Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/n0283Joy354voTdsqyYTLxmTnbU.roa
File: n0283Joy354voTdsqyYTLxmTnbU.roa (raw, json)
Hash identifier: vE3KFU4uTxyLkdIsDBFC1faIgGApPcyZDo8tJr8LJw4=
Subject key identifier: 9F:4D:BC:DC:9A:32:DF:9E:2F:A1:37:6C:AB:26:13:2F:19:93:9D:B5
Certificate issuer: /CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Certificate serial: 01939D2AB6A2521CAE9632DEB360C47E395F
Authority key identifier: BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/n0283Joy354voTdsqyYTLxmTnbU.roa
Signing time: Fri 06 Dec 2024 18:10:42 +0000
ROA not before: Fri 06 Dec 2024 18:10:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215523
IP address blocks: 79.135.100.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:49:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:9d:2a:b6:a2:52:1c:ae:96:32:de:b3:60:c4:7e:39:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb0d4e85937b7a0f271054d28614f2934d4ea500
Validity
Not Before: Dec 6 18:10:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9f4dbcdc9a32df9e2fa1376cab26132f19939db5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:17:d2:6f:fc:30:4b:2c:ff:fa:fa:29:1c:df:
31:f0:4a:35:35:91:2e:fa:25:4c:99:9f:01:56:05:
84:70:54:ea:67:07:b4:18:27:15:f9:ce:fc:35:f4:
91:78:ff:78:0d:c1:2d:13:f9:96:76:95:81:02:03:
df:31:7d:af:28:ca:c5:7d:11:5b:e1:ad:d9:8e:61:
59:d6:1e:68:91:e4:c6:3a:80:6d:a3:13:40:c8:80:
14:d1:6d:b6:63:3b:66:75:99:4d:b2:e3:83:6f:db:
04:cc:30:ec:f5:f7:a8:4b:f0:e3:68:e1:f1:e9:25:
56:46:cd:0a:b1:fc:d9:fe:42:1a:96:93:e3:af:c4:
7d:fe:98:89:b5:02:ab:ac:ef:dd:df:17:11:c5:c7:
1a:4e:7c:32:70:72:28:48:3a:48:4e:48:c2:c9:09:
2e:e5:d2:be:3f:be:23:32:19:e9:3f:61:84:20:f2:
02:3d:9e:a9:f3:d1:c9:da:e2:f3:c3:49:b7:84:44:
2c:ff:df:e5:5b:7b:04:6b:7d:a4:8b:f5:da:32:a8:
72:09:94:c9:d9:7b:f5:f2:77:93:8c:d4:a2:e3:13:
a8:ea:82:28:73:9a:77:57:e3:43:47:63:6b:ad:ca:
73:e6:37:33:1d:66:66:6d:9d:3d:0d:c1:3e:0e:79:
a2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:4D:BC:DC:9A:32:DF:9E:2F:A1:37:6C:AB:26:13:2F:19:93:9D:B5
X509v3 Authority Key Identifier:
keyid:BB:0D:4E:85:93:7B:7A:0F:27:10:54:D2:86:14:F2:93:4D:4E:A5:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uw1OhZN7eg8nEFTShhTyk01OpQA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/n0283Joy354voTdsqyYTLxmTnbU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/d17527-cf98-4d37-866f-8e9b98a99cdb/1/uw1OhZN7eg8nEFTShhTyk01OpQA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.135.100.0/23
Signature Algorithm: sha256WithRSAEncryption
21:be:6f:03:4f:41:82:62:6b:c2:20:b0:95:71:0b:5f:98:5b:
91:e4:cd:24:1f:d8:65:3c:76:b3:d0:cf:ab:4b:ee:ce:03:cc:
e1:1c:35:b9:5f:e9:f1:05:a8:2f:fa:5a:39:2f:fd:de:1a:88:
83:f9:7c:91:c8:55:d8:b2:b7:9b:f9:47:2c:4c:91:1a:e4:e9:
d8:3d:95:e2:89:09:e4:9f:02:45:ef:73:62:8a:c9:a7:9e:a1:
29:c2:81:4a:a4:f5:fc:4b:6b:a9:f1:f4:6a:28:78:e4:19:75:
f1:17:87:97:54:4b:19:a7:44:ec:a2:6a:4f:1d:49:17:e5:c8:
dc:ea:2c:2b:f9:ad:e0:ef:47:b0:a0:72:94:7f:b0:cb:cf:76:
05:a5:af:bd:34:e4:cb:f5:02:97:a2:76:ba:48:cc:6c:97:b3:
3a:55:8a:bb:d0:30:e9:7d:3f:8f:af:d5:3b:3b:df:21:d1:5c:
e8:e3:73:b0:be:3e:d8:31:f3:9c:25:4d:42:17:14:31:59:74:
c3:e6:fd:c0:83:26:2f:b7:af:e7:08:87:3e:00:58:a5:1f:8a:
8a:cb:49:16:68:bb:dc:b5:1a:9e:19:09:7d:97:6a:c2:79:fd:
ee:36:61:c2:c9:b7:5c:0d:3d:af:fb:25:4d:27:54:71:23:dc:
b3:25:f3:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 11:10:58 2025 by rpki-client