Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/yHgIJuqYK1EzKYq-axzmUyZ25Xk.roa
File: yHgIJuqYK1EzKYq-axzmUyZ25Xk.roa (raw, json)
Hash identifier: vxsYmH4UKYWOTa/P1swpu5O1i4Fow1P8lczxiU5nZEI=
Subject key identifier: C8:78:08:26:EA:98:2B:51:33:29:8A:BE:6B:1C:E6:53:26:76:E5:79
Certificate issuer: /CN=2f2a0fa20383332a3f414f054753a0b60b25ba10
Certificate serial: 01931FE520BA9619C48342D43F8DA6091876
Authority key identifier: 2F:2A:0F:A2:03:83:33:2A:3F:41:4F:05:47:53:A0:B6:0B:25:BA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LyoPogODMyo_QU8FR1OgtgsluhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/yHgIJuqYK1EzKYq-axzmUyZ25Xk.roa
Signing time: Tue 12 Nov 2024 10:22:09 +0000
ROA not before: Tue 12 Nov 2024 10:22:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 193.108.80.0/22 maxlen: 24
193.108.84.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:1f:e5:20:ba:96:19:c4:83:42:d4:3f:8d:a6:09:18:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f2a0fa20383332a3f414f054753a0b60b25ba10
Validity
Not Before: Nov 12 10:22:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c8780826ea982b5133298abe6b1ce6532676e579
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:b6:5c:09:0f:d3:8b:d0:74:8f:c9:cb:ba:3f:
1c:4b:3f:d1:06:6a:ba:16:7f:94:d0:a7:a7:1b:bf:
2e:ec:cb:9c:3a:dc:dd:92:f8:08:25:75:db:b6:f3:
8b:ce:29:33:34:c0:b9:43:8e:ac:bb:0e:89:30:52:
ed:63:7a:07:0b:50:cb:40:e9:a1:16:49:16:92:5d:
7e:26:1a:bb:f3:14:9b:ea:25:d6:d1:71:6b:ad:b6:
91:3e:81:85:c5:74:71:43:d5:13:71:25:3f:7e:d3:
e9:c6:2a:a8:3e:ad:1b:78:76:a3:c8:b4:46:5e:7a:
89:90:4d:f5:5a:00:67:4c:0d:1c:74:94:c5:7c:00:
e8:99:6a:c3:81:d5:54:33:4f:bb:9b:1e:f1:07:be:
6c:af:b8:43:e8:7d:ca:26:7e:63:c7:ee:1f:75:47:
4d:96:bc:2b:c7:d0:24:fc:e5:f2:79:fc:1a:d1:d1:
0a:2f:de:a8:0d:83:27:21:13:8a:74:e2:14:72:5b:
04:1b:40:95:0a:06:89:85:fe:d0:f7:5c:fd:71:39:
fe:6e:ec:1b:23:04:f1:d2:c8:b1:72:22:ce:99:6d:
7f:8c:01:6d:61:3a:57:81:80:48:16:60:54:7c:db:
bf:d3:19:94:2d:8c:af:9f:84:3c:b8:dd:1c:9c:67:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:78:08:26:EA:98:2B:51:33:29:8A:BE:6B:1C:E6:53:26:76:E5:79
X509v3 Authority Key Identifier:
keyid:2F:2A:0F:A2:03:83:33:2A:3F:41:4F:05:47:53:A0:B6:0B:25:BA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LyoPogODMyo_QU8FR1OgtgsluhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/yHgIJuqYK1EzKYq-axzmUyZ25Xk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/d6d30b-0b9b-429e-8413-55a930fc0c71/1/LyoPogODMyo_QU8FR1OgtgsluhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.80.0/21
Signature Algorithm: sha256WithRSAEncryption
5c:4b:5a:92:f6:a4:40:e7:98:92:61:a4:a3:d3:2c:b1:4a:be:
3d:86:89:93:9d:6c:84:87:f2:40:06:35:19:b8:d6:e5:92:81:
6b:8c:4d:05:15:73:57:fd:6a:83:ac:85:e1:4f:48:1b:a8:84:
57:a8:cb:61:5f:9a:c7:e2:06:0c:78:91:f3:44:9e:d1:91:c0:
bb:f7:e4:7a:f1:c4:fd:d9:36:3c:74:db:e6:31:7d:5e:52:aa:
5b:43:d2:99:28:ef:e9:80:84:b6:22:23:c2:bc:21:81:87:ca:
40:bc:ab:4e:14:4c:df:60:0d:df:b6:44:cc:51:d7:82:a9:de:
43:3b:fe:85:5b:24:ff:85:92:f2:46:12:48:a4:a3:87:25:d3:
45:5b:7d:c9:d0:63:c9:50:f9:5f:28:d8:be:92:e0:d1:e4:fc:
18:a8:f0:92:8a:1e:f2:a4:38:ec:a2:0d:3b:98:2c:fa:3b:d6:
e8:39:1d:92:2c:9b:61:a4:fa:dd:ee:05:14:a3:0c:a4:5b:1c:
83:fc:34:b3:fe:66:f3:23:9b:b1:92:32:62:23:10:20:4e:8e:
fb:2d:34:5c:e5:a8:b1:6e:44:c7:35:83:be:b1:23:79:c8:d6:
9d:7d:13:29:6a:af:fd:67:eb:98:2e:65:1e:b9:f3:e6:50:95:
42:c9:8e:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:36 2025 by rpki-client