Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/tBp2RuLQPCMenha3Ag5jEYIQCvQ.roa
File: tBp2RuLQPCMenha3Ag5jEYIQCvQ.roa (raw, json)
Hash identifier: vVw6d5YNEMtjVxV/LedzVfwjag1FifJsmGt38icyQqI=
Subject key identifier: B4:1A:76:46:E2:D0:3C:23:1E:9E:16:B7:02:0E:63:11:82:10:0A:F4
Certificate issuer: /CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Certificate serial: 0191BDCEF64FECDE51D4D927BE9FAB234276
Authority key identifier: C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/tBp2RuLQPCMenha3Ag5jEYIQCvQ.roa
Signing time: Wed 04 Sep 2024 16:12:22 +0000
ROA not before: Wed 04 Sep 2024 16:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44477
IP address blocks: 91.108.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 12:24:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bd:ce:f6:4f:ec:de:51:d4:d9:27:be:9f:ab:23:42:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ee45426e12e50fe30e8ffc39e04485d8f73339
Validity
Not Before: Sep 4 16:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b41a7646e2d03c231e9e16b7020e631182100af4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:a8:50:95:e6:19:59:0c:6b:18:3c:39:b3:1c:
15:5b:3c:ca:c6:b6:4a:86:5e:35:5a:a5:2d:90:4c:
4b:f2:26:88:05:22:4c:42:e1:a9:f7:37:eb:d5:74:
9d:ad:f0:6f:ab:f3:db:90:8b:24:52:ab:7a:33:eb:
b3:92:af:c1:13:ba:26:18:6f:97:0d:59:93:d2:44:
08:fa:b2:97:52:a3:83:c3:fd:23:3c:a8:be:9b:10:
ea:26:b4:c0:3d:97:e3:15:89:b8:6e:07:c4:1e:d5:
89:38:e9:f7:45:d8:d9:d3:cf:42:e5:de:c8:74:02:
18:04:31:22:0a:34:56:42:38:d1:d5:c2:e7:22:04:
e1:17:75:0d:c1:38:ce:d4:bd:11:d6:6e:ac:c2:ca:
17:f2:15:4f:dd:6c:40:23:f2:fd:d1:c4:74:89:94:
73:92:40:fd:2b:69:79:57:33:fc:72:6d:bb:28:3f:
90:77:c9:81:b2:8e:2f:2d:e9:3c:49:29:1b:80:f0:
83:e4:5d:e6:cd:ec:26:90:51:9d:51:ec:d5:05:d0:
8d:2b:ad:ac:aa:cb:a2:5d:a8:30:53:f6:2b:b9:e8:
2a:9b:c5:56:3b:f4:f3:a8:9b:98:50:aa:92:54:4e:
bd:d3:61:d6:9d:31:a9:a9:03:62:4d:d0:37:5d:87:
5e:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1A:76:46:E2:D0:3C:23:1E:9E:16:B7:02:0E:63:11:82:10:0A:F4
X509v3 Authority Key Identifier:
keyid:C2:EE:45:42:6E:12:E5:0F:E3:0E:8F:FC:39:E0:44:85:D8:F7:33:39
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/tBp2RuLQPCMenha3Ag5jEYIQCvQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/70aa32-9607-4db7-8f1e-da75430b16f6/1/wu5FQm4S5Q_jDo_8OeBEhdj3Mzk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.108.243.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:b7:2d:06:85:1c:7d:f9:ae:68:8b:64:71:9d:0d:de:8b:cc:
01:f7:a8:bd:16:90:c9:17:a2:12:00:03:16:ec:9b:9b:30:b8:
67:33:4d:70:0a:d5:4d:86:fe:ac:80:56:3f:65:e7:fb:44:b8:
a9:cb:b6:65:66:f6:ef:8b:9a:b7:83:9a:2f:42:86:02:75:a8:
ad:9f:cd:67:92:86:4f:20:09:ad:db:f1:00:12:83:10:79:4c:
49:c2:16:38:f5:e1:e1:29:15:d9:46:4f:94:27:03:a8:0a:15:
43:b7:e6:5d:61:be:26:6d:bf:bc:0e:20:ba:de:df:5c:e2:2b:
8d:3e:6a:39:04:59:88:4f:31:94:9f:33:4f:96:95:61:7e:85:
d4:61:af:11:9f:4f:d5:ee:72:08:14:ed:9c:ac:30:9e:2e:d2:
0e:5f:5d:78:ec:77:cf:b4:34:3f:75:0d:34:24:c9:68:40:8a:
46:42:e8:fb:c7:d4:ec:a8:d9:a4:cd:86:e3:2f:93:0e:08:dd:
e0:9f:d5:fd:24:c3:7a:31:b8:c9:da:28:b8:de:0d:97:13:1d:
25:a2:97:65:a0:ab:ed:08:3e:17:39:36:08:9c:31:5a:16:3d:
47:09:73:5e:8b:98:c7:53:04:0b:0d:ea:99:ae:bc:23:c3:0d:
4b:37:3e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:23:58 2025 by rpki-client