Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/J3TAiUdQyiWvp61s291FFu92atw.roa
File: J3TAiUdQyiWvp61s291FFu92atw.roa (raw, json)
Hash identifier: FNLU6w56dtmdLb9aBlTYuVRT4qy0yk3ovXHv6d6Kbvo=
Subject key identifier: 27:74:C0:89:47:50:CA:25:AF:A7:AD:6C:DB:DD:45:16:EF:76:6A:DC
Certificate issuer: /CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Certificate serial: 01929EE629F7980AE104A8EA7EF4CBED3163
Authority key identifier: E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/J3TAiUdQyiWvp61s291FFu92atw.roa
Signing time: Fri 18 Oct 2024 09:12:16 +0000
ROA not before: Fri 18 Oct 2024 09:12:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 194.38.16.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:9e:e6:29:f7:98:0a:e1:04:a8:ea:7e:f4:cb:ed:31:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e76d0dab347a38e2b87b5a22a2f7c9e21c18c9bc
Validity
Not Before: Oct 18 09:12:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2774c0894750ca25afa7ad6cdbdd4516ef766adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:e8:c6:eb:d2:66:1b:52:fe:18:8d:a8:d4:78:
a1:11:41:66:55:40:67:ad:85:ec:1d:9a:90:2e:64:
ec:f4:dd:61:6c:47:3e:85:ab:2e:af:7d:7c:8f:61:
ca:2d:85:34:3b:8a:62:82:a3:05:1d:24:f2:a2:06:
bf:fe:04:ef:aa:c0:2d:8f:03:f8:0a:41:0d:20:1c:
0c:8a:b7:6c:5a:fb:fa:a3:a6:1f:06:e4:58:cc:1c:
1a:05:da:d4:ef:7f:c1:29:15:8c:0d:46:57:e5:47:
f1:89:c8:cf:a9:a9:80:11:c4:b0:e9:39:d6:96:4c:
84:c0:2b:8d:53:b4:31:f7:df:9b:27:56:aa:60:ad:
3c:1f:a3:69:6a:1e:a4:78:1a:36:72:72:16:3b:0d:
2e:37:85:05:1e:40:83:d9:fe:e8:35:1b:2d:06:f0:
f8:81:0c:56:25:cf:8e:c5:6b:0e:8d:f5:52:03:b9:
76:5b:6c:42:64:0a:62:61:c5:b3:da:3d:34:57:4d:
9f:91:c4:c8:76:27:8b:1b:6d:12:59:9b:e3:8a:f3:
18:ab:fd:92:48:5b:de:01:0b:50:46:fb:43:61:3c:
25:46:83:9c:59:68:74:68:db:48:1b:4a:79:d4:11:
72:c4:fa:21:1c:b6:d5:d3:20:e3:2e:47:13:65:6d:
3e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:74:C0:89:47:50:CA:25:AF:A7:AD:6C:DB:DD:45:16:EF:76:6A:DC
X509v3 Authority Key Identifier:
keyid:E7:6D:0D:AB:34:7A:38:E2:B8:7B:5A:22:A2:F7:C9:E2:1C:18:C9:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/520NqzR6OOK4e1oiovfJ4hwYybw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/J3TAiUdQyiWvp61s291FFu92atw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/3dbb3d-f328-4b27-95d9-bd3bfc99bda9/1/520NqzR6OOK4e1oiovfJ4hwYybw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.38.16.0/22
Signature Algorithm: sha256WithRSAEncryption
73:63:ad:24:00:79:5f:26:f5:21:dd:64:e3:80:24:42:1c:22:
25:9a:b0:b4:c7:c5:6f:92:af:ed:ba:f2:81:51:cf:91:ec:09:
2d:34:94:63:16:de:29:c2:d3:20:6c:7a:1d:4f:ff:9f:6d:aa:
85:fc:27:f5:35:98:e1:c3:7e:0d:3c:71:40:77:bf:95:e8:81:
3b:2e:e8:21:88:02:fc:68:67:8d:c7:c3:50:b9:3b:b1:80:f7:
11:18:c9:e7:b4:fe:3b:3e:72:ca:3e:73:35:d2:43:b3:d8:13:
ed:a8:31:98:93:21:22:70:61:60:3b:22:3a:10:10:2e:10:06:
55:18:61:1f:83:dd:19:3b:b5:97:22:05:49:ca:d9:b7:c1:0b:
61:40:71:92:fa:0a:b3:30:d6:2a:b4:4f:35:5e:9d:1c:7d:fe:
18:6d:f1:fe:38:ee:05:b9:e8:13:9b:5e:c1:02:07:73:48:32:
74:5d:d6:4c:42:58:df:fb:21:7d:60:f8:9a:4f:17:a0:08:de:
68:80:d6:c9:cc:6c:82:1c:48:46:cb:94:4d:d4:cc:88:1e:48:
29:3c:99:28:56:28:2a:b5:97:f4:d6:fb:a8:5f:e0:45:07:75:
54:35:8e:4f:bc:2b:17:bd:9f:47:1d:85:db:57:44:fb:3e:97:
8d:9b:2a:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:27:06 2025 by rpki-client