Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/1-TN2CPFHcyaVHPhLCqAccsaGyaY.roa
File: 1-TN2CPFHcyaVHPhLCqAccsaGyaY.roa (raw, json)
Hash identifier: wiP8T31WTX76x2VDWeh7n75xrTr/kJjQZZfEO+VaAqw=
Subject key identifier: F9:33:76:08:F1:47:73:26:95:1C:F8:4B:0A:A0:1C:72:C6:86:C9:A6
Certificate issuer: /CN=f00a224de6dad1a1ed131b5f95b83231a2abcaf1
Certificate serial: 0192713E78268CFD89E045694016F2AB1C53
Authority key identifier: F0:0A:22:4D:E6:DA:D1:A1:ED:13:1B:5F:95:B8:32:31:A2:AB:CA:F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8AoiTeba0aHtExtflbgyMaKryvE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/1-TN2CPFHcyaVHPhLCqAccsaGyaY.roa
Signing time: Wed 09 Oct 2024 12:26:12 +0000
ROA not before: Wed 09 Oct 2024 12:26:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210079
IP address blocks: 83.220.164.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:71:3e:78:26:8c:fd:89:e0:45:69:40:16:f2:ab:1c:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f00a224de6dad1a1ed131b5f95b83231a2abcaf1
Validity
Not Before: Oct 9 12:26:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f9337608f1477326951cf84b0aa01c72c686c9a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9e:5d:25:40:70:8a:45:f4:a2:a5:ff:ab:e2:
14:e1:65:d0:74:d9:12:f7:7d:cd:b3:82:f0:61:82:
91:b1:3c:04:3e:9b:46:92:4c:a2:10:79:40:2c:52:
13:59:39:df:3e:ab:f9:6a:90:3a:66:29:7e:d1:23:
fd:57:a5:f6:ad:15:ed:0f:b6:72:5d:12:c3:3c:51:
c7:a0:18:1f:22:72:42:28:8e:0c:65:3b:30:07:41:
bb:6a:cb:72:e3:eb:84:af:81:2b:87:18:ea:52:91:
e0:8f:ac:98:1d:08:a8:f7:3e:14:41:3d:ff:8f:e8:
52:8a:b6:aa:66:d5:49:4d:f3:62:b6:7e:c5:88:f4:
54:9b:d3:87:0f:01:96:53:0d:99:49:e2:3f:7c:29:
46:5a:c4:1b:f4:4c:6c:15:d4:ce:50:ee:3b:ea:67:
55:de:8f:83:ca:7c:35:27:45:36:e1:d1:86:3e:65:
36:50:c2:1f:84:b4:3b:78:2d:ce:dd:bc:dc:de:a7:
04:39:7f:5a:cb:42:52:59:13:09:7a:c4:d6:10:4c:
31:bf:1d:30:0a:48:ad:95:14:ca:1f:6b:9f:a5:28:
b1:20:34:b1:73:97:7a:6d:3d:25:93:b1:b4:80:b7:
e9:b8:dc:0a:53:40:04:d0:8e:ef:78:a1:60:5f:12:
a0:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:33:76:08:F1:47:73:26:95:1C:F8:4B:0A:A0:1C:72:C6:86:C9:A6
X509v3 Authority Key Identifier:
keyid:F0:0A:22:4D:E6:DA:D1:A1:ED:13:1B:5F:95:B8:32:31:A2:AB:CA:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8AoiTeba0aHtExtflbgyMaKryvE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/1-TN2CPFHcyaVHPhLCqAccsaGyaY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/75e659-092f-4ee4-8718-7519e105aeda/1/8AoiTeba0aHtExtflbgyMaKryvE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.220.164.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:81:94:7c:9c:a1:2a:24:47:3e:67:f6:ec:ab:8b:3e:6c:a3:
d5:9b:8d:15:7b:c3:6b:fb:fa:6a:97:ed:e0:b2:b6:cb:97:c3:
27:45:7d:aa:4a:af:10:ed:a1:66:6f:8b:01:8e:b3:39:99:33:
82:f1:ce:67:57:fe:c1:39:dd:6c:e6:be:ec:63:63:94:70:17:
bf:6f:5f:d3:f8:08:af:6c:d6:5e:a8:57:ac:d1:cc:d3:ac:57:
a1:40:a7:9d:c0:b0:bd:18:47:e7:bc:3a:90:b2:d5:d3:d9:14:
3a:20:16:5e:55:db:47:fd:21:67:46:6c:cd:08:6a:bd:7b:13:
7b:78:0f:1b:1e:46:f8:e6:41:16:af:c1:f9:89:5f:66:fd:61:
8f:d8:28:89:da:42:70:78:d9:d5:e4:de:64:9e:ef:c0:dd:cd:
2b:19:a6:bb:79:72:1c:ec:3f:8d:72:89:d2:4e:42:cd:4e:c0:
c5:fb:5c:cc:6f:0c:74:7d:0d:86:99:ad:03:d5:76:57:2d:0f:
f1:68:00:c2:b0:ec:37:1e:15:0e:7e:cb:78:70:1d:fd:77:70:
aa:35:64:6c:97:8f:77:51:87:86:e5:92:37:11:bd:b0:10:33:
e1:fb:15:fe:6b:e9:02:f1:03:0e:50:a0:95:4f:58:43:39:1c:
b5:24:68:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:06 2025 by rpki-client