Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/jmClkAqZwvjzo4vu68085QvPUcU.roa
File: jmClkAqZwvjzo4vu68085QvPUcU.roa (raw, json)
Hash identifier: mbm8Gp3VJTByWpbk9R1o2W98wh4+PuPFb8DkINNWpO4=
Subject key identifier: 8E:60:A5:90:0A:99:C2:F8:F3:A3:8B:EE:EB:CD:3C:E5:0B:CF:51:C5
Certificate issuer: /CN=b91464767773f1239b646bb66bdcf4f7fb1206ce
Certificate serial: 0192A9B88C8B2428D49E8F4992A8ED97F9EF
Authority key identifier: B9:14:64:76:77:73:F1:23:9B:64:6B:B6:6B:DC:F4:F7:FB:12:06:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uRRkdndz8SObZGu2a9z09_sSBs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/jmClkAqZwvjzo4vu68085QvPUcU.roa
Signing time: Sun 20 Oct 2024 11:38:17 +0000
ROA not before: Sun 20 Oct 2024 11:38:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 208324
IP address blocks: 91.192.4.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a9:b8:8c:8b:24:28:d4:9e:8f:49:92:a8:ed:97:f9:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b91464767773f1239b646bb66bdcf4f7fb1206ce
Validity
Not Before: Oct 20 11:38:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8e60a5900a99c2f8f3a38beeebcd3ce50bcf51c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:b2:85:15:b6:a9:ef:fe:f3:fe:30:4d:83:
4d:56:1e:33:33:df:3b:18:57:01:2f:e8:8b:40:0e:
d0:d6:e5:03:61:05:80:4b:fe:6f:74:74:94:1d:44:
db:99:7a:56:c9:3c:48:83:ed:75:0b:9a:66:06:ae:
64:56:30:0b:5d:b1:1d:bf:e8:66:f5:3b:08:f6:e6:
04:fb:0d:8a:e1:85:02:fb:1a:17:90:3c:01:e2:d6:
e0:83:8c:81:ed:e9:fb:cd:44:3f:96:1e:6a:dc:5f:
1e:4d:a4:79:a2:fd:d1:c1:3d:17:e9:80:0d:50:40:
f8:f0:da:30:95:87:89:17:b8:ee:f5:7e:d7:ad:1d:
58:c6:7e:fb:45:1d:ef:48:fd:81:63:dc:a9:7b:13:
eb:fe:51:64:b5:f9:53:a1:da:67:31:fd:67:8f:f9:
46:5f:ab:92:3f:7c:5d:3f:79:ec:8f:84:72:66:1b:
ba:68:fd:a9:52:57:42:bc:94:b7:dc:d6:99:06:6b:
7b:f2:71:c8:a1:98:ea:a4:50:9f:be:1d:04:a7:41:
6a:d1:82:c9:80:98:62:7c:b2:fe:99:9a:a3:cb:dd:
25:26:9c:e5:8e:ef:25:e6:3c:f6:cb:56:9c:38:35:
51:61:57:f4:3a:aa:0a:89:bb:53:2c:e6:28:7f:54:
45:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:60:A5:90:0A:99:C2:F8:F3:A3:8B:EE:EB:CD:3C:E5:0B:CF:51:C5
X509v3 Authority Key Identifier:
keyid:B9:14:64:76:77:73:F1:23:9B:64:6B:B6:6B:DC:F4:F7:FB:12:06:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uRRkdndz8SObZGu2a9z09_sSBs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/jmClkAqZwvjzo4vu68085QvPUcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/13fcd1-d806-4e56-8533-475dbbb0c08c/1/uRRkdndz8SObZGu2a9z09_sSBs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.192.4.0/24
Signature Algorithm: sha256WithRSAEncryption
82:e6:44:93:1c:52:85:44:18:a8:87:a2:4b:a9:a4:f2:30:92:
80:0b:3e:94:7c:f4:c9:3f:e6:18:ae:1e:99:75:5a:ed:cb:3a:
fe:72:3f:a9:aa:c9:3f:62:38:f1:00:4b:37:1e:2d:bb:fe:9b:
8a:e3:ef:7a:16:d1:e2:36:fd:40:f4:de:39:b8:31:4b:25:97:
68:1d:6d:b8:8c:75:c9:cb:b5:f0:0a:ab:8d:aa:97:86:ca:20:
12:d4:da:bc:c7:14:e3:ac:7d:12:d4:0d:de:c4:9f:c7:a8:89:
07:b1:63:c6:05:d5:27:0f:cc:f2:e8:98:d0:f3:dd:de:81:3f:
bd:80:70:a4:71:cd:0e:51:72:3f:9a:26:59:58:dc:45:a7:af:
7d:97:77:77:21:21:9e:37:da:80:f8:1b:db:8a:9e:2e:3e:ad:
5e:97:14:13:00:37:72:93:4c:46:51:db:b0:2d:73:fa:57:14:
1f:90:6b:dd:de:e7:f0:d0:05:b6:1a:f2:65:05:1e:d8:f7:a9:
7e:9e:87:54:17:ea:53:97:e1:34:45:76:0d:3d:2a:1d:fb:4b:
5b:63:7c:a7:cd:fe:49:a5:7d:ae:71:bc:b5:95:ae:4d:20:88:
56:63:d4:b1:c7:c3:37:5a:cf:55:26:d0:2d:5c:75:91:6f:6a:
d3:95:b1:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:09:05 2025 by rpki-client