Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/yORx0vgOOKGUaAiDaZ9BIqgui8E.roa
File: yORx0vgOOKGUaAiDaZ9BIqgui8E.roa (raw, json)
Hash identifier: yeGe0qiSqqa4ZYmhRPHgn4l60HdvhiCHGCGqEZX8Kf0=
Subject key identifier: C8:E4:71:D2:F8:0E:38:A1:94:68:08:83:69:9F:41:22:A8:2E:8B:C1
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 018CCA2BC163930923C0F7AB1291DCD54DBE
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/yORx0vgOOKGUaAiDaZ9BIqgui8E.roa
Signing time: Tue 02 Jan 2024 12:35:14 +0000
ROA not before: Tue 02 Jan 2024 12:35:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204021
IP address blocks: 213.189.49.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:48:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2b:c1:63:93:09:23:c0:f7:ab:12:91:dc:d5:4d:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 12:35:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8e471d2f80e38a194680883699f4122a82e8bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fb:ab:bd:74:44:f3:32:4a:0e:98:71:b5:30:
26:d4:d6:d6:f1:37:d1:a4:01:ca:8a:30:52:81:8a:
02:51:ed:0c:f6:0f:c1:5e:71:c6:83:89:b9:79:8a:
70:3e:41:12:9e:f8:7b:a2:80:d6:29:19:02:67:8c:
41:01:aa:00:21:e7:5d:42:ec:13:88:20:d3:cb:0f:
68:4b:be:ea:98:15:cc:ff:20:bb:81:90:78:0e:e3:
55:dd:9c:77:e9:8c:8e:81:7a:70:3c:98:58:03:8d:
8e:27:0f:cb:ca:f1:3f:59:e3:e2:1f:ee:45:8c:62:
69:c1:cc:32:56:46:10:1c:bb:c4:b2:b5:ba:7c:e6:
6f:b1:92:06:7c:04:18:eb:fc:bf:7a:00:5f:46:db:
98:85:59:0a:0a:6e:4a:1d:f5:73:4b:60:88:b2:88:
c2:fc:38:95:44:b7:ec:31:73:de:13:89:88:31:b7:
c6:56:2f:8d:aa:f0:d9:7d:92:80:33:b5:2c:b8:89:
32:02:db:91:80:c9:08:cd:9b:dc:d6:2c:1a:5a:e5:
0c:d1:2e:f4:d5:72:cf:60:bc:3f:9b:93:9e:6d:51:
06:6e:e6:d0:1a:8b:dc:b2:3f:f4:ed:99:d3:de:17:
8d:a0:ee:db:eb:4b:b2:62:87:a8:fc:de:74:4f:ef:
c3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:E4:71:D2:F8:0E:38:A1:94:68:08:83:69:9F:41:22:A8:2E:8B:C1
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/yORx0vgOOKGUaAiDaZ9BIqgui8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.189.49.0/24
Signature Algorithm: sha256WithRSAEncryption
66:f8:29:aa:92:fe:d7:b2:44:8b:db:03:95:27:96:85:9c:48:
bf:ca:db:4e:d5:35:4f:7e:38:81:28:a1:bb:d3:dc:de:23:57:
e7:bc:7b:e0:be:bb:cc:28:ec:e5:ad:26:7a:e4:6c:6d:d7:44:
2a:85:b6:49:5a:37:84:db:f3:99:f0:0c:cb:f7:a0:ff:a9:49:
f8:77:55:fb:61:cb:54:12:a8:f8:71:72:74:2b:4e:7f:d6:30:
ca:89:c6:b9:fa:4b:33:b6:bc:86:f3:c5:7e:7c:a8:ed:8a:c3:
a7:66:4f:0e:1b:9c:79:dc:66:ce:03:76:ba:1a:2c:56:80:4d:
7e:75:12:d9:8b:30:fd:83:c9:50:aa:3c:25:60:9c:59:8a:c2:
5e:40:79:ae:e9:c8:4c:6c:29:e1:7c:b6:fe:ae:82:ce:99:f5:
5b:0a:da:ee:77:42:6d:e4:5f:ad:9a:83:c2:94:54:2d:1a:cc:
ad:89:d9:41:33:4f:d1:eb:53:79:bc:e3:35:0a:42:f9:4d:7a:
2a:10:25:56:6e:bf:5c:71:b9:86:b6:bb:04:e9:5d:7c:9a:53:
12:a6:42:dc:0f:e3:b3:13:79:92:82:1d:7e:3b:88:ef:f2:35:
d4:a4:55:bd:6f:67:92:d4:4d:4a:c1:ec:27:5e:22:77:95:fe:
a4:ca:cd:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:27 2025 by rpki-client