Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/jdPO4ydBXiat_XCw3LFqmqTDr_I.roa
File: jdPO4ydBXiat_XCw3LFqmqTDr_I.roa (raw, json)
Hash identifier: BWF5YQR3YKk4idkZwjyqJ0heXualBzT7uQtKbVEkq9w=
Subject key identifier: 8D:D3:CE:E3:27:41:5E:26:AD:FD:70:B0:DC:B1:6A:9A:A4:C3:AF:F2
Certificate issuer: /CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Certificate serial: 019289D2E29EDAD19DADB88969A94A970417
Authority key identifier: 49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/jdPO4ydBXiat_XCw3LFqmqTDr_I.roa
Signing time: Mon 14 Oct 2024 06:59:12 +0000
ROA not before: Mon 14 Oct 2024 06:59:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215597
IP address blocks: 212.95.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 21 Oct 2024 10:10:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:89:d2:e2:9e:da:d1:9d:ad:b8:89:69:a9:4a:97:04:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49dd8f1a62a5d7f80212de0f3efe75b2fa338ffe
Validity
Not Before: Oct 14 06:59:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8dd3cee327415e26adfd70b0dcb16a9aa4c3aff2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7a:e0:85:50:56:98:c7:7a:d1:1a:19:38:72:
9b:c0:93:f1:2e:4b:59:ac:ad:b6:2a:db:17:19:2d:
02:5b:9b:6d:d1:09:ab:0c:52:1f:9d:02:43:0f:f9:
56:2f:56:a4:9b:9b:81:5d:b7:66:83:74:d4:f2:03:
07:a5:19:42:2a:a2:f7:78:e6:08:05:51:78:43:11:
e9:4f:44:20:5a:9b:91:fc:e9:2c:b4:de:be:f5:fc:
eb:ec:8f:fd:c2:87:0b:e4:f2:26:e0:e3:dd:2e:1e:
f4:2d:95:29:6c:df:20:0f:f1:d6:3e:29:b1:7f:c1:
0e:88:a5:ff:21:b9:dc:27:f2:99:e4:ed:6e:a2:a6:
86:87:6e:d5:96:66:13:64:40:00:10:83:bf:fe:04:
53:4d:9f:c3:c5:e3:78:ce:6e:3d:a3:92:f8:37:98:
14:b2:1a:de:d4:e1:a8:19:9a:c7:f8:ea:10:c7:87:
bd:6e:c7:53:9a:07:39:6c:8d:e4:d4:0b:18:57:27:
e0:5e:9a:8f:ec:b6:57:33:27:d2:45:73:ac:26:03:
74:3d:fb:1a:d5:f8:40:7d:35:94:b6:6b:da:46:19:
02:89:79:ed:af:e4:ea:40:3e:df:1c:52:45:eb:f3:
30:70:d4:88:31:a4:91:df:fc:f5:c4:5b:6e:a0:b5:
85:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:D3:CE:E3:27:41:5E:26:AD:FD:70:B0:DC:B1:6A:9A:A4:C3:AF:F2
X509v3 Authority Key Identifier:
keyid:49:DD:8F:1A:62:A5:D7:F8:02:12:DE:0F:3E:FE:75:B2:FA:33:8F:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sd2PGmKl1_gCEt4PPv51svozj_4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/jdPO4ydBXiat_XCw3LFqmqTDr_I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/01b1ef-233b-4d6f-8dcf-ceec49124c0f/1/Sd2PGmKl1_gCEt4PPv51svozj_4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.95.142.0/24
Signature Algorithm: sha256WithRSAEncryption
14:1d:60:50:6e:10:cd:14:a6:3c:e5:8b:a3:47:09:6a:d4:d1:
17:c3:2c:74:c4:ef:2e:84:ad:64:fe:9e:41:de:57:0a:ba:58:
68:56:96:3b:b8:e2:a6:99:9d:03:99:6c:01:d6:15:6d:aa:2b:
ce:3f:45:8f:42:54:80:da:54:15:74:55:0f:f1:a0:e6:d6:7e:
ab:96:9f:84:00:96:f8:27:cf:cc:38:31:2c:c5:1a:03:32:f5:
db:18:1f:ab:7e:b4:60:4c:26:51:5e:5e:b4:f4:04:fe:43:e5:
26:d2:95:7f:11:e1:2e:a5:67:55:f7:3b:44:d4:3b:eb:88:56:
6b:50:02:85:6b:5e:76:de:60:46:04:27:d0:6b:56:2e:ad:db:
f2:d4:37:cf:a3:57:8b:e8:cb:1f:36:2d:31:01:ff:00:0b:18:
53:7c:f9:96:70:1c:b1:7d:0c:08:ca:26:b7:a3:52:49:98:73:
7e:a6:11:3e:6e:8a:e6:e3:53:95:0f:02:74:6e:08:0c:26:35:
bf:5c:72:b7:b3:be:c8:95:23:02:bd:b4:30:98:bc:14:4b:5c:
cc:aa:ef:82:56:fb:20:1d:31:cf:13:99:65:b7:ac:6c:53:a2:
ec:6e:89:a7:45:b6:bf:c0:24:05:89:b5:b3:67:1c:4b:b7:d6:
03:bf:6c:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:38 2025 by rpki-client