a2:7a:fc:68:51:03:bd:2e:64:82:06:
ec:2a:a1:dc:45:e0:4b:96:b5:8f:7e:36:82:4d:71:
b3:19:6b:50:4d:ce:bd:4e:5e:10:19:3f:94:66:d7:
1b:7a:c1:cf:f3:52:66:47:e5:f0:06:a0:95:eb:96:
1e:6f:af:ad:3b:ba:71:36:f6:e1:37:46:93:8e:b5:
f0:2d:5e:17:ba:23:1b:7a:90:fd:21:f2:6d:5c:68:
9d:16:eb:db:71:79:45:64:cd:a7:8e:85:86:90:30:
8a:8a:31:53:0f:4f:1c:1c:49:5e:ba:b5:d8:24:8d:
83:7e:f6:31:e3:42:74:89:fa:9e:21:a1:aa:e8:cb:
29:44:de:a7:8e:9c:e2:83:01:99:ab:df:f4:f7:b6:
39:04:1c:a9:16:9e:c1:1e:b4:71:28:c1:f0:8e:e7:
90:59:86:a5:d6:15:f9:d0:68:6d:f0:64:77:80:fc:
19:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:85:43:12:81:60:FA:B1:9E:22:FA:30:F5:09:30:CE:07:3C:6F:BA
X509v3 Authority Key Identifier:
keyid:A9:A8:E4:4E:57:3C:53:C7:19:23:12:FC:C7:21:50:D2:DE:37:7D:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qajkTlc8U8cZIxL8xyFQ0t43fW0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/kIVDEoFg-rGeIvow9Qkwzgc8b7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/452dd5-d0e4-4d4b-8ae6-1951345cea33/1/qajkTlc8U8cZIxL8xyFQ0t43fW0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.198.174.0/24
185.15.56.0/22
185.71.138.0/24
IPv6:
2001:67c:930::/48
2a02:ec80::/29
Signature Algorithm: sha256WithRSAEncryption
90:64:28:50:32:5a:23:0e:4a:cc:7f:65:64:ea:67:79:54:0a:
2f:b4:94:71:79:40:40:8c:3e:11:fe:8d:63:20:0a:c2:95:1a:
1f:3d:fb:97:7b:8e:b0:78:3b:4e:d3:b2:47:67:59:df:9f:41:
92:6a:e6:48:5a:66:c4:42:6f:1a:11:3d:01:a9:c3:18:e3:93:
53:92:1e:4b:f0:99:d6:6f:3a:09:38:88:c3:ae:9d:cd:0a:1b:
33:b7:fb:98:08:65:c7:f1:6f:91:02:ec:04:56:ec:cd:67:dc:
37:0c:a3:82:ec:bf:98:4e:a4:a2:7f:32:ac:7a:12:75:35:8f:
79:ee:d5:26:dd:63:48:3c:5a:cf:4c:35:7a:41:c4:aa:06:6b:
27:a1:0c:b6:d2:ba:ff:8e:80:a5:fd:3a:dc:c6:fc:e7:bc:f9:
5c:2b:a0:22:be:3e:9f:68:e3:52:90:20:45:27:e3:2d:46:86:
cf:a1:2d:7d:d9:09:fd:a2:65:3e:41:e2:04:51:f7:cf:55:65:
8c:a3:c2:c3:fb:92:0a:89:61:5b:a2:ab:4c:14:d0:f2:5c:5f:
c2:0c:d2:d8:ea:a9:77:8e:84:0f:2f:de:a1:fa:8a:0f:4b:94:
76:e9:fe:22:09:99:f6:61:26:71:88:41:15:9e:70:76:48:a4:
ac:82:bf:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:38 2024 by rpki-client on console-fra.rpki-client.org