Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/uSd010I99Uco3GYISmcxGeE48qw.roa
File: uSd010I99Uco3GYISmcxGeE48qw.roa (raw, json)
Hash identifier: z50p2xHxn27kYulFsRN+86sJUom892QrkbvEPOpqs4I=
Subject key identifier: B9:27:74:D7:42:3D:F5:47:28:DC:66:08:4A:67:31:19:E1:38:F2:AC
Certificate issuer: /CN=345e6e1d66fc047e0e89ff045c2d08ca17d55ea5
Certificate serial: 018CC793D9951162EBA887F9BC88408C35B5
Authority key identifier: 34:5E:6E:1D:66:FC:04:7E:0E:89:FF:04:5C:2D:08:CA:17:D5:5E:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NF5uHWb8BH4Oif8EXC0IyhfVXqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/uSd010I99Uco3GYISmcxGeE48qw.roa
Signing time: Tue 02 Jan 2024 00:30:04 +0000
ROA not before: Tue 02 Jan 2024 00:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48609
IP address blocks: 91.209.207.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:49:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:d9:95:11:62:eb:a8:87:f9:bc:88:40:8c:35:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=345e6e1d66fc047e0e89ff045c2d08ca17d55ea5
Validity
Not Before: Jan 2 00:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b92774d7423df54728dc66084a673119e138f2ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:d9:77:78:8c:d6:39:49:24:d1:c3:86:c9:b7:
d5:49:6c:7d:ad:0f:db:82:a8:a0:73:3d:0a:82:46:
5c:f2:b2:2e:9d:c5:30:2b:13:c3:cd:cd:cf:8f:dc:
97:25:90:07:56:61:93:de:de:bb:5b:62:ff:3c:65:
56:b2:13:23:7f:39:8f:ea:90:c8:d4:cf:e4:c6:fc:
ac:be:ee:4a:45:58:30:41:f5:04:d5:e9:1b:c9:96:
53:e7:ac:e9:44:36:97:2a:e0:0d:b1:79:39:49:fe:
aa:e9:00:b0:b5:68:3f:f7:e0:94:51:8a:2b:b8:bb:
5f:11:67:dc:59:ff:4a:c7:88:bc:c0:74:b5:b9:98:
a3:69:65:df:21:53:d5:d2:c5:7b:f9:18:a5:f5:90:
e2:11:70:33:2f:30:f1:86:03:06:11:93:b7:cb:41:
91:2b:1c:8c:c5:9f:96:40:6d:31:e3:66:a5:72:a7:
b0:b6:8b:7d:ac:7b:ae:18:97:4f:95:7c:50:27:3a:
72:49:da:60:ba:13:11:84:05:90:0f:9c:e4:c1:fe:
fd:f3:5e:9e:e9:1e:54:28:c2:9a:9a:93:e3:23:a2:
b0:c4:47:37:54:80:5c:df:72:e9:82:ea:f5:1f:a1:
71:0f:64:f0:2f:1b:f9:8a:10:fc:e1:f8:fc:e6:a2:
64:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:27:74:D7:42:3D:F5:47:28:DC:66:08:4A:67:31:19:E1:38:F2:AC
X509v3 Authority Key Identifier:
keyid:34:5E:6E:1D:66:FC:04:7E:0E:89:FF:04:5C:2D:08:CA:17:D5:5E:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NF5uHWb8BH4Oif8EXC0IyhfVXqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/uSd010I99Uco3GYISmcxGeE48qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d0b18c-c256-49f5-bc17-ddd73d509e12/1/NF5uHWb8BH4Oif8EXC0IyhfVXqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.209.207.0/24
Signature Algorithm: sha256WithRSAEncryption
84:63:cd:36:f6:6e:d2:e6:5a:94:d3:39:36:f8:0f:56:9b:b5:
13:50:b6:cd:5a:db:2b:f6:42:e4:6a:5c:58:62:86:5e:43:3c:
67:4a:f0:8e:f2:b9:0d:15:00:ee:67:6a:17:ce:f6:80:8f:bf:
01:77:c1:4a:8f:83:1e:ce:c4:ee:c1:66:de:5d:5a:ac:90:0a:
38:a4:2a:98:c6:70:5a:f1:dc:8e:96:1b:23:65:e8:f9:ba:56:
e8:01:71:18:8f:59:a4:07:73:fd:aa:35:38:c6:5d:da:be:16:
84:d2:4f:0f:a8:52:fc:7d:c3:ec:3f:d6:e2:3b:d4:db:fc:bc:
cd:a6:69:b7:08:3d:a3:d2:80:10:fb:f2:cc:1d:a5:96:b7:7b:
3e:73:ba:36:d8:77:da:3e:c8:ae:c8:ad:f9:6e:b9:4f:f9:ee:
79:9f:1d:79:1a:86:ea:1c:f8:2c:27:4a:50:61:45:c6:4a:28:
71:d8:a6:f5:19:1f:4e:fa:a1:26:c8:3a:ce:8c:75:0c:d3:bd:
a2:4c:f7:cd:3d:0e:b1:77:43:68:db:5b:3f:95:bb:13:0d:1a:
72:0b:9a:b7:5a:9e:2d:75:3d:f1:8c:0e:83:fe:6f:b2:06:3b:
9f:d6:44:18:03:97:59:b3:48:27:93:99:c1:22:29:f3:2f:73:
94:18:21:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 11 05:07:53 2025 by rpki-client