Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/jQb5t1hQofNEBvU3T3-W3ASm1Ww.roa
File: jQb5t1hQofNEBvU3T3-W3ASm1Ww.roa (raw, json)
Hash identifier: OfPAbdl12Lx5C/ST536gdoARi8R0HQnyrDupKjYte3M=
Subject key identifier: 8D:06:F9:B7:58:50:A1:F3:44:06:F5:37:4F:7F:96:DC:04:A6:D5:6C
Certificate issuer: /CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Certificate serial: 0193680665E5AA0F44088698215076A29714
Authority key identifier: BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/jQb5t1hQofNEBvU3T3-W3ASm1Ww.roa
Signing time: Tue 26 Nov 2024 10:31:09 +0000
ROA not before: Tue 26 Nov 2024 10:31:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213830
IP address blocks: 91.82.75.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:68:06:65:e5:aa:0f:44:08:86:98:21:50:76:a2:97:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfb097a36c2325d1031ff4091ba00a86459d4288
Validity
Not Before: Nov 26 10:31:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d06f9b75850a1f34406f5374f7f96dc04a6d56c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:49:99:88:2b:a6:66:7d:77:23:3b:cb:cd:7e:
cd:b7:2e:6f:77:70:1d:1e:c2:14:67:df:42:fe:21:
45:e5:46:f5:4a:d6:7a:83:c3:7d:f4:cd:1b:ae:9b:
19:c0:bb:02:68:6f:7d:0f:52:f6:28:5d:44:bc:9a:
94:e6:9f:73:c9:fa:ea:5b:9d:97:00:2c:c8:b4:03:
ff:e9:9e:21:78:37:07:4f:c4:27:30:f3:79:79:5d:
3c:33:55:80:25:76:da:92:16:79:36:10:8f:01:c9:
39:0c:55:13:3a:bd:dc:94:7c:d7:13:05:8b:21:36:
a5:15:e3:1c:65:31:e6:1b:64:2e:15:df:e2:cd:b9:
65:a1:7b:74:99:84:1f:a1:5f:46:d7:c4:26:26:11:
22:94:67:69:ae:b7:a9:b2:9a:81:75:41:c3:4b:b5:
ab:dc:48:0e:d9:eb:66:da:02:91:b2:39:9d:48:4b:
ea:1b:7a:41:e9:94:ba:28:03:ea:9a:c8:52:86:dc:
64:93:a5:7e:af:ca:f9:4c:5c:7e:fa:f7:ff:99:60:
c2:d4:9b:fe:62:c6:f0:04:2f:64:d8:1d:01:20:55:
4e:97:2e:29:04:5e:81:e6:a6:19:67:07:85:2b:d7:
bf:ea:d0:73:a1:aa:87:a3:78:b1:42:b2:a0:e8:2e:
0a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:06:F9:B7:58:50:A1:F3:44:06:F5:37:4F:7F:96:DC:04:A6:D5:6C
X509v3 Authority Key Identifier:
keyid:BF:B0:97:A3:6C:23:25:D1:03:1F:F4:09:1B:A0:0A:86:45:9D:42:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v7CXo2wjJdEDH_QJG6AKhkWdQog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/jQb5t1hQofNEBvU3T3-W3ASm1Ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/f2c5e8-8d37-4838-a33b-ecc49bdc2ad8/1/v7CXo2wjJdEDH_QJG6AKhkWdQog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.82.75.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:a4:1f:fd:d3:37:e1:5f:94:10:5b:eb:df:9f:d3:f4:ca:5d:
42:42:c3:50:81:9f:5a:8a:46:1c:e2:eb:68:35:3e:d9:9e:bc:
cb:fa:c6:77:d0:fc:ca:17:6d:7f:77:5e:9b:96:d7:a1:31:76:
35:cb:45:93:6d:77:c8:19:e4:85:67:24:00:27:0a:ef:fc:73:
89:1e:b5:70:46:cf:b9:84:ad:60:7d:10:38:6c:96:0f:30:17:
bd:35:73:5e:ca:4e:4e:2a:3b:7d:6d:44:02:fa:50:39:ea:79:
b3:d7:15:3c:3d:f8:f3:cd:ba:0f:39:5e:3a:0e:b2:1a:11:8d:
83:08:dc:0c:6a:28:39:31:3f:e6:e4:fd:e9:36:d0:cf:ec:ca:
55:f3:e7:96:95:b5:bf:da:7d:73:65:98:a2:c5:b8:c9:b6:91:
a8:70:0d:ea:96:0b:5e:68:b7:db:31:c7:65:ba:53:9d:32:70:
84:87:02:bd:b7:48:4e:b7:e0:07:6c:53:24:20:84:9d:52:6b:
fa:53:db:8e:37:63:c6:f0:7d:37:b6:e5:d3:dd:47:36:f9:d8:
e6:a1:1d:0a:4a:72:ec:e4:df:44:88:0f:4f:3e:9e:6a:e5:d2:
74:4b:33:8c:89:d9:fe:92:a0:e0:dd:fd:0f:1a:ae:21:ed:14:
16:83:cf:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 01:15:20 2025 by rpki-client