Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/w9ttR-Z6AK6Ms2Of2cw2GJ4qSyw.roa
File: w9ttR-Z6AK6Ms2Of2cw2GJ4qSyw.roa (raw, json)
Hash identifier: aXSMTgZ4KR8X+fciM5+ovf9RrAsmYZkkRNVj1g3ZwVs=
Subject key identifier: C3:DB:6D:47:E6:7A:00:AE:8C:B3:63:9F:D9:CC:36:18:9E:2A:4B:2C
Certificate issuer: /CN=0babd682c1a8fc5037adbf68143ae77fd00f38ab
Certificate serial: 018CC3B72B2A658683D10E6503C36344BF8B
Authority key identifier: 0B:AB:D6:82:C1:A8:FC:50:37:AD:BF:68:14:3A:E7:7F:D0:0F:38:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C6vWgsGo_FA3rb9oFDrnf9APOKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/w9ttR-Z6AK6Ms2Of2cw2GJ4qSyw.roa
Signing time: Mon 01 Jan 2024 06:30:10 +0000
ROA not before: Mon 01 Jan 2024 06:30:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50833
IP address blocks: 91.224.59.0/24 maxlen: 24
193.150.129.0/24 maxlen: 24
185.159.89.0/24 maxlen: 24
193.150.128.0/24 maxlen: 24
2a10:24c0:6c2::/48 maxlen: 48
2a10:24c0:ada1::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 06 Feb 2024 20:51:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b7:2b:2a:65:86:83:d1:0e:65:03:c3:63:44:bf:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0babd682c1a8fc5037adbf68143ae77fd00f38ab
Validity
Not Before: Jan 1 06:30:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3db6d47e67a00ae8cb3639fd9cc36189e2a4b2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1b:b5:59:ba:7d:4a:53:27:db:20:57:d4:09:
f6:d9:2f:df:53:c9:5c:40:c7:e1:ba:52:73:36:c2:
0c:a1:66:e4:40:75:fb:cd:b6:35:7d:6b:88:53:9b:
fb:48:29:14:c0:76:d3:01:49:0b:3e:1c:6f:e8:28:
a1:24:cd:d3:61:ee:f0:8a:64:3c:b9:d2:be:c9:a8:
0a:74:b3:b1:93:eb:6e:22:23:fb:6b:52:d2:e1:78:
1c:33:c0:da:7f:ac:14:32:dd:f5:e6:16:1c:63:3a:
83:5d:15:b4:80:b4:75:93:cc:38:11:93:d2:4c:5b:
42:8a:4a:c3:be:2d:a9:61:38:81:33:07:d1:93:83:
fc:83:2c:6b:75:c4:14:d5:b2:94:5b:c7:8f:6d:54:
d0:c4:1d:b9:3e:3d:5c:39:bf:5b:6e:60:b8:2b:49:
5f:be:48:73:45:68:f8:9b:b2:f6:11:22:af:5b:a7:
6b:2d:2f:b2:97:ea:32:4c:2c:8b:81:c1:85:5b:b9:
ef:4b:75:7d:07:eb:da:ff:af:27:29:32:89:26:a7:
84:25:77:fd:1f:ed:ed:ac:05:54:20:55:37:c4:b5:
5f:f6:11:9f:cf:31:a4:4d:f0:58:10:e7:cd:ec:75:
07:e4:ab:46:bc:1b:7a:55:a8:6c:3c:9d:58:62:59:
d4:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:DB:6D:47:E6:7A:00:AE:8C:B3:63:9F:D9:CC:36:18:9E:2A:4B:2C
X509v3 Authority Key Identifier:
keyid:0B:AB:D6:82:C1:A8:FC:50:37:AD:BF:68:14:3A:E7:7F:D0:0F:38:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C6vWgsGo_FA3rb9oFDrnf9APOKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/w9ttR-Z6AK6Ms2Of2cw2GJ4qSyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/bc401a-6938-4fdc-9c6e-fac3d5543a2c/1/C6vWgsGo_FA3rb9oFDrnf9APOKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.224.59.0/24
185.159.89.0/24
193.150.128.0/23
IPv6:
2a10:24c0:6c2::/48
2a10:24c0:ada1::/48
Signature Algorithm: sha256WithRSAEncryption
ad:49:15:b2:d3:90:7c:f0:1b:81:99:b7:6c:0d:e2:83:db:df:
0b:92:97:bc:59:29:b1:34:03:ef:31:0a:02:ae:d7:a2:0c:2e:
79:c3:22:fc:19:55:b2:20:48:32:b3:8b:a9:4f:e3:08:75:75:
9c:92:19:45:31:97:49:2a:15:4b:f1:87:f4:83:2c:66:ea:55:
58:b5:62:43:86:71:9e:9c:1f:c0:77:14:9c:aa:2a:2d:36:a3:
36:92:45:77:aa:b0:0d:88:8e:3e:a1:68:1d:fc:0c:e2:ba:7a:
e7:d1:d9:1d:13:5f:75:a9:f2:3e:3c:98:88:75:4b:03:68:35:
fb:99:25:75:f3:ea:b5:9d:ec:12:46:3d:44:55:45:e9:80:5f:
39:fb:b4:34:47:82:23:bc:03:7a:33:bf:7a:6d:d5:36:ce:89:
9f:da:bc:d2:aa:11:ba:1e:b3:73:6c:de:79:95:d1:7b:64:5c:
f6:5f:c6:6c:8a:4a:3e:14:2e:13:5c:02:db:8f:fa:a5:d0:df:
42:d3:43:38:06:98:2c:2e:47:6f:58:ce:d0:c1:ca:3c:3a:73:
dc:6e:94:46:89:f1:25:39:10:5d:cd:c8:d7:a2:82:1c:ba:fc:
a2:cf:7b:10:5e:88:0b:de:6b:80:d3:0b:9d:31:e3:2c:75:7a:
a8:29:19:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 27 01:00:34 2024 by rpki-client on console.sobornost.net