Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/JxsAD2XpymkdC1Wa5QNqqaOY6Dg.roa
File: JxsAD2XpymkdC1Wa5QNqqaOY6Dg.roa (raw, json)
Hash identifier: Dr1pq7URomsObFHTL7zcpbYm2ecB/uAA0JCxFM70SEk=
Subject key identifier: 27:1B:00:0F:65:E9:CA:69:1D:0B:55:9A:E5:03:6A:A9:A3:98:E8:38
Certificate issuer: /CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Certificate serial: 0193507E3A7F04652CB74B3C6831F247CFAB
Authority key identifier: B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/JxsAD2XpymkdC1Wa5QNqqaOY6Dg.roa
Signing time: Thu 21 Nov 2024 20:51:09 +0000
ROA not before: Thu 21 Nov 2024 20:51:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47802
IP address blocks: 193.43.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:52:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:50:7e:3a:7f:04:65:2c:b7:4b:3c:68:31:f2:47:cf:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b62d4cec783305923e3497ed884f1c445b4e78fb
Validity
Not Before: Nov 21 20:51:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=271b000f65e9ca691d0b559ae5036aa9a398e838
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f3:75:28:ac:cf:b5:d1:8b:6f:45:47:76:4c:
5b:7e:50:9f:0a:e2:d2:ef:85:d9:4d:9c:c9:96:de:
ce:03:6c:e3:4d:80:e5:5a:79:3a:a0:2e:69:6f:6f:
50:ae:7a:f2:ea:92:6f:7f:3c:70:db:ed:fb:fa:c8:
12:34:ec:f4:cd:db:f5:d7:02:5c:c7:ce:de:d8:7c:
9a:d5:c7:a4:61:7e:0c:39:bf:ce:32:7f:6d:ee:64:
f8:ba:76:af:29:71:f7:10:60:6f:45:ca:f4:d9:c3:
3c:c6:47:e0:48:d1:47:0c:12:e2:22:38:74:52:df:
c0:bd:2b:b4:ff:e4:51:93:93:d9:05:fd:b8:d9:8d:
c8:0a:a5:3e:b1:88:0d:50:9f:b1:b8:14:92:05:76:
54:28:65:c8:24:3f:0b:79:08:46:ab:6d:98:e4:3c:
79:a9:aa:ac:26:12:7b:bb:0a:51:40:7d:5a:3d:5f:
62:48:53:67:e6:ec:fa:e7:61:52:01:1f:36:75:5a:
ce:72:89:6f:20:67:8a:34:68:c6:e0:e2:54:7d:7c:
98:c5:d4:c3:7b:f4:b1:59:7d:46:41:45:31:20:93:
b5:43:d6:9c:f6:8e:61:75:42:a2:bb:7e:7a:64:c0:
e7:2a:f4:49:32:3b:56:3b:7f:19:64:df:d6:b8:96:
1e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:1B:00:0F:65:E9:CA:69:1D:0B:55:9A:E5:03:6A:A9:A3:98:E8:38
X509v3 Authority Key Identifier:
keyid:B6:2D:4C:EC:78:33:05:92:3E:34:97:ED:88:4F:1C:44:5B:4E:78:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ti1M7HgzBZI-NJftiE8cRFtOePs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/JxsAD2XpymkdC1Wa5QNqqaOY6Dg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/f1b3da-bebf-44b0-ab12-d32e27fb7e59/1/ti1M7HgzBZI-NJftiE8cRFtOePs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.43.105.0/24
Signature Algorithm: sha256WithRSAEncryption
27:f7:0a:50:57:6f:2a:14:ea:10:c9:9e:c6:f8:03:80:38:89:
72:0f:48:43:f9:39:af:e2:c0:57:1f:0c:0b:69:75:3f:17:19:
7e:86:a7:0a:a3:9c:c2:00:6b:6d:a8:57:fd:e2:c6:e6:c5:0e:
76:96:a9:bb:fa:0f:22:79:be:35:ae:da:ae:26:33:34:a4:cc:
06:81:0c:a9:59:2a:d6:04:9a:94:c8:92:7e:f3:ec:84:db:0a:
0a:f2:d3:e6:09:5b:50:0d:2e:42:46:60:13:83:b2:aa:60:8f:
e5:51:d2:30:b4:72:e8:b4:11:3b:b4:6e:1a:13:5d:51:d0:93:
48:6e:c5:aa:ef:5e:df:4b:7f:24:5f:d5:f2:05:44:76:a6:88:
b7:af:fb:54:3b:ef:8d:29:5d:9a:de:95:fb:c9:0b:11:ad:c3:
a3:0c:7f:8c:91:29:31:a6:e8:04:9e:31:de:66:db:98:33:b6:
af:25:61:58:59:32:62:ca:27:77:62:7d:47:52:cb:09:ef:6f:
95:38:bf:cd:b8:a9:11:01:24:67:c4:7f:23:1d:e2:1c:43:bf:
48:d1:10:f0:f3:29:d2:ac:7c:6d:9b:a0:2c:9f:69:53:01:a0:
35:25:04:93:2a:5d:13:6e:71:56:7f:23:87:fc:a7:2c:c5:a3:
74:c5:70:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:44:13 2025 by rpki-client