Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/65d3a4-5ccc-4037-a8f8-0a32711665ad/1/mTS5OGDtLgL_xUlQ3wiO-tI0b0A.roa
File: mTS5OGDtLgL_xUlQ3wiO-tI0b0A.roa (raw, json)
Hash identifier: q6/l8Brek+4M+cLBHYnACTlLdbeTiDQHjzTwJSxPRwo=
Subject key identifier: 99:34:B9:38:60:ED:2E:02:FF:C5:49:50:DF:08:8E:FA:D2:34:6F:40
Certificate issuer: /CN=745dba56cf1ffc2cfc1d05f4fa833117efd7c78a
Certificate serial: 018D8CF9AE77BD2DF7E8F37C0E9FBFCA1C03
Authority key identifier: 74:5D:BA:56:CF:1F:FC:2C:FC:1D:05:F4:FA:83:31:17:EF:D7:C7:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dF26Vs8f_Cz8HQX0-oMxF-_Xx4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/65d3a4-5ccc-4037-a8f8-0a32711665ad/1/mTS5OGDtLgL_xUlQ3wiO-tI0b0A.roa
Signing time: Fri 09 Feb 2024 08:26:29 +0000
ROA not before: Fri 09 Feb 2024 08:26:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8075
IP address blocks: 91.242.222.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 12 Feb 2024 12:40:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:8c:f9:ae:77:bd:2d:f7:e8:f3:7c:0e:9f:bf:ca:1c:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=745dba56cf1ffc2cfc1d05f4fa833117efd7c78a
Validity
Not Before: Feb 9 08:26:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9934b93860ed2e02ffc54950df088efad2346f40
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:f9:78:5c:89:b8:45:7b:fc:6d:6e:55:ff:21:
dc:24:40:aa:2e:36:71:e7:0d:ea:79:e6:30:0c:44:
93:24:09:58:75:87:57:01:f8:b5:ce:5e:ae:39:37:
03:80:50:51:0a:7d:73:f6:42:53:b0:53:c9:55:5a:
11:d1:b5:9f:98:3f:79:f6:98:9b:ee:4c:e4:38:4b:
44:d1:ec:d0:ec:37:0e:03:88:55:9c:35:2f:d1:60:
65:5f:27:d5:ae:db:02:c1:2a:2f:a4:24:a0:9c:de:
1a:46:a3:0a:10:38:ca:4e:84:3f:d0:0c:0e:ac:32:
6c:6f:b9:65:4a:8a:a1:98:bf:69:5b:8e:1b:75:2f:
b8:f4:b0:7c:ba:ba:21:5f:bc:79:da:54:55:58:0a:
a9:0a:93:38:6f:7e:ca:50:b7:66:c1:21:f3:b7:7c:
3e:e1:46:9c:a4:6e:e9:ed:11:85:48:ba:b7:de:50:
43:a5:bd:6f:1b:eb:88:c8:54:9f:06:26:89:0f:7c:
07:94:8a:2e:cd:0a:5d:dd:b8:f7:1c:3e:23:cc:aa:
32:87:7b:da:d2:8b:94:83:02:56:cf:7e:bb:12:f5:
28:a0:5f:4c:78:44:75:d1:b4:ca:33:c7:b7:0c:69:
85:01:21:46:b6:01:fa:da:49:af:f4:df:56:a0:69:
79:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:34:B9:38:60:ED:2E:02:FF:C5:49:50:DF:08:8E:FA:D2:34:6F:40
X509v3 Authority Key Identifier:
keyid:74:5D:BA:56:CF:1F:FC:2C:FC:1D:05:F4:FA:83:31:17:EF:D7:C7:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dF26Vs8f_Cz8HQX0-oMxF-_Xx4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/65d3a4-5ccc-4037-a8f8-0a32711665ad/1/mTS5OGDtLgL_xUlQ3wiO-tI0b0A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/65d3a4-5ccc-4037-a8f8-0a32711665ad/1/dF26Vs8f_Cz8HQX0-oMxF-_Xx4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.242.222.0/24
Signature Algorithm: sha256WithRSAEncryption
84:37:35:09:8e:08:b4:b9:1e:3f:89:38:42:7c:77:23:91:95:
cd:01:95:95:54:2d:73:9e:6f:91:90:17:6f:d9:1f:83:9f:18:
15:96:ca:2d:6e:17:70:48:eb:82:35:eb:d7:f2:1f:f2:42:3f:
ba:83:4e:95:10:f2:1a:05:08:b1:a2:ca:38:6f:ff:81:02:22:
6d:8b:57:ae:79:2f:19:81:3a:15:69:61:c8:5a:78:4e:74:48:
fc:38:4d:18:43:8e:c3:97:b7:45:7d:ff:44:64:64:6a:fa:34:
eb:76:4b:6c:79:d6:af:71:b4:6d:9c:74:52:8d:c6:5f:97:73:
59:e6:62:bd:0a:e8:0d:09:68:72:ac:94:bf:e0:d9:fd:b9:55:
f9:12:99:c4:43:67:02:34:d3:00:51:ef:70:b6:78:41:f8:09:
78:d7:5b:33:03:04:e4:5b:59:2c:31:da:c4:ce:72:bd:f0:44:
d3:44:91:46:a8:54:3b:91:4d:59:29:97:8a:36:33:c5:38:15:
a8:3b:b7:10:3b:8d:51:c1:8d:37:aa:d9:86:68:63:22:a6:d3:
b7:6e:87:81:e8:36:33:0e:68:d0:c3:5c:6a:91:c3:1d:fd:0a:
ad:e5:5c:86:ba:fa:b9:ab:28:b1:66:c1:61:c5:74:1e:97:c5:
98:a7:95:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:13 2024 by rpki-client on console-fra.rpki-client.org