Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/stTMs-gMxnQKVJ3Nb5vkDjEQz2k.roa
File: stTMs-gMxnQKVJ3Nb5vkDjEQz2k.roa (raw, json)
Hash identifier: lPjhJBUWTT8iU0bvIW4AMfqC8W6Og8e5kNU+HZSBR+0=
Subject key identifier: B2:D4:CC:B3:E8:0C:C6:74:0A:54:9D:CD:6F:9B:E4:0E:31:10:CF:69
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01942824CAEB0B0D093111E3913E66C9EF39
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/stTMs-gMxnQKVJ3Nb5vkDjEQz2k.roa
Signing time: Thu 02 Jan 2025 17:51:27 +0000
ROA not before: Thu 02 Jan 2025 17:51:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215292
IP address blocks: 193.25.217.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 23 Jan 2025 07:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:24:ca:eb:0b:0d:09:31:11:e3:91:3e:66:c9:ef:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jan 2 17:51:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b2d4ccb3e80cc6740a549dcd6f9be40e3110cf69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:fe:8e:b7:1d:c1:02:e1:b5:cf:f1:aa:e5:
52:f4:b8:8e:2d:65:fd:c3:3f:0f:f0:69:fe:df:4e:
d1:b0:b4:e0:03:6a:a1:0a:1e:ce:2a:e8:d2:15:3b:
ca:5f:43:64:e4:10:56:5b:38:2d:80:95:39:2b:a9:
66:61:0a:c3:1c:f4:8b:ce:23:c1:d1:ca:20:cb:79:
b1:d1:ee:4f:70:07:df:70:38:eb:d0:82:ad:d9:c4:
d7:96:85:85:9d:bf:a5:e1:1e:c1:91:ee:7b:31:f3:
be:65:0e:4f:f8:15:01:5a:c0:3e:e7:66:a7:cd:25:
f7:41:b9:e5:ec:38:cf:f8:98:6d:dd:af:2b:71:bd:
2f:97:95:2d:8b:e2:7d:d1:9f:db:49:65:48:de:f0:
fe:2f:1d:6e:f6:c3:97:42:b7:9d:b5:9a:a1:d2:00:
03:a2:c7:14:87:48:88:ec:bc:21:98:98:70:5b:d4:
b7:c9:27:08:ac:f0:48:e4:04:13:7b:de:1a:d0:d1:
c8:98:db:a1:ce:b5:52:d7:e7:e2:a9:68:b2:a6:9f:
55:81:0b:38:5f:a3:88:ab:34:5e:44:80:50:45:23:
f6:ec:4f:36:93:98:6d:25:fd:f5:c9:69:18:ee:e3:
37:b4:10:14:a3:03:eb:98:48:ea:d9:cb:f1:ed:0b:
64:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D4:CC:B3:E8:0C:C6:74:0A:54:9D:CD:6F:9B:E4:0E:31:10:CF:69
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/stTMs-gMxnQKVJ3Nb5vkDjEQz2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.25.217.0/24
Signature Algorithm: sha256WithRSAEncryption
15:81:4a:2c:a1:b0:93:48:70:1e:41:47:13:fe:5d:c9:fa:fd:
ed:eb:5f:20:a2:bb:69:4c:d7:19:5e:81:01:fa:7f:48:23:d0:
37:5f:9d:4b:69:c3:d6:97:26:ce:9a:18:38:ba:55:9e:0f:d0:
84:7f:c7:2e:d8:db:53:96:60:04:c9:2f:e8:f8:10:e4:2f:bb:
1e:5f:5e:f5:0c:12:88:bb:f5:cd:33:37:f3:d7:c7:a2:01:98:
e4:6e:6e:f0:3b:cf:e4:ae:eb:c1:05:6f:13:da:89:38:df:17:
dc:d0:4e:3b:d4:49:3b:af:3c:82:75:92:49:c6:e0:2c:4e:be:
a7:90:88:bd:1f:e6:69:f3:f8:93:8a:93:cf:42:f5:c2:36:47:
ff:ae:00:48:9e:ea:3d:ef:01:0e:9b:76:f4:a0:41:0a:69:da:
1b:2f:87:8f:93:d4:b8:f0:b6:7b:e8:6a:ea:d3:23:74:88:49:
f4:0c:b4:5a:0a:cc:b6:d8:f7:b0:33:1e:57:29:4d:a6:c8:a2:
9e:19:11:29:15:7a:b4:5a:bf:19:b9:05:2a:3a:10:96:7e:4b:
f8:5a:37:d6:9c:68:00:cb:fc:73:c2:36:8e:fd:17:e7:f8:c4:
83:4a:cb:af:05:a7:43:a7:5f:af:8a:65:b8:68:04:54:8d:8e:
f1:f3:08:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 19:26:43 2025 by rpki-client