Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/O_YjRDU_9tP-_D2lyajlKhgOKV4.roa
File: O_YjRDU_9tP-_D2lyajlKhgOKV4.roa (raw, json)
Hash identifier: 5M16ibGMDiRgL0gFbOcZ0kES2rpgYEkZF03w8VJf4SA=
Subject key identifier: 3B:F6:23:44:35:3F:F6:D3:FE:FC:3D:A5:C9:A8:E5:2A:18:0E:29:5E
Certificate issuer: /CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Certificate serial: 01928F163B6EA71A3BEF01189E3E4ADFEC94
Authority key identifier: B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/O_YjRDU_9tP-_D2lyajlKhgOKV4.roa
Signing time: Tue 15 Oct 2024 07:30:51 +0000
ROA not before: Tue 15 Oct 2024 07:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25400
IP address blocks: 193.23.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8f:16:3b:6e:a7:1a:3b:ef:01:18:9e:3e:4a:df:ec:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11157c98f26279fc3eed2dab3cf118372bdbe1b
Validity
Not Before: Oct 15 07:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3bf62344353ff6d3fefc3da5c9a8e52a180e295e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:0d:a9:d9:57:ed:ec:b1:17:59:24:07:67:4f:
93:ad:d1:cf:59:86:5f:40:a1:62:d4:e7:41:3b:7e:
48:9d:6f:af:ca:c8:f6:67:79:4b:fb:3e:7b:f9:fa:
b5:ec:3f:a4:7b:10:33:9b:2b:a3:96:12:e9:d0:22:
a6:39:19:3b:7d:5e:7c:a2:63:fb:d6:18:73:47:d4:
cf:c1:c1:bd:1d:d7:0d:7b:9f:7e:7f:12:ef:c9:0f:
96:76:82:f3:92:06:da:77:b0:5c:5a:94:c8:5f:36:
40:6c:0d:7c:0f:9c:b3:05:9c:f1:62:fc:7a:37:27:
b7:8a:b2:6d:60:d3:47:c0:bf:c5:2b:29:83:f9:19:
98:cc:fe:b3:e4:b5:c4:9c:ed:9f:71:da:d0:e6:65:
3e:1a:9e:8e:18:66:8b:2a:b2:df:52:ea:31:cf:5b:
1d:b0:24:e5:31:71:a3:43:65:70:17:53:aa:e5:63:
f7:3c:fb:39:22:8a:69:08:cf:37:4f:f0:8e:4c:87:
f1:c4:9a:6c:fe:10:25:47:0f:cd:02:ad:4d:42:f7:
aa:69:47:f8:54:fc:83:0a:34:df:51:82:83:1f:c0:
dd:f3:9f:8d:68:37:fb:11:47:7f:bb:aa:64:c4:7d:
46:2d:81:1b:a9:e1:87:b9:ce:02:25:c8:7f:2c:67:
d1:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F6:23:44:35:3F:F6:D3:FE:FC:3D:A5:C9:A8:E5:2A:18:0E:29:5E
X509v3 Authority Key Identifier:
keyid:B1:11:57:C9:8F:26:27:9F:C3:EE:D2:DA:B3:CF:11:83:72:BD:BE:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRFXyY8mJ5_D7tLas88Rg3K9vhs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/O_YjRDU_9tP-_D2lyajlKhgOKV4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/521a74-ebc9-4267-b046-e0acacc10ef5/1/sRFXyY8mJ5_D7tLas88Rg3K9vhs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.229.0/24
Signature Algorithm: sha256WithRSAEncryption
84:10:df:fd:f2:29:65:35:7e:d8:a0:a1:71:10:a6:18:d1:79:
6e:22:12:e8:ab:9f:64:e2:ca:79:9f:f5:55:ed:6c:37:4d:fa:
6a:0b:14:5c:46:5f:80:67:cb:08:57:98:ef:9c:b1:3b:d1:93:
1d:7f:f1:40:c1:86:0c:a3:ed:51:2e:bc:2e:50:68:64:ac:da:
48:f6:46:2d:33:b6:87:1f:07:95:e3:0b:c7:a4:b4:17:ad:7a:
72:c9:bd:db:6b:b4:fe:7a:5d:20:e7:ca:ef:b6:82:f1:93:00:
11:89:ed:e7:58:ec:32:05:36:06:01:ee:37:62:f8:3d:ce:ce:
2c:12:6a:ee:df:c4:7a:ba:84:c8:3b:4d:17:e1:fc:02:d2:c1:
c3:d9:e9:19:ca:20:e3:1a:36:e4:33:37:3a:ec:0e:36:36:d9:
da:6d:b8:a8:37:7e:1d:e6:51:e1:18:1a:b6:75:a7:19:50:62:
a1:8c:d7:49:8a:c9:90:fc:d0:8d:b8:13:f9:f8:b0:bc:e8:d7:
91:80:14:f6:de:17:8a:47:6e:1f:f3:84:e4:24:f7:0f:64:9d:
20:38:51:44:c3:3e:5c:53:ad:52:fe:e0:f2:3d:c4:be:74:bd:
29:96:44:05:78:24:0c:37:30:c0:9b:79:d4:ec:81:7b:81:74:
da:71:fb:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 15:49:22 2025 by rpki-client