Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/YUi7vuExnZeiuQmXzRToivGKy-Q.roa
File: YUi7vuExnZeiuQmXzRToivGKy-Q.roa (raw, json)
Hash identifier: gDHHOBSoDH7OnWGqsXGIvLCAEz29j+Y7JewYZkY8nTI=
Subject key identifier: 61:48:BB:BE:E1:31:9D:97:A2:B9:09:97:CD:14:E8:8A:F1:8A:CB:E4
Certificate issuer: /CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Certificate serial: 0191E12B2D6EB84081DE6595E832495E2C5E
Authority key identifier: 3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/YUi7vuExnZeiuQmXzRToivGKy-Q.roa
Signing time: Wed 11 Sep 2024 12:59:48 +0000
ROA not before: Wed 11 Sep 2024 12:59:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 213.190.14.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 23 Sep 2024 06:46:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:e1:2b:2d:6e:b8:40:81:de:65:95:e8:32:49:5e:2c:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bd9a177bb5dfb6eabe4cad79def8f8b005df656
Validity
Not Before: Sep 11 12:59:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6148bbbee1319d97a2b90997cd14e88af18acbe4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:65:43:3c:07:af:7b:53:79:f3:15:df:3f:33:
b6:dc:71:c1:8a:f4:11:a3:91:e4:8e:c4:07:e8:fb:
3d:27:6b:6f:5c:f0:b4:93:bc:f3:9d:8c:f8:fd:0f:
59:e3:09:c9:06:ac:98:54:95:2e:44:23:f2:2b:d0:
5d:92:38:5a:ec:3e:15:45:d6:62:c8:97:d8:49:9a:
02:52:ec:f3:c0:f7:f2:8e:6d:07:80:dc:24:9e:72:
ab:92:2a:0d:ea:60:3f:72:e0:e3:fb:8e:ac:34:14:
a7:e5:80:e1:86:db:d7:0d:2d:7a:e0:e8:bb:40:1c:
3e:30:ef:bb:22:8a:f8:6f:65:c4:7e:18:f5:65:d4:
54:af:e6:c1:2e:99:e9:d9:ea:10:c0:8f:56:fc:a6:
6b:b4:a9:b7:8e:b4:7f:a1:3b:f3:72:bd:64:56:4a:
de:5b:8c:e0:6b:63:58:3d:52:2c:92:4e:0e:d7:78:
9e:0d:ac:c8:ea:53:7e:8b:b6:ce:48:7a:2a:f8:5d:
b8:96:fb:55:17:9e:af:df:99:89:24:82:6e:6a:ec:
8a:53:12:f8:8d:6c:da:36:05:01:bb:14:44:7b:98:
ba:cc:92:7b:be:a7:57:3e:98:06:c9:df:80:45:f4:
17:07:6b:6c:3b:2e:70:c9:56:1e:07:4f:de:c5:5a:
f8:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:48:BB:BE:E1:31:9D:97:A2:B9:09:97:CD:14:E8:8A:F1:8A:CB:E4
X509v3 Authority Key Identifier:
keyid:3B:D9:A1:77:BB:5D:FB:6E:AB:E4:CA:D7:9D:EF:8F:8B:00:5D:F6:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O9mhd7td-26r5MrXne-PiwBd9lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/YUi7vuExnZeiuQmXzRToivGKy-Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/c0d467-f62a-419c-be85-e38030b69d5a/1/O9mhd7td-26r5MrXne-PiwBd9lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.190.14.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:8a:a0:79:64:c8:ea:4e:46:d3:32:75:28:61:8c:ea:57:ea:
8b:4f:24:8a:a4:e4:0b:27:a8:3d:b9:cd:97:97:50:a9:90:cc:
bb:1d:b1:33:e1:35:8c:fb:13:fa:0d:b3:68:d5:59:52:df:9c:
ca:b2:c2:3c:c7:ab:12:8c:0a:90:fd:f7:61:5b:2a:19:5f:3f:
65:bb:82:bc:c5:f6:0f:ad:3c:11:87:7f:05:29:53:74:65:23:
f4:44:df:e4:6d:e9:b9:4c:ab:65:ca:8b:ff:e0:76:8a:ad:ac:
68:c8:a5:20:aa:47:4b:cb:df:e8:94:07:bb:64:75:29:1c:71:
7b:ad:8c:19:cf:2b:d3:b0:ab:fe:98:37:b1:a0:f8:95:03:86:
25:01:dd:ad:ae:22:a3:bc:1c:b9:b5:ae:10:bd:e1:b7:1d:25:
9e:4e:d8:9d:bf:95:b9:f6:f0:ee:f5:3a:78:ba:0a:86:57:f1:
24:ff:22:1f:b3:66:e5:f2:7c:5b:5b:45:26:0f:5e:61:8c:7b:
e8:ec:42:23:f7:fb:bd:f8:cb:0c:da:5e:94:39:76:9a:c3:a1:
3e:ac:9f:9e:b9:cb:5a:d8:20:b2:b9:e4:e4:f2:91:4a:1f:51:
c8:d3:20:d8:30:0c:2f:bf:cc:f2:a8:99:24:75:f1:f9:50:3a:
2b:2c:33:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 20:33:14 2025 by rpki-client