Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/9K2vCkw3E1SbWbr_h26OpldHepg.roa
File: 9K2vCkw3E1SbWbr_h26OpldHepg.roa (raw, json)
Hash identifier: 3upZo3DfY01ORrN3dNl/CmRwSidoDxOJ575z3jz7BnI=
Subject key identifier: F4:AD:AF:0A:4C:37:13:54:9B:59:BA:FF:87:6E:8E:A6:57:47:7A:98
Certificate issuer: /CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Certificate serial: 0192DCDF1714BF8DC86016BFBD8BDB7CF202
Authority key identifier: 05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/9K2vCkw3E1SbWbr_h26OpldHepg.roa
Signing time: Wed 30 Oct 2024 10:01:00 +0000
ROA not before: Wed 30 Oct 2024 10:01:00 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 195.60.208.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:dc:df:17:14:bf:8d:c8:60:16:bf:bd:8b:db:7c:f2:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05b3017c1693b945b5eda091ec93f85c1be1df36
Validity
Not Before: Oct 30 10:01:00 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4adaf0a4c3713549b59baff876e8ea657477a98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:da:ee:32:2e:b3:7f:b7:14:68:7c:f2:db:5a:
06:d9:43:ae:fc:b8:e6:bb:f5:e5:77:dd:ad:63:3d:
77:b1:e9:f5:0f:8c:dd:c1:1e:d7:6c:e3:18:25:2b:
70:3a:2c:04:4c:2a:1c:f2:4b:ef:77:04:92:2b:5a:
eb:27:8f:ba:01:c6:dd:bd:b9:06:d4:d0:08:0b:b6:
6a:db:00:ba:29:5b:aa:c9:6c:e4:44:81:a5:28:bf:
26:56:12:66:d5:0b:46:db:76:e2:9a:2a:d4:6c:ef:
67:39:3c:54:5e:40:dc:d2:75:d6:6a:c1:6a:42:95:
3c:5d:12:62:e6:a1:ae:01:12:d2:4a:80:48:fc:40:
1e:c4:14:ca:68:92:d1:34:9d:40:1a:23:a2:9d:2d:
07:15:b9:66:fd:d7:42:ee:a2:57:75:cc:9f:c3:5b:
44:3b:95:73:17:67:1a:84:1b:bc:71:94:5b:9c:bf:
94:91:c7:19:e2:06:29:49:bd:a9:58:a4:4d:f0:55:
47:70:27:b0:6b:8b:2b:95:87:eb:db:ce:e7:f6:41:
19:ea:7e:87:e0:1b:ce:67:59:f0:92:f4:c8:51:bc:
82:11:c1:f0:de:7a:02:50:fe:a3:34:7c:6b:b1:f0:
5a:b4:ce:5f:bd:20:d9:44:e3:7b:c7:f9:d2:a3:74:
0d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:AD:AF:0A:4C:37:13:54:9B:59:BA:FF:87:6E:8E:A6:57:47:7A:98
X509v3 Authority Key Identifier:
keyid:05:B3:01:7C:16:93:B9:45:B5:ED:A0:91:EC:93:F8:5C:1B:E1:DF:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbMBfBaTuUW17aCR7JP4XBvh3zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/9K2vCkw3E1SbWbr_h26OpldHepg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/5f75ad-83a6-4984-86fd-aa277e389fdc/1/BbMBfBaTuUW17aCR7JP4XBvh3zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.60.208.0/23
Signature Algorithm: sha256WithRSAEncryption
2d:9e:37:eb:2c:c6:93:98:47:7e:90:9a:38:57:d1:79:99:0f:
03:92:17:60:f1:19:90:5a:66:2b:fd:10:1b:50:07:fc:80:c4:
c5:7a:4c:5f:49:50:5a:c2:d4:19:a3:f2:c4:2b:7e:7f:22:81:
1c:a9:81:19:70:30:81:a3:10:d8:bb:e6:e8:63:4f:15:b8:a6:
3b:e0:89:45:fa:1c:f3:df:49:9d:26:41:c8:08:0e:5e:d4:fd:
51:b8:cf:5d:e7:35:7e:4b:6f:b3:b2:d4:6e:05:14:ad:ab:aa:
46:d3:83:05:3d:4f:4e:90:17:05:11:1b:b8:fe:6f:98:44:0f:
97:75:b6:5f:20:62:8c:18:d6:4e:47:92:bb:60:9e:38:29:82:
b0:cd:69:c7:72:e0:97:9e:0f:cd:34:a1:db:bc:85:c8:32:eb:
f2:9c:d8:e3:68:ae:67:d1:42:83:78:2f:9f:41:d8:1e:0a:58:
78:d3:3c:ee:2b:38:f2:ab:07:8c:e3:c4:8a:77:f9:e5:b4:d8:
46:17:47:4f:d8:fd:46:f6:b5:a7:45:8e:33:41:13:7e:f9:47:
89:a4:ba:a0:f7:cf:aa:1e:93:11:f9:0d:ec:8c:e2:e4:34:39:
30:a1:19:b9:e6:ff:c0:f8:ac:f8:7d:58:f7:f3:d9:71:a4:ec:
68:e6:da:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:47:45 2025 by rpki-client