Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/4paDEMltwKmMAyYNgrDG9xbR-d8.roa
File: 4paDEMltwKmMAyYNgrDG9xbR-d8.roa (raw, json)
Hash identifier: BNBjHzLA56Z9XhrFBXtmSUxcHfz4DMFqcE/grpJjUXo=
Subject key identifier: E2:96:83:10:C9:6D:C0:A9:8C:03:26:0D:82:B0:C6:F7:16:D1:F9:DF
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 0193FE9552926D878ABF12608D8C104BF41D
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/4paDEMltwKmMAyYNgrDG9xbR-d8.roa
Signing time: Wed 25 Dec 2024 16:10:19 +0000
ROA not before: Wed 25 Dec 2024 16:10:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 194.26.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:fe:95:52:92:6d:87:8a:bf:12:60:8d:8c:10:4b:f4:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Dec 25 16:10:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2968310c96dc0a98c03260d82b0c6f716d1f9df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e3:14:7f:35:8f:dc:59:66:94:0a:03:c0:80:
69:2d:a4:f5:4f:05:0a:10:b8:9a:fd:da:90:3e:04:
68:46:1d:52:d9:f7:38:4d:0e:32:f2:f4:d0:83:92:
d9:be:b3:16:51:74:dd:0b:6c:ae:f9:a0:24:30:24:
2c:63:82:e7:42:a9:7b:83:1b:fa:45:30:95:7d:17:
ad:68:e1:f5:cb:6d:32:f0:c3:1d:60:ca:d3:af:eb:
82:97:a2:91:3c:3a:f3:b3:57:55:6d:dc:9d:36:9d:
2c:40:0a:0b:48:48:75:66:fa:e7:56:9f:84:7e:89:
b9:12:9d:3f:01:ab:01:02:ba:3a:1c:68:42:95:5a:
7d:2b:78:f5:44:41:b9:0f:5f:c3:d7:12:78:da:46:
7a:fb:48:b2:be:45:30:b9:5e:3e:e5:cf:41:72:a9:
a4:9d:72:d5:5a:d5:17:90:00:46:54:69:1e:05:bf:
e8:c2:9a:d7:7e:58:aa:29:30:c6:ba:38:11:cf:91:
a5:14:7d:79:b9:ef:f7:3c:26:6e:fb:57:e7:02:9c:
a8:7b:1e:c7:f6:f6:f4:95:7f:f9:6f:db:36:e3:cc:
f4:47:9b:2d:26:2c:53:a0:58:dd:86:fd:92:b5:7b:
66:9c:cb:1d:05:a7:4a:ec:1b:69:19:36:f3:71:2f:
c0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:96:83:10:C9:6D:C0:A9:8C:03:26:0D:82:B0:C6:F7:16:D1:F9:DF
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/4paDEMltwKmMAyYNgrDG9xbR-d8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.227.0/24
Signature Algorithm: sha256WithRSAEncryption
26:54:3e:d3:96:05:8c:0f:cc:59:7c:0f:1e:fe:37:61:af:55:
6d:6e:69:3b:e7:ae:9b:d0:e4:6e:90:6c:3c:c2:17:bc:2e:6d:
e4:3e:53:c2:f7:0a:d4:57:cc:b2:a0:ed:6e:3f:71:0a:ed:f7:
c3:8e:07:24:6f:aa:d4:a1:62:05:3f:63:4a:b4:47:12:e5:6b:
68:cf:24:e9:24:9d:61:ad:2f:27:73:9c:6e:b4:30:49:81:17:
c9:f8:f3:79:8c:27:51:7e:03:8a:bf:b1:fd:61:84:cb:77:02:
29:4b:af:5a:29:f6:ee:1a:e2:50:d1:f5:11:83:3a:d9:fa:e2:
62:0e:f0:30:04:82:1e:0e:86:bc:a9:f1:ca:18:bf:b1:9b:28:
2f:96:67:cf:bc:6e:c1:fe:ea:36:fb:6c:99:25:e0:52:14:f4:
c0:d3:d4:18:78:94:cc:af:05:e6:d5:81:89:66:2a:ce:d5:76:
be:ba:aa:73:d7:ac:f6:c5:0f:d3:76:95:c0:ef:98:6c:fe:b3:
f3:70:b1:d9:25:02:92:7a:58:a1:0f:33:3f:35:88:90:48:87:
c5:c6:c2:ef:f0:1b:b3:60:94:57:ea:25:41:d1:1a:e7:17:15:
64:c4:33:25:52:27:80:b3:12:e3:df:52:30:0a:5d:ee:7d:51:
7b:8f:b2:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 04:55:54 2025 by rpki-client