Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/ed7cb2-e387-47bf-be4a-08f2263a413c/1/pKUB3EwIza7Kyf2dTfbOEO8Xm2s.roa
File: pKUB3EwIza7Kyf2dTfbOEO8Xm2s.roa (raw, json)
Hash identifier: jpRHSziwB49HJ3Q2lqciexAeghZuq6G5gWUahNM/OEU=
Subject key identifier: A4:A5:01:DC:4C:08:CD:AE:CA:C9:FD:9D:4D:F6:CE:10:EF:17:9B:6B
Certificate issuer: /CN=ce94c31e15df4b7a60e5d40df3aac1852e8da74b
Certificate serial: 018D92A1D39B11597FE19B08C5014F49A3BF
Authority key identifier: CE:94:C3:1E:15:DF:4B:7A:60:E5:D4:0D:F3:AA:C1:85:2E:8D:A7:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zpTDHhXfS3pg5dQN86rBhS6Np0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/ed7cb2-e387-47bf-be4a-08f2263a413c/1/pKUB3EwIza7Kyf2dTfbOEO8Xm2s.roa
Signing time: Sat 10 Feb 2024 10:48:15 +0000
ROA not before: Sat 10 Feb 2024 10:48:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41872
IP address blocks: 193.178.156.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:92:a1:d3:9b:11:59:7f:e1:9b:08:c5:01:4f:49:a3:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce94c31e15df4b7a60e5d40df3aac1852e8da74b
Validity
Not Before: Feb 10 10:48:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4a501dc4c08cdaecac9fd9d4df6ce10ef179b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:36:31:4f:6f:a9:a5:43:c3:c9:f4:82:55:51:
68:f2:90:0f:42:54:64:11:83:11:35:02:b5:06:0d:
70:09:2f:f6:d0:1a:2c:f2:d8:c4:4c:4e:44:88:af:
b1:95:b7:29:0d:7f:ca:92:5c:a4:c0:a2:09:03:e5:
3e:3a:20:c0:82:4b:08:62:e1:10:b0:17:e6:55:a9:
f1:c0:38:97:64:f7:a0:71:91:6a:a7:00:52:d3:88:
8f:c8:b8:6f:89:1d:38:32:2c:d0:6f:13:ad:d5:62:
bf:f0:8d:64:88:4f:34:21:9a:7f:9c:f8:92:d4:ef:
b1:d7:81:dd:3c:86:a8:6f:69:7d:21:43:5a:95:d8:
22:42:b7:ca:be:f4:4a:03:e7:dc:53:b0:11:ea:22:
9b:7b:ef:44:dc:98:10:76:ae:6a:d7:ce:17:52:b1:
0b:5d:11:42:e3:44:1c:62:cc:a9:1a:b5:eb:ab:71:
d9:29:fe:9b:05:de:e0:38:42:e9:fc:7a:c7:78:26:
7c:58:a0:22:c9:2a:74:20:e9:02:b2:ca:c0:83:e5:
af:6f:52:7d:de:f7:09:27:3a:38:6a:dc:9f:e9:ce:
03:b0:13:9a:b1:d4:0e:42:5c:d9:71:59:03:1d:c6:
a5:48:39:81:f9:6b:03:df:27:d0:be:00:5f:ae:49:
65:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:A5:01:DC:4C:08:CD:AE:CA:C9:FD:9D:4D:F6:CE:10:EF:17:9B:6B
X509v3 Authority Key Identifier:
keyid:CE:94:C3:1E:15:DF:4B:7A:60:E5:D4:0D:F3:AA:C1:85:2E:8D:A7:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zpTDHhXfS3pg5dQN86rBhS6Np0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ed7cb2-e387-47bf-be4a-08f2263a413c/1/pKUB3EwIza7Kyf2dTfbOEO8Xm2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/ed7cb2-e387-47bf-be4a-08f2263a413c/1/zpTDHhXfS3pg5dQN86rBhS6Np0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.178.156.0/23
Signature Algorithm: sha256WithRSAEncryption
ab:93:1e:55:aa:bf:9a:15:91:65:86:9c:82:1a:9d:e2:99:f1:
5e:23:05:ba:a9:66:3c:2b:5f:8b:17:ec:44:7a:0d:18:c3:48:
ab:71:a3:70:b9:95:2d:1b:20:c9:07:08:ca:bc:e6:23:07:62:
59:7a:20:42:cb:0c:5e:e2:56:13:d3:4c:e7:49:7a:d4:df:18:
8a:b1:f6:83:4b:3e:5d:5f:91:27:51:d9:1f:4f:b1:0a:09:4e:
1a:87:17:18:77:85:85:21:1f:25:d1:49:f7:b5:84:d7:d1:f8:
a8:54:b6:3f:3f:4a:cb:ac:9c:40:ed:23:ef:1d:15:25:1c:52:
1e:32:0b:d3:61:48:a6:a5:02:5d:14:cc:d2:97:21:19:f6:b6:
df:af:51:53:ce:83:80:8d:97:55:e2:9a:04:dc:79:8b:3f:9c:
d3:86:78:e5:93:c3:a3:78:e3:f3:8f:98:c6:23:b8:e9:73:f4:
72:c3:03:64:f9:93:ad:30:f9:58:93:d0:11:ed:b7:bf:55:c6:
78:b7:0a:01:9c:49:b5:ac:13:31:22:b3:7e:5f:92:cd:f5:6c:
9d:d2:e2:65:94:bf:77:bd:4c:55:8b:69:ae:4c:eb:12:e1:70:
cd:ac:8a:18:d5:78:07:f1:30:82:04:cf:39:75:8e:2a:97:c3:
0d:32:79:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:47:21 2025 by rpki-client