Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/L4GVXHVxIvWgHPdXHA9u_wQAZoY.roa
File: L4GVXHVxIvWgHPdXHA9u_wQAZoY.roa (raw, json)
Hash identifier: rBSBfSc8zM+456lBw4wtNETGfeZD27Y6XMaCuNymXLE=
Subject key identifier: 2F:81:95:5C:75:71:22:F5:A0:1C:F7:57:1C:0F:6E:FF:04:00:66:86
Certificate issuer: /CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Certificate serial: 018CC79568C9862FC41125FF1BD63ECB41EF
Authority key identifier: 0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/L4GVXHVxIvWgHPdXHA9u_wQAZoY.roa
Signing time: Tue 02 Jan 2024 00:31:46 +0000
ROA not before: Tue 02 Jan 2024 00:31:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 44176
IP address blocks: 193.38.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 21 May 2024 10:28:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:68:c9:86:2f:c4:11:25:ff:1b:d6:3e:cb:41:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0bf543e23e29fb03748d0939726f30fe9affa19e
Validity
Not Before: Jan 2 00:31:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f81955c757122f5a01cf7571c0f6eff04006686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1d:46:5d:40:52:8b:f6:37:eb:d2:80:17:af:
a6:c6:d8:d8:4a:c2:39:5f:3d:cc:bd:20:a0:de:25:
09:0b:7d:29:e5:84:13:7c:d7:90:ab:2f:fd:ce:23:
40:f5:c3:e4:ee:1f:5e:28:03:e3:71:49:bd:1b:d4:
6e:25:f1:e2:23:9c:6d:26:24:83:0a:39:40:04:d3:
31:f8:d8:d0:31:4e:0d:ff:f2:1a:a7:5d:90:b0:27:
54:18:b6:78:40:0d:15:e8:fa:68:73:ba:3f:74:bb:
5e:fa:cd:70:a3:e2:54:b6:d1:bb:0e:e9:90:99:a1:
cf:8b:c1:36:90:0d:36:e9:1e:39:c5:8e:35:d3:76:
aa:fd:c9:41:60:cc:99:0a:88:bb:79:ec:30:60:82:
16:c5:f8:f2:f0:39:96:49:17:5b:8c:d9:5c:47:e0:
63:82:91:52:8f:a7:ff:14:ec:6a:c4:fb:ab:c3:f8:
32:5d:06:00:a2:3c:f4:53:99:f7:ed:43:9f:84:89:
a3:dd:81:b2:9c:f9:10:59:b9:52:d6:fe:da:db:a3:
8c:f7:22:4b:a0:1c:fc:6a:0c:18:c3:da:c0:69:85:
10:02:5f:44:06:9e:27:22:ef:c1:1b:5c:c1:cc:ef:
1f:77:6e:87:5c:d0:fc:d6:41:d0:c8:b8:fc:a7:92:
78:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:81:95:5C:75:71:22:F5:A0:1C:F7:57:1C:0F:6E:FF:04:00:66:86
X509v3 Authority Key Identifier:
keyid:0B:F5:43:E2:3E:29:FB:03:74:8D:09:39:72:6F:30:FE:9A:FF:A1:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/L4GVXHVxIvWgHPdXHA9u_wQAZoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/afa34c-f3f0-405c-b083-a35fc438d4ca/1/C_VD4j4p-wN0jQk5cm8w_pr_oZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.38.255.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:6b:74:9b:69:bf:79:3b:ee:64:89:ec:be:bd:f9:99:96:99:
f6:78:93:6f:ff:1c:60:03:16:26:9d:13:cc:68:6f:b4:d0:9a:
bd:81:2b:aa:11:11:d1:d3:04:75:2e:b8:46:49:7c:76:1a:6a:
e2:5c:17:6d:72:ca:a6:bb:7d:88:c7:a8:56:da:6e:31:69:56:
8f:e4:67:6d:3c:20:79:8a:41:5e:c0:32:28:95:c3:91:64:8b:
22:a6:5e:c3:61:10:ac:4b:2a:f5:28:77:fc:00:e0:72:30:33:
19:29:cc:16:cb:da:97:7a:22:7d:f5:b5:da:7c:9a:1b:f6:57:
b1:cb:38:0b:0a:a1:82:f5:24:c0:ea:6e:0c:09:cc:60:9c:a4:
ae:9f:49:28:34:17:fe:f5:d6:43:c8:f0:60:64:34:fc:b6:7e:
19:27:f8:f9:9b:eb:ae:8c:ea:39:2f:c9:f2:fb:d0:9e:02:8d:
67:b6:d3:58:71:05:01:45:97:7e:51:54:a9:2b:2c:0b:e9:f6:
e6:9a:8a:a3:4a:d6:1a:1b:e9:de:d3:bf:7f:a8:0e:14:7b:d1:
9b:65:44:a0:8a:cc:c8:95:f9:7b:3e:be:aa:65:b8:b5:19:4b:
8b:a8:ee:f7:e5:95:fb:b0:18:67:c1:30:7d:27:f6:13:ae:8d:
49:0f:20:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:43:33 2025 by rpki-client