Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2a84e9-68b3-4e3f-b615-a0ad61d194a1/1/wQQuhaemtCBANOsSok3O7Bz07Q8.roa
File: wQQuhaemtCBANOsSok3O7Bz07Q8.roa (raw, json)
Hash identifier: Sd/2/fmiunmi6ziM0YCCCIVPn2gsjHoblqJQuNjfiNw=
Subject key identifier: C1:04:2E:85:A7:A6:B4:20:40:34:EB:12:A2:4D:CE:EC:1C:F4:ED:0F
Certificate issuer: /CN=c330acdf041b5dcc7e5ec6cf8ff8bd0648e8670c
Certificate serial: 018D5607AB75D97CC972591E960BB014E90F
Authority key identifier: C3:30:AC:DF:04:1B:5D:CC:7E:5E:C6:CF:8F:F8:BD:06:48:E8:67:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wzCs3wQbXcx-XsbPj_i9BkjoZww.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2a84e9-68b3-4e3f-b615-a0ad61d194a1/1/wQQuhaemtCBANOsSok3O7Bz07Q8.roa
Signing time: Mon 29 Jan 2024 16:22:39 +0000
ROA not before: Mon 29 Jan 2024 16:22:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59993
IP address blocks: 193.29.4.0/24 maxlen: 24
193.29.8.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 01 Feb 2024 15:22:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:56:07:ab:75:d9:7c:c9:72:59:1e:96:0b:b0:14:e9:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c330acdf041b5dcc7e5ec6cf8ff8bd0648e8670c
Validity
Not Before: Jan 29 16:22:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c1042e85a7a6b4204034eb12a24dceec1cf4ed0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:e2:83:bf:af:54:e8:f4:80:eb:62:36:c5:cd:
e9:5d:b4:c3:f2:73:8c:67:87:1e:4c:26:25:b2:b8:
90:a5:1b:53:b5:fa:1d:cf:c4:c1:a1:96:4d:96:e5:
eb:4c:44:d9:33:0d:8e:6d:e6:45:a3:ed:a0:7f:80:
7c:a6:fa:be:b9:36:7a:47:3f:67:6d:1d:df:c1:4d:
9b:b6:a4:59:c7:9a:86:07:4b:99:5f:11:cf:37:c6:
5b:ca:08:50:c4:89:87:ce:49:90:e8:03:c9:22:55:
b9:27:03:e2:e0:fa:e6:22:fc:ce:c1:93:68:a2:e9:
8b:af:12:64:b2:04:31:60:72:80:10:30:41:23:62:
f5:c1:57:ea:84:a3:29:6f:5c:5c:59:e4:da:3a:16:
75:25:53:7c:a2:23:d3:d4:5c:13:da:94:61:37:1f:
7c:93:06:10:47:00:df:41:7f:5a:20:21:4a:cf:f9:
c2:10:d8:96:85:a9:81:6b:76:a4:91:06:39:85:3a:
69:8f:2d:ad:cc:11:d7:f3:9e:93:0a:f4:11:57:16:
2c:8d:c6:42:28:d8:46:8a:bd:5c:93:05:cd:35:dd:
19:01:d8:42:5d:18:69:1c:e5:70:18:a7:6a:4b:c2:
2c:06:ac:d2:1a:ec:4c:d2:ca:a0:40:f6:bd:20:94:
5a:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:04:2E:85:A7:A6:B4:20:40:34:EB:12:A2:4D:CE:EC:1C:F4:ED:0F
X509v3 Authority Key Identifier:
keyid:C3:30:AC:DF:04:1B:5D:CC:7E:5E:C6:CF:8F:F8:BD:06:48:E8:67:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wzCs3wQbXcx-XsbPj_i9BkjoZww.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2a84e9-68b3-4e3f-b615-a0ad61d194a1/1/wQQuhaemtCBANOsSok3O7Bz07Q8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2a84e9-68b3-4e3f-b615-a0ad61d194a1/1/wzCs3wQbXcx-XsbPj_i9BkjoZww.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.29.4.0/24
193.29.8.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:31:61:1d:b9:95:e1:72:12:b3:6a:66:61:4e:62:8a:5a:98:
df:65:8f:18:8a:99:3a:25:eb:93:07:d2:94:af:2a:41:ef:ce:
ba:5e:df:ca:09:23:71:95:a1:1b:59:5b:71:34:6a:c1:76:7d:
42:8b:a6:52:14:10:a3:59:58:f9:42:58:92:c7:7d:1d:07:e4:
86:3c:64:ba:47:7f:df:bb:8f:7c:e4:1b:7d:f3:82:9d:a8:70:
35:a2:f5:c3:4c:bc:31:ff:4e:bf:6d:77:11:99:ff:3a:61:5e:
3d:d9:8b:ad:26:cc:8a:2d:14:45:7f:4f:15:14:16:fd:2b:35:
6c:3c:37:eb:f9:18:e5:ff:75:82:55:67:3e:41:ea:2b:49:85:
24:8b:3c:9b:cd:ce:61:5d:04:bc:91:f1:47:bd:76:ef:67:9c:
59:ff:a5:3a:cb:ad:65:05:65:d6:3c:33:0f:59:ec:d0:fa:b7:
e4:34:b8:a9:4b:77:6f:5f:68:b5:26:81:9c:36:89:30:c9:46:
d0:38:4e:ab:0f:58:5d:19:60:9c:9e:1b:16:bd:c0:26:a8:c4:
08:3f:a8:1b:e3:90:90:b1:38:e7:9f:6c:36:2a:46:24:0a:73:
8e:ea:a7:78:9f:50:19:f6:b6:ac:82:d2:cf:fb:07:3e:b5:39:
01:d3:2f:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:04:25 2025 by rpki-client