Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/2GaqqwNwKpFAyTEnoz10VYmP0Hg.roa
File: 2GaqqwNwKpFAyTEnoz10VYmP0Hg.roa (raw, json)
Hash identifier: B52J4BK+oJqofMZB3K9jdu/C3V9P/VPRqVLD65ldsnk=
Subject key identifier: D8:66:AA:AB:03:70:2A:91:40:C9:31:27:A3:3D:74:55:89:8F:D0:78
Certificate issuer: /CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a
Certificate serial: 0192B51443310A6162FB4445A6BECE015974
Authority key identifier: 68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/2GaqqwNwKpFAyTEnoz10VYmP0Hg.roa
Signing time: Tue 22 Oct 2024 16:34:16 +0000
ROA not before: Tue 22 Oct 2024 16:34:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 193.107.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 05 Nov 2024 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b5:14:43:31:0a:61:62:fb:44:45:a6:be:ce:01:59:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a
Validity
Not Before: Oct 22 16:34:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d866aaab03702a9140c93127a33d7455898fd078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:94:79:09:9b:3b:f1:43:6e:39:ce:d2:f5:3a:
c8:b7:40:c4:3d:07:46:4b:78:d3:22:15:e0:96:8e:
55:f6:35:60:ef:e7:19:25:69:ff:62:83:6b:5a:1a:
ed:7e:dd:b9:13:89:6e:d8:96:4f:86:f5:8a:a8:7e:
7c:60:87:c4:89:d4:e1:77:9c:78:42:57:a8:2b:8c:
b9:60:24:e6:b7:94:14:6f:20:87:38:26:ad:02:99:
9b:8c:21:ad:68:29:da:49:56:6e:e0:dc:d8:39:24:
24:db:71:68:d8:ee:2d:17:20:aa:2e:20:80:30:23:
ce:8f:51:ce:16:5d:88:8f:93:49:3e:a9:0d:4b:06:
d2:ce:d2:f9:0c:04:42:d6:98:6d:5f:97:87:a3:d5:
06:be:60:fa:85:f6:c1:e8:bd:76:63:66:84:ae:88:
26:35:5d:5a:c5:cb:00:16:10:89:4f:a4:f3:a2:ba:
2f:df:8f:a0:ac:dc:51:0d:88:de:78:e6:17:b1:93:
c7:f7:dc:1e:aa:95:c2:de:1a:ad:7f:37:8e:92:0e:
c5:c8:4c:66:61:c8:23:c4:14:af:0f:48:3c:3e:4b:
66:3e:22:66:4e:55:d4:90:fc:6c:87:93:cd:9e:8f:
2d:5d:4a:80:66:1f:39:0b:0f:d4:33:31:b1:da:cb:
9c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:66:AA:AB:03:70:2A:91:40:C9:31:27:A3:3D:74:55:89:8F:D0:78
X509v3 Authority Key Identifier:
keyid:68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/2GaqqwNwKpFAyTEnoz10VYmP0Hg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/aL0Q8bFLuydn_9yuxLQXKIC6Rho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.40.0/22
Signature Algorithm: sha256WithRSAEncryption
15:db:7d:dd:29:ab:c6:09:e8:50:49:fd:69:a3:7a:5d:8d:84:
72:22:1e:dc:e8:5b:84:44:47:75:3b:cb:22:8d:0e:c1:29:c8:
2d:e2:ab:17:42:6b:19:03:59:8f:09:92:50:88:83:27:e3:d7:
e9:da:73:9b:8b:79:3d:bb:6c:68:c3:ef:25:a3:35:34:f6:da:
f0:4b:73:02:a1:f3:56:78:ff:2b:fa:a5:dc:43:6d:8b:7c:09:
b9:a0:bc:c2:6a:a2:5d:93:69:84:18:7a:b3:7d:91:65:da:34:
a5:15:04:31:29:90:f2:eb:22:61:f8:2f:dd:d5:0a:c3:00:17:
a4:ae:cd:c6:a0:64:32:a2:4f:53:9d:f7:40:14:86:80:b3:d7:
4e:bb:66:e6:e2:5d:4e:c1:c3:6d:bf:db:4e:ed:31:e1:61:b1:
2a:78:d4:98:16:b0:96:8b:c5:5a:9a:55:41:20:87:7d:30:8b:
2f:eb:be:b1:74:af:76:57:22:3d:d8:28:68:c5:41:75:22:0b:
da:ff:3c:d7:62:6e:89:ed:37:68:31:f4:e1:79:c5:56:eb:0a:
d7:01:61:46:7d:09:bd:52:29:0d:d8:36:e2:a1:b5:32:9d:c9:
2d:a7:1d:22:a4:cc:af:32:69:56:9f:4a:85:ca:ad:d0:0f:90:
df:31:e2:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 5 19:59:38 2024 by rpki-client on console-fra.rpki-client.org