Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/4cf5ad-a6ca-44ff-9d18-c5c64b13421d/1/Sdn7xjL1TCbjxTtRBsUwPqQudDc.roa
File: Sdn7xjL1TCbjxTtRBsUwPqQudDc.roa (raw, json)
Hash identifier: Mem1wJV6/L6uODrEr/zNGNwqv6hT+/aTSREm660SLhA=
Subject key identifier: 49:D9:FB:C6:32:F5:4C:26:E3:C5:3B:51:06:C5:30:3E:A4:2E:74:37
Certificate issuer: /CN=381203337b0cd06fcfc045588f097cbc24153a75
Certificate serial: 019281F8626BC2BA48BF51FCA2CB039DC725
Authority key identifier: 38:12:03:33:7B:0C:D0:6F:CF:C0:45:58:8F:09:7C:BC:24:15:3A:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OBIDM3sM0G_PwEVYjwl8vCQVOnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/4cf5ad-a6ca-44ff-9d18-c5c64b13421d/1/Sdn7xjL1TCbjxTtRBsUwPqQudDc.roa
Signing time: Sat 12 Oct 2024 18:23:11 +0000
ROA not before: Sat 12 Oct 2024 18:23:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209846
IP address blocks: 192.16.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:81:f8:62:6b:c2:ba:48:bf:51:fc:a2:cb:03:9d:c7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=381203337b0cd06fcfc045588f097cbc24153a75
Validity
Not Before: Oct 12 18:23:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=49d9fbc632f54c26e3c53b5106c5303ea42e7437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:2e:7f:59:68:a8:81:fa:d8:8c:9a:e4:61:62:
5c:1c:08:14:41:4e:fc:95:85:d3:c8:74:8e:14:56:
bd:de:8c:b0:7a:2e:3b:6b:a5:30:c0:4a:63:68:c6:
e2:7f:a0:96:90:53:e4:5d:d0:26:82:c5:53:05:3b:
0b:a5:7b:7c:1f:7a:5f:31:20:3f:47:2a:fa:7a:01:
ab:21:cf:54:ed:90:d1:59:c1:3b:cd:4c:c3:ca:9e:
61:89:cd:8b:00:33:05:0a:8a:29:e2:ec:1f:77:16:
b3:34:3b:e9:34:4a:20:e3:f7:57:e1:09:f6:8a:1b:
04:4b:3c:1e:03:7c:8c:3e:32:6e:6d:48:b2:8d:72:
be:08:30:e3:44:41:07:8d:18:04:31:c3:34:76:af:
9b:78:0f:85:fb:36:29:61:0a:d7:f8:1f:68:06:45:
36:3b:51:24:5a:44:0e:8c:53:3a:05:7e:b7:52:c2:
25:57:84:b0:9c:2e:6e:b0:b5:26:da:5a:3e:5c:d4:
e7:09:26:a1:9d:ac:04:cc:2e:b7:c3:37:ce:26:f3:
a0:34:ae:70:3b:dd:e6:84:47:1d:6c:d4:91:ea:72:
9c:95:6e:a4:e7:84:6e:82:30:bc:6f:26:a5:f7:4b:
49:d9:1b:f5:dd:78:66:8f:5b:84:2e:7c:b2:cc:c9:
32:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:D9:FB:C6:32:F5:4C:26:E3:C5:3B:51:06:C5:30:3E:A4:2E:74:37
X509v3 Authority Key Identifier:
keyid:38:12:03:33:7B:0C:D0:6F:CF:C0:45:58:8F:09:7C:BC:24:15:3A:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OBIDM3sM0G_PwEVYjwl8vCQVOnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4cf5ad-a6ca-44ff-9d18-c5c64b13421d/1/Sdn7xjL1TCbjxTtRBsUwPqQudDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/4cf5ad-a6ca-44ff-9d18-c5c64b13421d/1/OBIDM3sM0G_PwEVYjwl8vCQVOnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.16.137.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:80:ee:60:4f:42:ae:6a:25:10:15:88:69:03:56:a0:4b:f0:
3a:a0:75:37:77:cd:7c:75:36:f8:84:84:f1:3d:02:40:da:83:
d8:0c:e8:fd:4e:99:41:58:3d:1a:5d:94:2b:43:c9:76:ac:36:
43:f2:d4:e4:71:1f:98:cd:6f:be:55:91:1b:3a:f3:eb:6a:92:
c5:0c:25:12:12:ca:88:f1:08:a2:e1:35:d9:db:3c:e3:38:68:
e6:79:e3:c9:d4:c3:d4:b9:1a:ec:54:42:4b:b5:29:f9:e7:b7:
4d:f6:89:d7:de:c5:28:4f:6b:09:21:31:df:a2:6e:eb:c3:08:
6a:9e:87:aa:66:7c:8b:a0:d4:5a:de:b6:44:6b:8d:cc:4b:6f:
56:73:f8:b1:3e:55:a0:96:4d:d5:8d:4c:84:88:09:81:19:87:
10:6a:73:09:47:55:1a:80:4a:6c:7d:50:dc:88:49:12:dc:87:
72:c9:67:6a:7e:37:ad:0a:ac:91:fd:46:b7:f3:d5:29:72:fd:
b4:f2:09:f8:64:78:21:5c:f1:78:ee:ac:a9:c1:a2:07:af:b5:
ce:37:0c:fa:93:2d:a0:5c:06:ec:3c:35:ff:c3:9a:f4:03:f7:
7f:fa:2e:1a:68:00:0c:f6:16:52:dd:ec:3a:14:99:7f:20:e7:
42:54:de:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:23:17 2025 by rpki-client