Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/NFpJazYTVRkJ8UfPD16wGM9GF3E.roa
File: NFpJazYTVRkJ8UfPD16wGM9GF3E.roa (raw, json)
Hash identifier: 6cWp5QVd9twlgtlbP6iVpjC7F9OfL1DmH2T/GZTiOKU=
Subject key identifier: 34:5A:49:6B:36:13:55:19:09:F1:47:CF:0F:5E:B0:18:CF:46:17:71
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 018CC348CFB3F85E0CEC8498E9FB615BCA80
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/NFpJazYTVRkJ8UfPD16wGM9GF3E.roa
Signing time: Mon 01 Jan 2024 04:29:38 +0000
ROA not before: Mon 01 Jan 2024 04:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9096
IP address blocks: 217.192.86.0/24 maxlen: 24
212.243.80.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:47:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:cf:b3:f8:5e:0c:ec:84:98:e9:fb:61:5b:ca:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 04:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=345a496b3613551909f147cf0f5eb018cf461771
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:cb:a6:5f:ca:68:70:8a:3b:93:d8:69:81:27:
99:fd:76:50:09:e9:e3:1d:1d:60:3a:b7:76:75:33:
36:c9:86:48:f7:b7:7b:1f:86:d3:a0:8f:47:3d:18:
a1:46:07:23:31:91:17:38:19:b7:17:cc:49:8e:82:
19:5d:b7:9e:a9:e7:cf:bf:f1:f9:e9:aa:fa:ec:75:
7d:28:eb:09:88:7d:95:e5:ee:fc:4e:d8:38:d3:8c:
67:c0:7c:39:f3:bf:a3:52:d7:47:fc:eb:ed:17:3b:
87:23:75:2e:4f:49:ee:d8:62:95:54:41:88:7c:b4:
7a:a8:35:2a:3b:4d:6d:68:a0:91:89:ae:12:ca:8a:
41:24:62:c4:84:97:ba:16:af:fd:28:19:4f:74:ca:
fb:f3:73:61:1e:5e:a4:77:59:0e:51:fe:f7:23:57:
4e:d2:bc:58:37:80:b1:88:63:e1:e1:a4:0f:f2:7b:
8b:f4:0c:71:73:3d:9f:7f:27:85:ac:8b:d2:cf:6c:
d5:35:e7:cb:3e:23:a0:1b:ff:d0:8c:d2:0d:77:f2:
87:d2:31:01:32:c5:82:b8:4e:23:54:04:3b:8a:d2:
7c:74:0e:90:2a:ff:79:a9:4b:88:0c:17:fb:c4:17:
81:88:90:84:30:44:d7:c7:f6:94:2f:e7:68:be:a0:
d3:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:5A:49:6B:36:13:55:19:09:F1:47:CF:0F:5E:B0:18:CF:46:17:71
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/NFpJazYTVRkJ8UfPD16wGM9GF3E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.243.80.0/24
217.192.86.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:d0:e7:0d:73:60:2d:7d:af:9c:41:b5:be:8e:6b:98:44:f2:
6b:43:78:65:3f:ee:47:60:3c:a3:f0:95:14:85:87:2b:bf:a5:
22:21:16:c7:d1:be:20:3d:99:bb:46:aa:ee:5c:95:b7:70:27:
83:07:74:42:b4:bd:02:fd:89:cc:af:95:f3:bd:81:fd:3f:ba:
7a:10:01:13:98:f6:68:a9:61:43:fa:fc:c7:bc:63:23:50:79:
bd:38:b9:b8:ed:ef:78:12:77:66:7a:c8:aa:f7:b3:f5:ed:13:
83:f9:b5:0c:fa:45:c5:ee:7f:a0:0c:2a:49:c2:7c:d5:86:e7:
fa:33:99:79:7f:8d:96:5c:6e:54:56:aa:c5:e4:68:07:c1:df:
73:5f:20:c8:b8:31:60:ee:42:e2:f1:ba:7c:46:2b:ad:3a:d8:
ec:9a:74:50:30:6c:50:33:55:dc:16:c1:44:66:05:36:19:53:
1e:a7:ce:68:b1:93:65:af:66:4c:07:39:9a:33:c7:5c:5b:29:
72:85:49:91:fe:98:7e:1c:6c:af:e4:2b:ba:6a:56:66:79:fa:
70:08:03:6e:13:1e:c8:b6:70:a8:ec:d7:87:10:08:b5:10:87:
e5:ef:8a:77:1b:a5:93:9c:7c:9c:65:da:1f:ff:b9:b8:60:f4:
23:ab:a3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:36:23 2025 by rpki-client