Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/B-7wjP6baymmI8_X3vOdticX4lM.roa
File: B-7wjP6baymmI8_X3vOdticX4lM.roa (raw, json)
Hash identifier: GNdapRTzdIGlhLMvhYgjUFqLX2/C4tXmFzXQcu2ZGhY=
Subject key identifier: 07:EE:F0:8C:FE:9B:6B:29:A6:23:CF:D7:DE:F3:9D:B6:27:17:E2:53
Certificate issuer: /CN=6c4e7eafe2ffaa90cae9476803034db6da7c1219
Certificate serial: 01923CF7D895F88C2A3D5D19F988369E15C2
Authority key identifier: 6C:4E:7E:AF:E2:FF:AA:90:CA:E9:47:68:03:03:4D:B6:DA:7C:12:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bE5-r-L_qpDK6UdoAwNNttp8Ehk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/B-7wjP6baymmI8_X3vOdticX4lM.roa
Signing time: Sun 29 Sep 2024 08:48:48 +0000
ROA not before: Sun 29 Sep 2024 08:48:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21013
IP address blocks: 194.242.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3c:f7:d8:95:f8:8c:2a:3d:5d:19:f9:88:36:9e:15:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c4e7eafe2ffaa90cae9476803034db6da7c1219
Validity
Not Before: Sep 29 08:48:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=07eef08cfe9b6b29a623cfd7def39db62717e253
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:46:28:48:ff:fa:55:9a:20:d2:cd:13:8e:37:
5b:05:bf:7b:5b:d9:5b:66:5d:dc:f7:00:2d:bd:d3:
06:17:1f:a0:d8:68:a1:43:a6:dd:21:b9:4a:f5:42:
1d:4d:62:8f:98:58:94:f8:52:3c:06:7a:ce:5b:42:
1e:76:68:73:73:ce:8b:4e:bb:aa:02:b3:2f:f8:e2:
1b:8c:7d:b6:87:75:57:5b:d3:f1:e0:48:75:5c:5d:
ab:4d:5c:8b:38:41:8d:08:5c:80:99:b9:42:b0:ea:
bd:be:00:15:a1:8c:82:9b:5d:41:b0:52:ad:fe:35:
ce:b1:d4:41:c8:6e:67:f4:80:71:78:2e:25:65:75:
a1:b5:84:19:d2:c9:78:30:fb:01:54:88:1d:3c:d7:
60:de:d7:a9:18:40:7f:e7:db:ae:ba:43:f8:3c:87:
ef:f2:77:9f:3c:fa:59:bf:4d:84:94:7f:86:d6:38:
e6:1f:93:ea:37:e3:0b:da:da:45:af:41:47:2f:7a:
2c:78:d8:09:9b:5d:d3:2d:fe:6f:f0:1a:63:f4:8c:
34:68:f4:92:4a:39:f6:6c:a0:99:51:63:ff:4b:7b:
02:3d:32:b3:db:ec:6d:8a:0a:8a:41:34:9f:a2:9a:
f8:2b:d5:f0:1a:6c:cd:e3:07:7c:71:b2:23:03:0d:
2c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:EE:F0:8C:FE:9B:6B:29:A6:23:CF:D7:DE:F3:9D:B6:27:17:E2:53
X509v3 Authority Key Identifier:
keyid:6C:4E:7E:AF:E2:FF:AA:90:CA:E9:47:68:03:03:4D:B6:DA:7C:12:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bE5-r-L_qpDK6UdoAwNNttp8Ehk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/B-7wjP6baymmI8_X3vOdticX4lM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/3deae4-720d-4eae-b3d9-b21dd3f68aba/1/bE5-r-L_qpDK6UdoAwNNttp8Ehk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.242.35.0/24
Signature Algorithm: sha256WithRSAEncryption
06:e8:ba:51:e4:a5:22:27:c6:91:b7:b6:a9:e4:db:48:59:33:
5f:2a:dc:f2:d1:b7:8b:c1:06:6c:d9:bc:b2:3e:8c:50:b9:76:
67:6e:50:57:0b:67:ef:79:52:ac:3b:bd:8c:df:1a:bc:98:fe:
ac:a9:00:9b:95:0a:31:b6:af:3b:1d:0d:58:09:4c:10:a3:87:
81:d8:fd:54:0e:f0:cd:c7:00:fd:ea:b5:7b:fc:a6:d6:c5:62:
4c:fa:7f:21:ed:20:b7:bd:64:5d:fe:20:a3:24:85:83:1f:b1:
c8:15:23:e7:c6:5a:90:fa:35:6d:bf:79:cf:4e:77:5c:a8:99:
bc:7c:98:ed:99:01:60:b3:76:b8:11:09:0f:d1:a1:a4:ce:b5:
06:1a:fa:ba:d6:f6:8b:64:b1:81:55:5a:96:b6:80:90:78:c0:
97:e3:e6:d6:58:da:bb:0b:b8:2e:27:0c:6e:89:7a:73:da:c8:
55:75:56:94:62:0f:88:bf:14:fe:a2:9a:c8:c4:11:1b:93:e3:
7f:ce:64:36:20:50:bc:0c:dd:ed:8c:b4:60:c3:ab:f8:cd:57:
a0:38:5c:23:b0:a8:3d:9b:91:0c:f0:5f:c3:74:bd:cf:4c:b9:
42:fd:e1:09:9f:df:c0:3a:e6:67:81:d7:a9:e9:1b:28:58:88:
b1:7e:f6:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:39:40 2025 by rpki-client