Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/393131-1743-48e5-ae54-a9bf3a769377/1/055eBsYUfGQyaKhYsy6EsofJxy4.roa
File: 055eBsYUfGQyaKhYsy6EsofJxy4.roa (raw, json)
Hash identifier: ZMqQn9ze0pSc82HD244UVUsAC99Uc6yAbVNa8IzC1LE=
Subject key identifier: D3:9E:5E:06:C6:14:7C:64:32:68:A8:58:B3:2E:84:B2:87:C9:C7:2E
Certificate issuer: /CN=8d0b584f6035fe5a287c567f1e3854b8fbc2a0c2
Certificate serial: 0193B00E3910BF5B545AD52637FE74BFD475
Authority key identifier: 8D:0B:58:4F:60:35:FE:5A:28:7C:56:7F:1E:38:54:B8:FB:C2:A0:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jQtYT2A1_loofFZ_HjhUuPvCoMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/393131-1743-48e5-ae54-a9bf3a769377/1/055eBsYUfGQyaKhYsy6EsofJxy4.roa
Signing time: Tue 10 Dec 2024 10:12:22 +0000
ROA not before: Tue 10 Dec 2024 10:12:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15513
IP address blocks: 159.29.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b0:0e:39:10:bf:5b:54:5a:d5:26:37:fe:74:bf:d4:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d0b584f6035fe5a287c567f1e3854b8fbc2a0c2
Validity
Not Before: Dec 10 10:12:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d39e5e06c6147c643268a858b32e84b287c9c72e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:06:af:e8:5f:6f:60:0f:b0:8f:ad:78:dd:f2:
45:6d:44:7d:be:69:a4:a1:8b:c4:95:20:f2:d4:aa:
30:71:44:88:db:02:ca:c8:5b:d2:c2:15:aa:94:31:
4f:44:6d:96:69:25:0c:eb:e4:57:c4:43:c2:d8:a4:
de:9a:43:f1:80:e4:0d:3a:98:ba:30:3b:80:51:60:
f7:31:b6:3a:37:fa:93:6b:07:29:8b:dc:18:ce:04:
0c:ba:f3:a6:2f:33:58:26:e1:ec:74:c6:86:bb:4f:
ba:83:be:10:27:3c:08:97:c6:32:9a:24:ff:32:16:
9f:b1:f1:0c:06:cb:63:3d:43:e6:db:ce:9e:72:ed:
ba:1f:3c:b7:06:62:25:9a:ad:97:eb:0b:4d:0a:28:
bc:b0:e1:74:ee:4b:2a:ba:50:d2:a2:7c:ec:a2:9e:
89:2c:4a:90:f6:52:78:45:55:d9:c8:95:34:36:89:
1f:93:3c:8f:0f:b8:6f:e5:ea:79:ca:2f:67:da:98:
04:4c:b2:f8:b0:21:b3:b8:d3:67:52:a9:f5:66:e9:
bd:e7:fc:37:69:eb:27:ce:f4:e2:d5:4d:f1:05:11:
9b:97:83:da:ed:d7:12:ba:3a:16:5c:ec:51:e3:1c:
1f:ec:71:93:cc:05:17:2c:ec:ec:dc:f7:79:f5:1b:
0a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:9E:5E:06:C6:14:7C:64:32:68:A8:58:B3:2E:84:B2:87:C9:C7:2E
X509v3 Authority Key Identifier:
keyid:8D:0B:58:4F:60:35:FE:5A:28:7C:56:7F:1E:38:54:B8:FB:C2:A0:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jQtYT2A1_loofFZ_HjhUuPvCoMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/393131-1743-48e5-ae54-a9bf3a769377/1/055eBsYUfGQyaKhYsy6EsofJxy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/393131-1743-48e5-ae54-a9bf3a769377/1/jQtYT2A1_loofFZ_HjhUuPvCoMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.29.72.0/22
Signature Algorithm: sha256WithRSAEncryption
39:3c:fb:be:ac:42:59:c6:cf:5a:1e:12:d2:01:8c:17:c7:8e:
12:db:30:a7:66:9b:ad:6f:7b:94:b7:f7:5d:c7:8f:10:52:02:
ca:e3:a0:28:dc:36:5e:b0:f7:e9:14:1f:77:dd:1f:bb:e4:d9:
cb:23:bc:da:17:ca:57:dd:ee:07:2b:b6:7b:67:8a:4b:dd:4e:
2f:ae:d2:e2:fd:7c:6f:e4:a4:28:4a:51:8e:f3:75:54:eb:22:
4d:df:f6:f8:1d:0f:21:fd:53:10:46:6a:bb:e7:01:6f:3f:77:
89:29:88:b5:9c:a2:0e:1a:ca:9e:d8:7f:17:45:01:dd:43:3e:
56:f7:97:ee:ca:1a:2c:35:4b:69:ed:6f:c2:da:3e:1b:10:78:
d7:9a:e0:ab:fb:da:c4:c3:bf:af:f0:35:43:58:55:6b:29:09:
fa:bc:05:2d:b2:64:a6:ef:fc:49:bb:7d:e6:d9:d6:a4:c7:45:
42:69:dd:ff:c8:1c:8f:63:98:e1:ad:74:9e:99:de:70:cb:0f:
c1:cd:9b:89:cf:cf:f2:b5:ce:c1:50:7d:51:62:90:e3:24:70:
2e:01:46:a8:3d:fa:cf:b7:05:a1:e8:17:07:f2:50:f2:5e:c6:
76:fe:41:9d:82:b2:f8:5d:d3:cb:41:f2:a8:e9:01:56:fd:82:
d8:12:44:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:18:52 2025 by rpki-client