Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/vBq-U5dAnCTrDRZ1pqYRfEumHIg.roa
File: vBq-U5dAnCTrDRZ1pqYRfEumHIg.roa (raw, json)
Hash identifier: 768yekirms1Z37y5ivYe6JanZ/DKS1ID4p7FbhMb+JI=
Subject key identifier: BC:1A:BE:53:97:40:9C:24:EB:0D:16:75:A6:A6:11:7C:4B:A6:1C:88
Certificate issuer: /CN=a2c56441d83df94bbd0e60144a554639e40e0535
Certificate serial: 018CC34951980165888EE94A5D00089F62DB
Authority key identifier: A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/vBq-U5dAnCTrDRZ1pqYRfEumHIg.roa
Signing time: Mon 01 Jan 2024 04:30:11 +0000
ROA not before: Mon 01 Jan 2024 04:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8881
IP address blocks: 194.145.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 15 Apr 2024 10:36:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:49:51:98:01:65:88:8e:e9:4a:5d:00:08:9f:62:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2c56441d83df94bbd0e60144a554639e40e0535
Validity
Not Before: Jan 1 04:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bc1abe5397409c24eb0d1675a6a6117c4ba61c88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:e3:bb:2b:ed:41:e9:f0:14:82:61:83:65:8c:
97:e8:bc:6b:29:a9:09:4c:97:3d:34:0e:49:85:e5:
5a:21:31:90:f6:ef:a7:f9:06:de:92:75:7a:22:f9:
4f:5d:34:e8:cf:4a:74:5d:b4:a2:aa:98:52:5a:c1:
87:7a:00:3e:69:7d:3a:9d:fe:69:c6:b3:34:4c:63:
ba:92:ef:b0:76:90:40:9e:17:55:9a:e5:cd:39:42:
f7:8c:13:ec:12:e0:c2:66:db:9e:5b:50:37:64:da:
06:75:c7:92:4f:96:50:25:14:06:5e:3f:f5:78:bc:
be:9d:34:81:87:27:77:7c:e6:0a:cd:4e:2d:fa:a0:
b2:d6:1f:8d:b5:ae:e5:69:34:7e:2d:c3:7c:d6:94:
86:08:d8:13:c8:f4:5a:12:f5:0a:56:41:07:38:e0:
76:95:7c:b1:c7:2f:72:b8:f2:eb:7b:48:22:ec:32:
2c:cd:d6:3a:d8:93:6c:79:ad:90:90:d0:e1:2c:6c:
fb:27:2f:4a:6e:7d:ed:87:e6:5c:c4:18:2b:51:1e:
30:34:f0:5a:26:7b:96:05:eb:86:f3:d9:23:d0:3d:
b7:f1:16:b3:0c:3d:aa:1c:72:e5:01:fc:e4:ae:29:
07:fb:eb:de:a7:af:6c:c2:3e:d4:c8:88:f6:e2:89:
3d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:1A:BE:53:97:40:9C:24:EB:0D:16:75:A6:A6:11:7C:4B:A6:1C:88
X509v3 Authority Key Identifier:
keyid:A2:C5:64:41:D8:3D:F9:4B:BD:0E:60:14:4A:55:46:39:E4:0E:05:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/osVkQdg9-Uu9DmAUSlVGOeQOBTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/vBq-U5dAnCTrDRZ1pqYRfEumHIg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/6211c4-5a9c-441e-b800-f65dddfa0e1d/1/osVkQdg9-Uu9DmAUSlVGOeQOBTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.230.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:b3:77:e6:54:18:40:fd:95:f8:51:20:df:7a:bd:d4:bc:66:
8f:fb:b5:45:a2:3f:22:56:01:e4:0f:db:95:9d:55:98:88:79:
c1:07:cb:4d:f2:c7:36:79:c5:cc:95:14:2d:81:4b:e1:47:26:
2b:50:1d:c2:83:25:58:1d:d2:a8:01:39:c4:41:55:c3:69:83:
7b:37:07:27:21:94:fa:a8:8c:1f:ef:eb:c9:e3:48:37:e6:56:
c8:03:4b:77:ba:f9:26:44:e9:42:9f:f2:01:12:a0:3b:98:90:
bd:23:81:1e:5a:18:83:60:3f:99:ae:3d:b8:1a:c5:99:ff:1f:
17:f3:96:25:dc:0f:dc:43:59:4c:15:d6:14:f6:18:44:0e:a9:
7a:8f:fa:e2:fc:d1:2c:04:ce:63:22:6e:95:6f:7e:db:62:88:
02:22:aa:77:db:58:a9:7f:e2:e4:45:46:5a:8a:4d:66:b6:1c:
2a:18:df:ff:6d:ee:22:46:cb:3d:b3:68:61:d3:19:3b:77:b4:
04:c4:c4:2b:08:ae:81:fe:8e:a4:ce:3d:0a:84:e4:1c:16:93:
ce:04:55:4b:86:42:9f:95:16:65:27:97:fb:13:60:5e:21:16:
32:25:11:19:42:a8:f3:1d:9d:63:2f:02:77:bc:ce:0d:6f:dc:
15:ac:a4:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:24:00 2025 by rpki-client