Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/cxY8kKY9LZA0jBMfKF0CM9Dm7jk.roa
File: cxY8kKY9LZA0jBMfKF0CM9Dm7jk.roa (raw, json)
Hash identifier: a7q46yH63kcv0jSVDi7ii1yd8/JkxaExHRk0oxZybaY=
Subject key identifier: 73:16:3C:90:A6:3D:2D:90:34:8C:13:1F:28:5D:02:33:D0:E6:EE:39
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01924C706B8068374EE6C14AF3E1329459C4
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/cxY8kKY9LZA0jBMfKF0CM9Dm7jk.roa
Signing time: Wed 02 Oct 2024 08:54:48 +0000
ROA not before: Wed 02 Oct 2024 08:54:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210837
IP address blocks: 193.30.241.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:48:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4c:70:6b:80:68:37:4e:e6:c1:4a:f3:e1:32:94:59:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 2 08:54:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73163c90a63d2d90348c131f285d0233d0e6ee39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fb:01:9f:d3:55:ef:cc:7b:50:d1:d7:5a:09:
7c:73:99:b9:35:61:20:74:7f:e8:6c:21:e4:5d:a9:
8f:77:18:6e:4a:a7:89:a3:41:80:5e:0d:b3:ab:7f:
85:a3:f7:b4:c0:bf:8f:d0:ac:e8:23:a9:18:fc:e7:
f6:5b:41:f2:2f:97:a1:fd:b8:97:4c:e9:39:8f:69:
9f:40:e6:96:db:53:60:8f:00:94:5c:03:96:61:44:
91:d2:48:76:67:32:1d:e0:5b:00:ec:b3:84:db:3d:
67:b9:2a:8f:66:35:aa:cb:39:ac:52:63:01:f9:9a:
4b:08:6e:3f:76:63:1f:ba:80:25:1d:ad:1b:5a:03:
61:55:b5:3e:9d:06:a4:ae:0b:70:1a:d0:3d:87:bf:
96:84:19:be:05:6c:eb:2a:05:f8:b8:5c:c2:61:28:
83:46:4c:f2:97:43:81:1a:a3:98:df:fe:22:2a:2a:
75:0b:19:53:58:71:a1:94:ee:00:34:fe:7e:d1:a8:
39:e2:b3:cb:b3:b1:37:56:87:6d:64:e6:a4:58:d0:
69:6b:38:17:6a:84:46:45:9b:48:a8:63:d9:14:a1:
38:7d:83:41:f3:46:6d:57:f0:17:41:9a:1d:7e:c9:
62:66:98:29:d0:e5:48:4c:1f:28:7b:64:87:ca:9c:
0d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:16:3C:90:A6:3D:2D:90:34:8C:13:1F:28:5D:02:33:D0:E6:EE:39
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/cxY8kKY9LZA0jBMfKF0CM9Dm7jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.30.241.0/24
Signature Algorithm: sha256WithRSAEncryption
79:44:33:25:34:d5:fc:80:75:f2:96:f9:7c:d3:94:aa:71:0a:
fa:4a:8e:95:81:7a:4d:1a:2f:10:b1:01:bf:84:d8:b0:ec:d2:
69:05:45:1a:46:37:48:51:e3:a7:07:38:8f:b4:51:1d:46:c4:
50:63:5f:e1:55:d7:32:bf:86:20:db:df:1e:d8:15:79:7d:33:
61:70:8e:4d:dc:ae:38:0d:84:86:11:a5:20:1e:54:10:ca:3d:
58:68:b8:40:5b:cc:de:6c:1a:57:d2:6d:40:85:b0:1d:68:e7:
a7:c2:ee:fd:41:41:62:05:42:6a:50:ea:34:45:3c:15:d5:b4:
ee:c9:0a:fb:bf:8d:66:4d:8d:da:46:8d:73:5a:79:1e:d6:3a:
29:27:40:9a:34:1c:d9:69:01:19:80:3e:54:78:c6:fe:d3:40:
65:1b:c1:9f:bd:ec:a8:b6:3e:16:6c:24:9e:6a:02:08:1a:26:
68:81:47:82:c5:60:b9:a4:71:3d:15:0a:c7:b2:70:a1:89:7e:
fd:0e:51:95:d0:48:aa:1c:8a:b7:a6:64:c4:0e:17:be:06:b8:
91:3e:96:7b:3f:7e:02:a4:5a:77:4d:8e:87:8d:a1:89:f1:e0:
e1:c1:aa:12:e3:df:4f:60:2f:e2:fe:cc:d7:66:46:37:e0:d1:
3b:62:37:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:49:10 2025 by rpki-client