Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/91tWn4zzGF_3szoZSajZVppYeT4.roa
File: 91tWn4zzGF_3szoZSajZVppYeT4.roa (raw, json)
Hash identifier: pipSfSQdWXpHAnAL0kUeBuCf0H4u2LOFgqS8QYSas+E=
Subject key identifier: F7:5B:56:9F:8C:F3:18:5F:F7:B3:3A:19:49:A8:D9:56:9A:58:79:3E
Certificate issuer: /CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Certificate serial: 0194D62834A1462EEC8173D076BB91A01E8B
Authority key identifier: 09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/91tWn4zzGF_3szoZSajZVppYeT4.roa
Signing time: Wed 05 Feb 2025 12:49:06 +0000
ROA not before: Wed 05 Feb 2025 12:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44051
IP address blocks: 213.232.116.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 05 Feb 2025 15:46:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:d6:28:34:a1:46:2e:ec:81:73:d0:76:bb:91:a0:1e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=093353c1fabe896af8b85fe7600e4634968fcc4c
Validity
Not Before: Feb 5 12:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f75b569f8cf3185ff7b33a1949a8d9569a58793e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:71:c6:82:f4:66:d7:53:35:1a:7d:05:d9:5f:
7a:68:7e:aa:e6:fd:7b:b0:6b:31:3f:35:45:04:35:
0f:64:33:e6:c3:d3:88:1b:14:c9:42:da:fb:f1:97:
c1:65:ad:5a:04:a5:d2:10:54:2c:0b:91:4b:18:f1:
3e:54:e4:a2:4b:d9:0f:8d:02:f5:ea:ef:55:ac:c0:
fc:3d:c2:05:ca:db:13:23:39:18:f6:69:b0:9f:a6:
1d:45:e1:6c:70:06:88:de:7a:02:e7:e9:52:c0:3c:
48:87:54:92:02:bd:57:36:a7:79:ba:44:12:15:86:
e6:e4:eb:6f:cb:01:43:71:a5:bb:e9:5b:10:89:33:
64:56:c1:b6:1d:03:67:dd:0a:5a:cb:c0:76:81:7f:
98:24:b5:26:5a:ef:01:31:7a:6b:69:51:ce:f2:0c:
d8:65:47:23:01:10:b4:e5:14:ab:d8:09:2c:49:5c:
46:65:63:5b:4e:78:54:f8:34:dd:6e:df:01:3a:20:
4e:99:f5:99:2f:ae:6a:9f:8c:c5:65:c7:34:96:b5:
47:8d:88:58:a3:b3:90:ad:7e:66:bb:9a:cb:a0:29:
8c:bc:d9:5d:a2:c3:e1:6f:35:ea:80:5a:f8:92:a2:
17:bf:56:b0:52:e6:67:7b:8e:25:09:83:b5:85:f9:
ae:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:5B:56:9F:8C:F3:18:5F:F7:B3:3A:19:49:A8:D9:56:9A:58:79:3E
X509v3 Authority Key Identifier:
keyid:09:33:53:C1:FA:BE:89:6A:F8:B8:5F:E7:60:0E:46:34:96:8F:CC:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CTNTwfq-iWr4uF_nYA5GNJaPzEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/91tWn4zzGF_3szoZSajZVppYeT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/7b9336-e9f8-4e27-af4b-239d2fe398b1/1/CTNTwfq-iWr4uF_nYA5GNJaPzEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.232.116.0/22
Signature Algorithm: sha256WithRSAEncryption
91:d2:c1:df:2b:f0:9b:af:95:31:42:fa:e5:c3:32:e6:90:c0:
84:e3:4b:c6:54:9d:c4:d4:c0:d7:6e:10:da:42:51:fd:af:43:
f3:db:9f:c9:f8:7e:6d:04:a9:a8:6e:fe:c4:97:01:35:5c:e0:
f3:ec:7c:a3:f3:ca:2d:40:56:3a:9e:e2:9f:48:27:07:ea:80:
d7:bd:37:7d:8b:b2:33:aa:1c:74:fa:72:e6:d3:18:f1:d0:e3:
63:e6:4b:26:27:cb:76:a8:da:cf:13:21:d9:12:93:72:83:e3:
40:86:58:c6:2a:19:03:b9:c1:94:19:12:9e:62:56:2b:51:05:
dc:6d:35:a5:9d:15:c9:91:b5:86:eb:89:f9:73:1e:de:e0:19:
25:88:78:44:a5:50:23:32:ef:27:05:13:51:58:7b:d8:20:6f:
01:e7:a0:2d:0b:57:ba:c3:aa:c2:3f:c5:81:26:b0:86:d0:d5:
79:ad:87:b1:68:ac:ea:4d:e6:bd:41:c1:02:94:5c:e1:b5:51:
ba:e4:9a:37:c1:66:42:4e:ca:8a:7c:09:8f:35:68:5d:88:ac:
00:c6:bf:5e:00:b5:55:7f:64:50:2c:5a:61:f7:aa:60:c8:c9:
d3:c3:66:16:8d:75:5c:9f:b9:e5:e1:83:98:db:03:c2:36:e1:
ca:85:d8:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 12:39:05 2025 by rpki-client