Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_b9PIFTINdB7TccaE62R3jjI4Uk.roa
File: _b9PIFTINdB7TccaE62R3jjI4Uk.roa (raw, json)
Hash identifier: TNGkKmCpXqN21zDpD9L2P22nNUAQuOJ66rDcQlHdTmA=
Subject key identifier: FD:BF:4F:20:54:C8:35:D0:7B:4D:C7:1A:13:AD:91:DE:38:C8:E1:49
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 01920A681ED66909BC1737DF80CFA8764015
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_b9PIFTINdB7TccaE62R3jjI4Uk.roa
Signing time: Thu 19 Sep 2024 13:10:48 +0000
ROA not before: Thu 19 Sep 2024 13:10:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 91.235.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 18 Nov 2024 10:03:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:68:1e:d6:69:09:bc:17:37:df:80:cf:a8:76:40:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Sep 19 13:10:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fdbf4f2054c835d07b4dc71a13ad91de38c8e149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:31:d2:39:89:3f:ee:e4:d3:e9:9d:68:ca:26:
2b:91:c4:85:20:89:65:ce:ce:28:97:75:f3:a7:77:
05:03:3c:1d:5b:2b:0c:b5:91:47:01:55:60:70:1a:
93:1f:b3:d5:31:7f:62:65:6e:fe:e4:59:80:cb:b4:
e5:bf:af:4d:b4:85:d2:d5:e9:35:ed:36:79:4d:22:
d6:0f:d4:19:99:17:f6:db:30:71:67:13:6d:b6:24:
63:18:40:b1:93:78:98:9f:50:20:94:09:3f:9d:e7:
3d:13:6f:45:58:cc:53:d7:b3:22:86:ee:1b:53:7a:
53:46:e3:08:83:5d:8e:ec:bf:23:2a:21:2c:0d:91:
89:57:58:54:6f:aa:ba:b4:69:bc:81:a8:5b:7b:19:
bf:fb:42:55:ba:54:b1:f3:2d:e9:5c:71:4a:2e:a3:
b7:75:bc:4a:81:4d:ae:e8:58:b0:bd:09:e4:6c:c3:
cc:cb:c1:0c:67:e7:c0:e1:bb:68:21:42:9b:a0:00:
c0:8b:ed:59:96:eb:d9:68:ef:c0:4d:a0:46:cd:5f:
ce:52:64:f5:79:5c:ba:79:b3:d8:c4:78:51:71:c6:
19:40:91:dc:14:7e:7d:72:03:e1:f8:4b:1f:6a:3c:
97:ee:44:90:87:b2:81:a1:4d:37:d2:9a:6a:61:d3:
73:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:BF:4F:20:54:C8:35:D0:7B:4D:C7:1A:13:AD:91:DE:38:C8:E1:49
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_b9PIFTINdB7TccaE62R3jjI4Uk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.235.2.0/24
Signature Algorithm: sha256WithRSAEncryption
56:43:07:31:96:da:26:36:c8:f1:3b:aa:85:9e:a1:a7:a5:f3:
f7:c2:dd:0a:a6:5a:65:16:b0:3c:22:9b:b8:70:11:53:95:fe:
fd:dd:06:c7:ea:4a:a0:db:91:8a:52:83:3b:cb:80:74:d6:a6:
37:b4:24:26:10:cc:f0:a8:b4:9b:6b:e7:e3:79:55:a5:73:3b:
61:52:35:1b:4e:75:b4:c8:7c:6f:81:4f:69:e8:62:0a:19:a2:
1c:00:b8:d8:0f:81:6a:ff:ec:17:5c:62:fc:f3:c1:a6:fe:15:
cc:79:cc:b2:0a:21:3d:06:56:05:72:0e:6d:28:3a:a1:d4:e0:
52:78:65:db:c8:64:31:c5:48:3f:c8:3d:11:f3:94:a8:ab:0a:
e3:59:7c:30:63:54:13:14:6d:a1:55:07:87:7f:3b:37:13:d6:
87:71:8f:bf:a7:05:e1:4a:9e:12:ce:43:ce:36:a9:5b:24:71:
1f:fc:3d:05:60:8d:62:89:57:36:38:ee:c5:3e:8a:fd:b8:07:
86:8d:79:2b:a5:11:60:5e:8b:73:6f:44:2a:74:8d:62:6a:6a:
17:58:ca:66:5e:c1:9b:9b:37:e0:97:d8:b8:e0:a4:ed:61:f9:
e0:81:3a:c3:65:4a:3f:c4:8d:18:7c:4b:68:43:d0:b0:61:b1:
d2:11:8e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 18 12:16:05 2024 by rpki-client on console-fra.rpki-client.org