Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/W3BFJ6u6u6Ho1vhC9LQ-yuwi4Fo.roa
File: W3BFJ6u6u6Ho1vhC9LQ-yuwi4Fo.roa (raw, json)
Hash identifier: Li4w05+k8Qv9dnGZgynCMXf9d2O9uGZAg7gBHjeor3I=
Subject key identifier: 5B:70:45:27:AB:BA:BB:A1:E8:D6:F8:42:F4:B4:3E:CA:EC:22:E0:5A
Certificate issuer: /CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Certificate serial: 0190CAF393856B48946165F33D24F3D10FEC
Authority key identifier: 72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/W3BFJ6u6u6Ho1vhC9LQ-yuwi4Fo.roa
Signing time: Fri 19 Jul 2024 12:24:38 +0000
ROA not before: Fri 19 Jul 2024 12:24:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197579
IP address blocks: 91.223.113.0/24 maxlen: 24
185.92.232.0/22 maxlen: 22
2001:67c:21f4::/48 maxlen: 48
2a13:6b40::/29 maxlen: 29
Validation: Failed, certificate revoked on Sat 20 Jul 2024 16:33:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:ca:f3:93:85:6b:48:94:61:65:f3:3d:24:f3:d1:0f:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7299ce64a0f1624d7bb2d2969e5c11adbaa5485c
Validity
Not Before: Jul 19 12:24:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5b704527abbabba1e8d6f842f4b43ecaec22e05a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6d:fd:36:f2:f3:2b:b2:b9:64:9d:e2:c6:ab:
93:3c:82:c6:49:30:31:6c:39:5f:81:48:58:3b:95:
c1:3b:1e:db:d5:35:fa:ae:4f:2e:74:07:24:bf:87:
a5:64:26:89:5c:79:6c:fc:ea:f2:3c:d6:77:aa:ce:
01:ee:af:62:7c:68:3e:af:06:f1:5f:fe:82:44:6b:
2b:bb:74:66:d4:89:e7:26:cc:30:8c:77:53:66:b2:
f3:1f:f8:b5:31:3d:67:40:d1:3b:c9:0b:99:7b:b6:
0a:93:22:83:80:60:95:3b:c5:23:0e:c8:a0:63:65:
8a:02:a8:36:8d:ed:a1:65:94:85:7c:44:b6:99:6e:
7f:d6:2f:73:44:1c:0c:96:7c:99:fb:1e:e2:1c:47:
b9:b3:9d:60:31:c1:20:7c:be:0a:46:1a:4d:88:65:
3a:50:a5:bc:8f:10:d6:70:c5:bf:4e:6a:10:cd:db:
56:25:8f:5a:a9:fb:68:f7:db:4d:bf:12:05:a2:b5:
9f:36:fe:74:d9:1e:39:df:0b:c9:5a:bf:43:10:ef:
6b:e5:19:b3:09:ab:06:f0:45:6b:6d:05:dc:01:ce:
ce:99:34:ef:af:0b:a5:cf:07:0f:a9:ea:1c:0f:f0:
97:e3:ce:4d:6e:c5:6d:ce:8e:48:1e:5c:1e:2a:d4:
0d:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:70:45:27:AB:BA:BB:A1:E8:D6:F8:42:F4:B4:3E:CA:EC:22:E0:5A
X509v3 Authority Key Identifier:
keyid:72:99:CE:64:A0:F1:62:4D:7B:B2:D2:96:9E:5C:11:AD:BA:A5:48:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cpnOZKDxYk17stKWnlwRrbqlSFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/W3BFJ6u6u6Ho1vhC9LQ-yuwi4Fo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/c20fba-5b67-438c-ab00-c7eb34e2dca6/1/cpnOZKDxYk17stKWnlwRrbqlSFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.223.113.0/24
185.92.232.0/22
IPv6:
2001:67c:21f4::/48
2a13:6b40::/29
Signature Algorithm: sha256WithRSAEncryption
6d:3e:0e:ce:c4:2c:c8:87:0c:32:0f:b0:34:0b:91:11:21:09:
af:5d:2f:e3:e1:24:3e:37:2d:a3:8e:4a:c1:40:83:e6:bc:f0:
73:60:c7:2a:07:43:26:34:10:42:41:5b:7a:b5:62:a2:d4:9d:
5d:23:b3:d5:91:79:64:32:f1:1e:d6:7f:d2:72:1c:14:68:ef:
a8:bb:f0:af:e4:e2:79:68:9a:91:e2:b9:d8:e5:62:0d:75:d2:
11:3e:2a:be:c2:0b:3e:dd:a4:17:b9:5d:90:b5:e6:0c:52:6e:
ac:67:74:73:27:4f:ac:c0:d7:08:d5:0f:13:f6:df:84:89:84:
9b:8d:3f:37:3a:e7:0c:fe:e1:7e:5e:c6:20:4d:5e:35:d8:d1:
ef:a2:15:56:8e:78:6a:56:9c:1f:e9:b4:cb:32:0d:0e:0d:62:
ea:28:53:11:23:cb:bf:11:ae:0f:ae:4e:3f:84:1c:f4:04:ea:
51:bf:3a:c2:62:3b:4b:c3:41:f9:ed:32:1a:56:3f:96:c2:85:
8f:b0:af:c4:a8:48:33:2c:ed:5d:08:2e:1d:43:c6:de:0c:19:
c8:19:2e:e8:ea:9a:c1:9f:15:6a:8d:2e:97:71:77:20:c9:72:
e0:15:55:93:d1:3b:63:96:35:2a:5c:84:93:11:90:e2:08:65:
52:95:57:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 02:48:12 2025 by rpki-client