Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/01484c-5f28-42f5-b9ea-0787a503ca69/1/9Z_Qh2V5IvlAI_CO4SPIPy2uXHA.roa
File: 9Z_Qh2V5IvlAI_CO4SPIPy2uXHA.roa (raw, json)
Hash identifier: 3tiqPX8+i28mq4BGB09b+VYS1i/DBdIaQCKP6qyV3NU=
Subject key identifier: F5:9F:D0:87:65:79:22:F9:40:23:F0:8E:E1:23:C8:3F:2D:AE:5C:70
Certificate issuer: /CN=b02aa961b477d5423d85b7d43f3efa26326d7090
Certificate serial: 0194282655A7435C617C76E81165E84472E8
Authority key identifier: B0:2A:A9:61:B4:77:D5:42:3D:85:B7:D4:3F:3E:FA:26:32:6D:70:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCqpYbR31UI9hbfUPz76JjJtcJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/01484c-5f28-42f5-b9ea-0787a503ca69/1/9Z_Qh2V5IvlAI_CO4SPIPy2uXHA.roa
Signing time: Thu 02 Jan 2025 17:53:08 +0000
ROA not before: Thu 02 Jan 2025 17:53:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204275
IP address blocks: 212.87.250.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 07 Jan 2025 09:35:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:55:a7:43:5c:61:7c:76:e8:11:65:e8:44:72:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02aa961b477d5423d85b7d43f3efa26326d7090
Validity
Not Before: Jan 2 17:53:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f59fd087657922f94023f08ee123c83f2dae5c70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1d:ac:78:cf:7c:90:21:6a:e2:7e:2d:a5:92:
50:6e:df:67:ec:bc:54:6e:73:8d:ec:1f:0f:5a:95:
2f:32:b1:c0:b5:2a:08:de:a0:1f:8a:23:44:e5:ad:
4a:f7:1d:64:78:0c:50:00:75:b5:be:ee:4b:40:d2:
00:ae:5a:92:9b:4d:04:cb:19:43:85:4d:8f:db:f3:
b7:b1:46:a6:c5:e8:5c:34:7a:36:51:81:2c:fe:bb:
42:7b:b5:ba:87:b7:95:65:12:db:c9:25:8b:7a:94:
4a:75:a7:7c:cb:ba:10:cc:fe:36:e0:01:f7:df:ec:
f6:09:80:67:e5:76:38:fe:d6:82:7a:92:da:f5:68:
53:64:01:e2:d8:c5:cf:43:b4:07:95:38:dd:ed:90:
c7:86:41:3e:10:f0:5e:b0:57:d3:d9:0c:cb:6d:66:
62:80:61:e2:66:f9:15:8a:87:c9:4c:e3:23:c0:6d:
59:f6:28:f4:8e:ad:ea:3f:b0:34:b2:74:d5:77:bb:
d6:37:3e:dc:7d:e0:46:3b:df:8d:4f:f7:4d:8e:6f:
48:fe:56:9d:91:41:a2:b4:a2:8c:4b:9c:18:27:0a:
14:6e:4a:ec:ba:d2:2a:a8:18:1b:0d:e4:a3:11:2a:
cd:dd:55:29:28:64:c1:88:3a:c9:c1:21:a4:9f:a4:
14:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9F:D0:87:65:79:22:F9:40:23:F0:8E:E1:23:C8:3F:2D:AE:5C:70
X509v3 Authority Key Identifier:
keyid:B0:2A:A9:61:B4:77:D5:42:3D:85:B7:D4:3F:3E:FA:26:32:6D:70:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCqpYbR31UI9hbfUPz76JjJtcJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/01484c-5f28-42f5-b9ea-0787a503ca69/1/9Z_Qh2V5IvlAI_CO4SPIPy2uXHA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/01484c-5f28-42f5-b9ea-0787a503ca69/1/sCqpYbR31UI9hbfUPz76JjJtcJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.87.250.0/23
Signature Algorithm: sha256WithRSAEncryption
21:d7:c9:da:42:5b:56:2d:19:a6:9e:d4:02:15:22:8d:5a:fb:
6b:cb:4c:aa:48:a6:44:9f:48:26:97:57:bb:5c:e8:90:5a:cc:
5a:0e:82:42:f6:9b:f9:20:bd:1b:29:4f:ca:a3:ef:b1:4f:b7:
2b:e1:2d:0a:85:3c:13:1c:54:f7:23:f5:8d:3d:3b:7e:72:20:
d0:77:ca:62:4a:a2:21:cc:1d:e5:97:94:53:68:58:15:9c:a6:
42:bd:33:11:e3:1a:6f:2b:48:07:db:07:68:94:56:ce:86:12:
2e:c6:da:19:de:b5:b3:ae:f0:2b:16:cf:88:f9:ce:50:74:03:
89:20:5c:8e:f8:1e:bb:8b:ca:7a:24:01:c3:6a:c3:7d:61:8a:
49:55:36:63:ac:98:e0:9b:3c:d1:c1:e7:b2:ba:3f:e7:af:8b:
ec:08:9a:3c:06:c3:0e:99:2b:98:c1:c9:ef:cd:4c:3e:cf:90:
47:47:dc:24:c0:f2:f5:46:d8:fc:56:ae:e9:94:05:94:87:5d:
a7:db:23:6f:1d:3a:94:2b:33:70:b6:7f:74:36:9f:2e:45:df:
77:d7:dd:8c:4b:1a:60:32:b3:0f:c4:d2:e3:17:5d:64:92:a2:
ac:f4:02:01:40:d6:78:57:1a:02:be:30:fa:c4:d6:e1:36:8c:
d7:6f:86:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:47 2025 by rpki-client