Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/2YBiU4H7OUJS9tPtnAm1Zu89ZsU.roa
File: 2YBiU4H7OUJS9tPtnAm1Zu89ZsU.roa (raw, json)
Hash identifier: bEQ3NnjSbEbzuIxcjtIiy2b2oIO92zR/6Y+Nufx28BI=
Subject key identifier: D9:80:62:53:81:FB:39:42:52:F6:D3:ED:9C:09:B5:66:EF:3D:66:C5
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 019204A18B6896F52260FB6FF0D75B3A41A6
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/2YBiU4H7OUJS9tPtnAm1Zu89ZsU.roa
Signing time: Wed 18 Sep 2024 10:15:48 +0000
ROA not before: Wed 18 Sep 2024 10:15:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215157
IP address blocks: 217.113.26.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 19 Sep 2024 13:11:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:04:a1:8b:68:96:f5:22:60:fb:6f:f0:d7:5b:3a:41:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Sep 18 10:15:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d980625381fb394252f6d3ed9c09b566ef3d66c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c7:92:d6:8b:2e:ae:56:cd:58:28:05:a2:a8:
ea:f1:9f:ae:ff:7d:30:78:92:66:72:57:c2:61:7d:
ce:93:43:66:19:c3:80:fe:c8:43:cb:5b:84:81:08:
80:a9:b6:cc:ed:04:82:16:f6:07:9a:76:b8:4e:5d:
b7:83:06:ba:72:c1:83:3f:95:08:e3:9b:c4:32:ae:
77:20:64:7a:f2:de:d9:10:bd:ee:52:d5:b7:65:79:
c8:22:f0:f5:68:db:cd:97:c1:37:fa:c0:e2:a0:53:
de:bc:43:dc:56:d9:8c:3b:46:3e:bc:86:40:9b:96:
af:32:01:a4:0a:df:e3:87:70:27:88:1d:0c:7f:ad:
87:54:c2:51:9d:57:04:48:e7:4a:a3:61:16:3f:3b:
e2:5b:4e:85:fa:63:79:d4:76:b2:15:a7:cc:8e:6e:
13:56:b2:a8:4e:2c:86:ff:f0:84:e9:61:2e:d0:8b:
97:6e:ef:3f:8e:16:01:65:1d:ff:57:f2:e1:7c:e5:
84:5b:8e:36:74:2d:e4:24:fa:03:b1:30:8c:12:63:
03:ad:40:98:3e:f2:58:09:82:13:45:95:29:a6:69:
8a:90:6d:ae:72:0a:ce:60:f4:df:8d:6a:78:a6:c9:
72:cc:ec:1d:c0:45:e9:de:53:79:4c:ea:b8:bc:f9:
a5:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:80:62:53:81:FB:39:42:52:F6:D3:ED:9C:09:B5:66:EF:3D:66:C5
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/2YBiU4H7OUJS9tPtnAm1Zu89ZsU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.113.26.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:f1:5b:36:75:03:60:90:6b:7c:6b:7b:dd:ad:7f:38:d8:6d:
57:7c:1e:57:87:cb:05:01:7b:e0:07:7d:99:ce:f6:c1:9a:01:
60:36:01:48:72:19:4c:c7:b0:e5:d5:43:16:3a:20:f6:ce:7d:
5b:7d:89:86:7b:0f:2c:62:26:80:b9:f4:58:4d:cb:dc:dd:26:
e3:8e:dc:65:85:ef:7a:4e:09:3b:e8:3f:1a:45:c6:dd:94:43:
c7:51:02:9c:83:0e:31:9b:8c:5f:02:15:01:09:ea:6f:c0:ce:
71:cd:97:95:9b:86:78:f4:b0:f0:9d:62:14:75:b2:a9:95:83:
88:e1:e1:41:2d:06:17:bd:ef:4b:a4:54:5b:68:d9:38:72:ad:
da:62:60:b6:88:91:27:06:72:6b:72:ca:26:05:2e:39:46:69:
c9:03:35:c1:f5:ad:0a:b9:c7:a9:c0:e4:ca:6c:d2:49:78:72:
aa:f2:e7:d4:e6:26:cf:5c:95:15:08:a2:b7:09:bb:f1:87:1d:
33:62:6a:5b:75:3e:64:d7:be:70:d9:e5:4e:d4:90:7c:08:2b:
5c:cd:84:f7:d1:64:0b:25:72:84:8a:db:eb:43:c9:26:27:c7:
06:d3:50:c1:8a:91:9f:e6:2d:6b:00:86:cc:2e:fa:bc:bc:1e:
24:ed:cd:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 07:07:09 2025 by rpki-client