Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/0d2344-99d7-4313-b1b6-7c4247ae5c1b/1/B00G2Z4BTq_5MHFRmwrfKpCp0q0.roa
File: B00G2Z4BTq_5MHFRmwrfKpCp0q0.roa (raw, json)
Hash identifier: G7lS/7ziht5CWUQY5uIMQeH1u1E/9R9ST5soZ2330Bk=
Subject key identifier: 07:4D:06:D9:9E:01:4E:AF:F9:30:71:51:9B:0A:DF:2A:90:A9:D2:AD
Certificate issuer: /CN=f2bc11e6ecd3a0af3ee4394dcbb7b3ef90187d30
Certificate serial: 018655F2AD24D74EE35C3C7F9012A595A192
Authority key identifier: F2:BC:11:E6:EC:D3:A0:AF:3E:E4:39:4D:CB:B7:B3:EF:90:18:7D:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8rwR5uzToK8-5DlNy7ez75AYfTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/0d2344-99d7-4313-b1b6-7c4247ae5c1b/1/B00G2Z4BTq_5MHFRmwrfKpCp0q0.roa
Signing time: Wed 15 Feb 2023 16:40:12 +0000
ROA not before: Wed 15 Feb 2023 16:40:12 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34491
IP address blocks: 91.234.21.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:29:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:55:f2:ad:24:d7:4e:e3:5c:3c:7f:90:12:a5:95:a1:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2bc11e6ecd3a0af3ee4394dcbb7b3ef90187d30
Validity
Not Before: Feb 15 16:40:12 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=074d06d99e014eaff93071519b0adf2a90a9d2ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:9b:07:ce:34:19:5f:93:cc:1d:de:f2:9a:a1:
0b:3e:0c:be:b8:f0:e2:b5:f6:74:34:ac:11:66:5f:
f0:1f:26:c8:7b:c6:61:e6:d8:6b:20:75:5c:80:71:
d3:72:7a:ae:90:4a:99:cc:70:b3:22:88:25:04:fb:
9b:94:da:6b:19:bb:38:9a:76:b1:0e:19:af:f2:31:
8d:0a:0c:1c:c7:86:5e:ed:be:02:d6:1d:2f:d5:02:
40:94:0f:a2:59:19:14:5f:56:8b:03:10:3f:3d:74:
74:f2:a2:c3:58:fd:26:6d:2c:95:28:39:04:3d:3f:
3f:53:03:f4:f1:33:41:fb:3a:77:44:78:c6:ae:d3:
9a:6c:98:7d:4b:37:b1:ab:91:d4:e6:75:7a:22:c5:
36:6e:b5:e4:18:e0:97:c8:dd:8a:ab:a9:40:89:69:
fb:a0:00:10:ec:a1:0e:ef:b0:2a:e8:fe:bf:ee:88:
46:bd:85:fd:31:1d:c9:50:95:ef:98:d3:cc:a5:72:
42:8c:0e:e8:81:02:22:7d:31:e5:f4:b7:b4:69:d3:
56:f8:20:2c:69:a4:af:b9:cc:40:0f:44:54:ec:9b:
88:86:f0:29:05:a4:03:66:97:21:a2:a0:33:06:28:
ba:50:2d:35:bf:13:b3:3d:5f:93:cc:31:85:5b:b2:
0c:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4D:06:D9:9E:01:4E:AF:F9:30:71:51:9B:0A:DF:2A:90:A9:D2:AD
X509v3 Authority Key Identifier:
keyid:F2:BC:11:E6:EC:D3:A0:AF:3E:E4:39:4D:CB:B7:B3:EF:90:18:7D:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8rwR5uzToK8-5DlNy7ez75AYfTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/0d2344-99d7-4313-b1b6-7c4247ae5c1b/1/B00G2Z4BTq_5MHFRmwrfKpCp0q0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/0d2344-99d7-4313-b1b6-7c4247ae5c1b/1/8rwR5uzToK8-5DlNy7ez75AYfTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.234.21.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:6a:54:d6:6a:a0:7d:20:cc:64:df:a0:cf:37:61:72:c5:5d:
5c:70:81:59:f0:97:8b:fc:39:8a:5a:bb:5a:17:74:05:fa:02:
cc:52:4c:03:7e:04:3e:c6:32:f7:62:8c:35:4f:ba:7c:2c:6f:
5e:f3:5a:96:1d:e2:e1:64:64:38:8a:7f:16:9b:02:2a:a6:33:
ec:d8:3c:79:1b:36:d0:67:56:e0:49:1c:7b:38:57:49:74:d9:
05:36:23:f7:e6:5e:c3:31:53:8d:1a:c9:da:ed:64:74:9e:81:
ca:00:6e:1c:27:ee:e4:b1:2f:f6:60:e1:8f:1c:dc:6a:74:f7:
83:7c:1b:be:d4:ab:dd:39:f6:2b:b4:3a:a5:10:eb:5d:2d:e2:
2d:98:1a:79:bf:f3:2f:a1:2f:40:09:4a:c8:5c:33:13:41:e7:
a8:cc:fb:2a:92:19:b0:db:7d:87:f8:40:8d:01:07:e6:68:dc:
03:ba:ad:7f:12:70:d9:ce:c2:4d:bd:2c:c7:e3:60:75:24:a5:
6c:22:46:7d:68:24:f7:64:05:45:6b:5c:13:2f:9c:4d:10:0c:
d0:be:84:23:6a:f5:55:a9:8e:8f:02:19:2b:ae:77:e2:2a:34:
af:93:d1:f8:e1:eb:4f:44:a5:3d:88:14:6d:92:df:63:55:a2:
2c:df:a9:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:42 2024 by rpki-client on console-fra.rpki-client.org