Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/AlnN1wh7a-SDkOvtnBDmSVbn74A.roa
File: AlnN1wh7a-SDkOvtnBDmSVbn74A.roa (raw, json)
Hash identifier: 7aoYQ4WlSVKZEdtBG6TyMMRAtRRINUYooRq9kG0Fy7A=
Subject key identifier: 02:59:CD:D7:08:7B:6B:E4:83:90:EB:ED:9C:10:E6:49:56:E7:EF:80
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 0195391BE1DAF83755579DA7552A4CC49E43
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/AlnN1wh7a-SDkOvtnBDmSVbn74A.roa
Signing time: Mon 24 Feb 2025 17:58:03 +0000
ROA not before: Mon 24 Feb 2025 17:58:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212150
IP address blocks: 94.103.187.0/24 maxlen: 24
176.118.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 26 Feb 2025 07:06:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:39:1b:e1:da:f8:37:55:57:9d:a7:55:2a:4c:c4:9e:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Feb 24 17:58:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0259cdd7087b6be48390ebed9c10e64956e7ef80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:24:1a:49:ec:e9:6c:12:63:6d:11:e9:e1:d7:
4e:da:c3:aa:af:3b:70:7c:ff:69:fd:94:65:b3:f2:
3e:c5:38:42:66:c6:ca:b2:ed:2f:ec:79:57:84:ab:
b6:2b:39:8d:f7:33:06:da:39:d4:00:07:ef:69:de:
16:46:49:8e:7e:ae:9f:4d:02:0a:14:30:db:77:0e:
f2:86:e4:46:82:f6:7b:46:df:ca:70:34:b7:e0:40:
2b:8c:b4:1f:db:3c:30:8b:21:10:60:e5:89:1c:14:
03:ed:9a:62:86:81:93:6a:fa:1c:51:1b:74:5e:07:
80:f3:c4:43:09:29:da:47:64:61:e7:e7:4d:74:35:
7d:bd:00:30:3b:bb:99:0f:22:aa:5f:7d:00:01:af:
e8:a5:06:80:7d:4b:e9:82:e1:60:dc:00:af:1c:b2:
c5:52:7b:92:8a:5a:2d:8b:56:89:da:b8:51:50:8f:
21:1f:1e:b4:4c:ae:d4:0d:42:89:f9:56:1b:50:eb:
e4:50:eb:c2:69:42:c8:f4:24:2b:7a:55:d3:da:8b:
37:01:17:5a:5f:22:72:8a:67:d0:32:32:86:d4:b8:
51:29:c3:fc:4c:5f:d2:57:05:4b:aa:c3:6b:5a:02:
ea:5b:18:43:b2:b7:d6:dd:f4:ac:a3:5f:d3:88:04:
f3:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:59:CD:D7:08:7B:6B:E4:83:90:EB:ED:9C:10:E6:49:56:E7:EF:80
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/AlnN1wh7a-SDkOvtnBDmSVbn74A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.187.0/24
176.118.33.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:02:3e:db:00:45:eb:3d:97:62:23:83:ab:d6:e8:cc:f7:b1:
98:2d:d2:da:a4:6f:b8:2a:56:a2:43:56:74:5c:8b:99:cf:2b:
da:ea:74:cf:5d:d1:71:f3:8c:1f:92:da:b6:f4:5d:d2:a2:66:
4d:08:4f:8c:57:81:98:1d:65:84:48:78:d8:e4:e7:71:e1:06:
96:a6:54:aa:61:98:2d:8f:22:92:80:53:a9:e6:0f:00:75:18:
9f:ee:47:bc:4c:85:5f:43:8a:02:83:f6:3a:55:ce:ac:8f:a8:
e1:83:01:20:2d:9c:cb:a2:ca:03:60:dd:0f:6d:2f:18:2a:c8:
33:5f:d0:43:31:e3:30:4b:af:f4:5a:a4:50:5d:86:25:5b:8e:
55:c0:86:c6:7a:57:99:05:5d:c0:1b:77:90:bc:14:39:5c:28:
56:53:36:c2:77:cd:43:74:11:02:4c:39:2a:0b:ee:f6:4b:50:
9d:46:3c:3c:5e:f9:58:a0:4c:92:4b:92:87:a4:b8:b1:29:2a:
80:77:d9:72:6a:51:7d:c9:dd:b8:c4:d8:c9:58:f3:2d:af:97:
ad:9b:b4:bf:9d:14:52:33:69:55:95:ce:f1:7b:99:7b:c2:25:
80:8e:c8:18:51:c2:b6:4a:91:23:75:12:45:58:f4:9b:fe:01:
c3:9f:68:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:44:41 2025 by rpki-client