Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/Wj9jNToi2n6dT66lA2BhHMAPaR8.roa
File: Wj9jNToi2n6dT66lA2BhHMAPaR8.roa (raw, json)
Hash identifier: rzdMWWuZWXi/47MbYaOKvRR4EV/V6awqrj6lrSwWj1U=
Subject key identifier: 5A:3F:63:35:3A:22:DA:7E:9D:4F:AE:A5:03:60:61:1C:C0:0F:69:1F
Certificate issuer: /CN=70cb96543f7e195723e6d122c29478bfdda03ecc
Certificate serial: 01856F8B6B58F38A385C9C9F35E9D1AD6AD4
Authority key identifier: 70:CB:96:54:3F:7E:19:57:23:E6:D1:22:C2:94:78:BF:DD:A0:3E:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cMuWVD9-GVcj5tEiwpR4v92gPsw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/Wj9jNToi2n6dT66lA2BhHMAPaR8.roa
Signing time: Sun 01 Jan 2023 22:54:45 +0000
ROA not before: Sun 01 Jan 2023 22:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197395
IP address blocks: 91.239.186.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8b:6b:58:f3:8a:38:5c:9c:9f:35:e9:d1:ad:6a:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70cb96543f7e195723e6d122c29478bfdda03ecc
Validity
Not Before: Jan 1 22:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5a3f63353a22da7e9d4faea50360611cc00f691f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:34:1e:c0:b7:a7:ea:38:9f:3d:fb:b8:79:69:
53:6f:7a:b1:7f:bb:cd:e6:f0:88:9c:07:74:82:e6:
63:4e:aa:69:44:2a:aa:06:90:d4:ae:39:e2:6b:33:
e5:09:2f:33:7d:7c:f8:99:f1:ff:a5:3e:eb:87:87:
f9:6a:d8:24:cf:6a:0e:48:ff:ec:cb:9e:33:07:ab:
f2:cf:45:82:37:63:99:be:a9:ef:46:a9:11:04:d1:
31:d9:17:6f:c6:f6:e8:7d:c0:86:65:14:aa:f7:25:
5c:22:b4:56:e7:08:50:7b:e0:07:ca:0a:16:74:5c:
2e:63:a6:be:e4:2a:25:26:cb:10:d4:a6:64:b6:59:
71:27:32:32:5b:dd:03:ad:6d:78:f5:39:e1:76:89:
69:64:2f:e3:c2:09:91:45:73:a6:c8:4a:26:28:6a:
41:1e:f9:0a:46:07:d4:ae:55:79:36:15:59:84:6c:
7a:e1:b3:9e:5d:56:4d:d3:ca:e1:a3:a0:d7:9f:d9:
5c:13:c3:f3:43:0a:ba:b8:81:28:0d:65:3f:b7:bc:
17:65:f3:63:82:e2:08:e9:5a:d3:2d:5f:f2:7f:94:
c1:4e:6e:19:84:99:5d:5e:21:c0:04:e2:41:97:53:
44:89:87:3c:9f:e7:19:17:04:52:3d:18:b9:a9:78:
fd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:3F:63:35:3A:22:DA:7E:9D:4F:AE:A5:03:60:61:1C:C0:0F:69:1F
X509v3 Authority Key Identifier:
keyid:70:CB:96:54:3F:7E:19:57:23:E6:D1:22:C2:94:78:BF:DD:A0:3E:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cMuWVD9-GVcj5tEiwpR4v92gPsw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/Wj9jNToi2n6dT66lA2BhHMAPaR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b7e4ac-8508-4d6b-a2bc-274cd6caa3f3/1/cMuWVD9-GVcj5tEiwpR4v92gPsw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.239.186.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:a3:70:72:67:1a:5c:07:92:ae:e9:6d:ed:89:0c:da:b3:cf:
e3:04:44:65:b0:a3:38:1d:fd:7c:58:e4:87:5b:36:26:6b:93:
77:a1:e1:cd:8b:41:5b:2a:a2:e2:21:93:dc:32:85:65:b3:42:
45:c9:00:6a:57:95:90:7b:b9:c2:08:ea:98:98:3f:b0:6b:66:
83:82:f4:67:77:e8:ac:8f:2f:ff:69:e7:50:46:83:3d:b7:ce:
e1:b9:88:f6:ba:84:f5:d2:92:28:ac:4f:d4:bd:62:b9:b7:aa:
06:0f:57:0a:90:b8:6f:6d:5d:df:75:be:08:0e:05:9b:62:8b:
de:91:96:9e:7d:03:4f:a2:a7:59:53:8c:73:cd:f9:ee:93:97:
3d:cd:a0:d8:1f:78:a4:d2:0a:97:17:0d:d8:73:9d:d8:02:14:
20:13:60:14:05:74:3e:c7:74:27:14:d0:4e:24:28:92:45:eb:
c5:65:b3:bc:ec:3a:f8:ec:ba:fb:3f:ca:87:4d:ad:df:f0:74:
4f:0e:be:7e:a4:b6:9b:bd:6b:01:34:03:73:91:4d:ee:1b:ae:
3a:74:ab:35:b5:e3:e6:7e:c9:e8:fe:48:3e:58:80:1c:ee:1e:
50:e4:d6:b1:b3:a0:b7:99:4a:fd:10:7e:8b:98:e2:42:4e:03:
7d:84:9c:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:21 2024 by rpki-client on console-fra.rpki-client.org