Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/c59b61-9115-415f-81f2-a4c1bbcb8c97/1/SAukptpcCeeom6mj0WHG44z4XWo.roa
File: SAukptpcCeeom6mj0WHG44z4XWo.roa (raw, json)
Hash identifier: NW7lhUVnDmxD6po2bKT7LCSMzI1RhO94ztMlYlprGPE=
Subject key identifier: 48:0B:A4:A6:DA:5C:09:E7:A8:9B:A9:A3:D1:61:C6:E3:8C:F8:5D:6A
Certificate issuer: /CN=952ddcb35078267f4f3752e5b4ccc65a663a63e7
Certificate serial: 0192BDE41F0FE792E938238F2AD46F20CD6B
Authority key identifier: 95:2D:DC:B3:50:78:26:7F:4F:37:52:E5:B4:CC:C6:5A:66:3A:63:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lS3cs1B4Jn9PN1LltMzGWmY6Y-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/c59b61-9115-415f-81f2-a4c1bbcb8c97/1/SAukptpcCeeom6mj0WHG44z4XWo.roa
Signing time: Thu 24 Oct 2024 09:38:16 +0000
ROA not before: Thu 24 Oct 2024 09:38:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202407
IP address blocks: 193.56.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bd:e4:1f:0f:e7:92:e9:38:23:8f:2a:d4:6f:20:cd:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=952ddcb35078267f4f3752e5b4ccc65a663a63e7
Validity
Not Before: Oct 24 09:38:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=480ba4a6da5c09e7a89ba9a3d161c6e38cf85d6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:4a:0c:0d:b5:32:f0:56:55:8f:92:49:c6:d0:
1a:df:00:ad:61:57:b4:46:ca:80:44:0d:ee:45:9e:
1e:e6:22:9e:f9:33:99:2f:9f:ee:c5:f9:47:ce:64:
aa:dc:63:a7:76:30:30:03:43:f6:0e:65:b2:32:69:
02:02:1c:81:64:6f:0f:e2:1c:ba:a4:80:69:c3:aa:
21:b2:73:6b:ec:4b:7a:93:c3:4a:8e:79:e2:46:9f:
80:86:cb:2b:4f:34:42:7b:0c:12:13:aa:81:ac:80:
5f:be:5a:9e:79:29:47:c5:38:d4:cb:da:ce:75:33:
70:6c:fc:ee:da:f7:4a:7d:99:6a:86:e5:d9:1d:8a:
ed:8c:07:7d:a9:1c:d3:17:2e:ed:5e:8e:e6:9a:94:
ff:fe:c8:01:fd:d7:b9:ba:6e:5b:be:57:e4:25:20:
65:67:93:76:de:ec:cb:12:3a:95:f1:4a:6f:83:f8:
8e:55:60:d9:23:7c:30:ea:87:e5:da:2f:f1:fa:24:
8a:12:f1:34:e5:7e:f0:1f:19:f8:8a:83:84:8f:ab:
f4:a8:35:84:48:4d:e6:b6:3b:e5:13:f6:e6:b5:a5:
a1:e9:2b:53:e7:dd:84:52:5a:d3:57:9d:77:7f:2a:
5d:b0:d4:78:d7:ef:18:c6:a1:9b:73:c8:ef:fb:75:
3d:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:0B:A4:A6:DA:5C:09:E7:A8:9B:A9:A3:D1:61:C6:E3:8C:F8:5D:6A
X509v3 Authority Key Identifier:
keyid:95:2D:DC:B3:50:78:26:7F:4F:37:52:E5:B4:CC:C6:5A:66:3A:63:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lS3cs1B4Jn9PN1LltMzGWmY6Y-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c59b61-9115-415f-81f2-a4c1bbcb8c97/1/SAukptpcCeeom6mj0WHG44z4XWo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/c59b61-9115-415f-81f2-a4c1bbcb8c97/1/lS3cs1B4Jn9PN1LltMzGWmY6Y-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.56.196.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:ef:f9:c2:28:44:e7:4f:8d:6f:9c:be:f0:2d:ba:99:4b:8e:
bb:4d:a9:9d:71:2a:90:e4:6a:19:ee:a2:14:5b:6a:5c:10:ee:
1d:d4:59:28:2c:7f:09:83:70:e1:ec:90:74:bd:e0:da:89:c8:
b1:f7:17:8a:48:f3:0a:5b:52:80:d1:6a:58:59:1d:6f:be:e1:
4b:38:3e:64:ad:02:e5:42:79:48:74:61:72:56:de:1e:1b:65:
7d:d1:5d:ab:b9:df:05:78:03:6a:2f:de:1e:7b:41:39:ca:1b:
4e:74:03:5c:66:e9:38:9e:1d:b3:f1:c9:6c:04:4b:98:44:64:
68:b1:e0:1a:2b:20:e6:a0:7e:55:61:a1:62:23:a9:0c:f0:19:
08:6f:e8:30:d2:6b:69:9b:a0:63:fd:9f:e3:76:65:0a:ad:0a:
b9:8e:b4:f6:3e:fe:c1:73:7f:2a:84:0d:86:99:f8:03:c4:98:
5e:7a:09:ab:b7:dc:7c:c1:68:4a:c6:d7:88:3e:db:74:a6:e9:
58:3a:d0:35:3e:2a:82:6d:31:8c:40:10:93:e1:3d:f3:e6:3a:
31:d5:0e:d7:5c:4c:ae:84:0d:31:d3:f7:a4:7c:4f:80:28:af:
38:63:ea:f0:e2:38:52:c5:6c:e0:40:54:40:82:9e:05:51:04:
b5:7e:9b:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:45 2025 by rpki-client