Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/rc7F4WSvwgkMkYLgcYotZ4Rde5c.roa
File: rc7F4WSvwgkMkYLgcYotZ4Rde5c.roa (raw, json)
Hash identifier: pdOegj/BvxjTljLpYVzcOQj9x9fyuqedhRpO+VJ/FOE=
Subject key identifier: AD:CE:C5:E1:64:AF:C2:09:0C:91:82:E0:71:8A:2D:67:84:5D:7B:97
Certificate issuer: /CN=1e035ed08ad7511fbfe107db1fda85e2a100b5c6
Certificate serial: 01914BCD8F99FC913BBA28CB8E1668A1848A
Authority key identifier: 1E:03:5E:D0:8A:D7:51:1F:BF:E1:07:DB:1F:DA:85:E2:A1:00:B5:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HgNe0IrXUR-_4QfbH9qF4qEAtcY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/rc7F4WSvwgkMkYLgcYotZ4Rde5c.roa
Signing time: Tue 13 Aug 2024 12:54:08 +0000
ROA not before: Tue 13 Aug 2024 12:54:08 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51191
IP address blocks: 91.232.96.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:47:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4b:cd:8f:99:fc:91:3b:ba:28:cb:8e:16:68:a1:84:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1e035ed08ad7511fbfe107db1fda85e2a100b5c6
Validity
Not Before: Aug 13 12:54:08 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=adcec5e164afc2090c9182e0718a2d67845d7b97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b9:90:87:d6:ec:f3:54:55:d6:8d:90:88:52:
fa:77:9f:91:1f:c9:23:87:b6:01:48:87:61:20:d5:
e1:49:9a:d8:97:b9:0d:87:84:42:c1:f8:f4:ad:eb:
a2:6e:60:4d:84:46:f8:0a:d5:f1:f6:ad:65:9c:71:
c7:c0:26:7a:0b:35:e8:6c:1a:1d:78:78:59:97:59:
a2:13:e8:a9:85:b2:a6:8f:9c:79:b1:ec:56:f5:ee:
ec:92:17:97:cf:99:f9:d2:ea:17:da:79:b2:bc:51:
0c:51:61:f7:08:60:f0:46:c3:35:fe:cf:c6:0f:7a:
c9:94:fa:43:5e:17:7b:73:30:a6:5a:1e:cf:0f:36:
18:c5:2e:62:ed:63:a6:63:4e:2b:23:1b:4e:2a:c0:
d4:09:5d:4e:b8:92:36:07:d8:0c:ab:28:d4:51:51:
85:c9:4f:56:da:a8:50:c7:f1:30:0a:d1:ae:1f:54:
fd:46:37:ed:98:d0:3c:e5:16:43:fa:43:1d:9c:8e:
a7:4e:ae:de:2a:8d:80:ad:ef:10:a1:ea:2d:98:a8:
a9:bb:2f:af:33:b6:bf:d9:0e:7a:3c:3a:34:7d:b1:
e9:5a:b5:fd:95:03:92:72:38:a3:48:b1:34:05:9c:
e1:5b:6d:25:6a:d0:5b:c4:91:47:d5:8c:b1:19:2d:
ef:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:CE:C5:E1:64:AF:C2:09:0C:91:82:E0:71:8A:2D:67:84:5D:7B:97
X509v3 Authority Key Identifier:
keyid:1E:03:5E:D0:8A:D7:51:1F:BF:E1:07:DB:1F:DA:85:E2:A1:00:B5:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HgNe0IrXUR-_4QfbH9qF4qEAtcY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/rc7F4WSvwgkMkYLgcYotZ4Rde5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/6fbb99-d1f3-473e-9530-fe7dacc1c409/1/HgNe0IrXUR-_4QfbH9qF4qEAtcY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.232.96.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:61:f4:c6:73:2f:5a:80:ad:84:1e:c1:e5:c9:ba:a8:ce:94:
db:94:67:16:99:f1:81:b4:10:6b:d1:c7:4b:d3:0f:ff:b8:9b:
bb:1f:3a:f7:a8:86:4f:2b:10:f4:bf:ae:7f:82:81:52:bc:79:
55:70:6e:86:e4:b0:f9:fe:39:49:7b:e1:45:18:1f:18:1f:ee:
fb:4b:36:05:1b:96:46:ca:b4:96:6f:60:21:37:ca:ef:c8:73:
40:38:fd:b3:bf:d2:46:1e:9f:99:35:b0:fb:22:8b:f4:81:eb:
23:db:8a:7b:95:ea:2d:b5:14:93:d2:85:55:b9:b6:ea:f7:72:
ff:d9:eb:b3:a9:44:aa:22:97:d3:18:b9:55:fb:19:77:f8:26:
1d:78:ca:de:90:1a:df:47:4f:22:d6:a3:de:75:7f:e4:26:a1:
6f:8c:f8:aa:13:e0:07:fd:34:7f:1b:3d:05:22:07:ec:78:cd:
b0:29:4a:f1:20:e4:08:c5:d9:ec:20:87:02:b6:5b:26:ac:3e:
c4:27:1e:fa:18:68:35:88:d9:f3:05:a5:33:1e:ab:1a:05:f6:
9b:44:f2:5f:3a:f5:24:71:10:f7:ec:b0:e8:22:56:c5:fe:5e:
ca:88:1d:4f:1c:53:d2:a2:b9:3c:48:75:86:43:de:6a:d1:7d:
62:2d:02:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 00:06:22 2025 by rpki-client