Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/hQK6Sfp5h8yxEe6Zyu6Sj_trs0c.roa
File: hQK6Sfp5h8yxEe6Zyu6Sj_trs0c.roa (raw, json)
Hash identifier: nC6/laqqbG/MD9GSqpcLvCk3hfhCLW6DdFBooXC359o=
Subject key identifier: 85:02:BA:49:FA:79:87:CC:B1:11:EE:99:CA:EE:92:8F:FB:6B:B3:47
Certificate issuer: /CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Certificate serial: 01908D7031CE432ED7A12B9BDD9F21CDF3AF
Authority key identifier: 42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/hQK6Sfp5h8yxEe6Zyu6Sj_trs0c.roa
Signing time: Sun 07 Jul 2024 13:44:18 +0000
ROA not before: Sun 07 Jul 2024 13:44:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57866
IP address blocks: 193.37.216.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:8d:70:31:ce:43:2e:d7:a1:2b:9b:dd:9f:21:cd:f3:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4292b5da4b4ffeaf720649518fbaaa10c5cb2811
Validity
Not Before: Jul 7 13:44:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8502ba49fa7987ccb111ee99caee928ffb6bb347
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1f:61:a2:c4:ad:ea:b6:50:f2:36:51:34:53:
c6:be:7a:20:d7:ad:43:0a:81:e7:7f:fe:9d:39:bb:
01:8e:30:07:ef:9b:f7:9d:25:6e:d7:8c:95:a9:91:
78:28:d2:89:3a:08:0c:bb:9c:3a:c1:78:61:fb:87:
c4:e1:e3:4c:62:55:34:40:8d:d1:a7:1d:1b:a0:5c:
1f:d0:45:69:c0:86:e7:b0:04:c2:df:d9:34:12:0e:
da:24:df:cc:d0:8e:ff:b9:19:fa:83:8d:19:2f:2c:
56:20:56:bd:2c:d6:d1:cb:9f:ec:eb:93:c6:26:11:
57:14:d5:97:ac:9d:d2:c4:89:e7:38:bb:28:90:bb:
1f:4f:25:e2:59:e6:c9:a9:f9:2b:2e:b8:ed:37:3d:
c8:34:14:5e:22:14:51:86:65:68:30:f7:31:59:39:
34:8d:f1:d7:13:5d:50:2f:0b:0c:34:43:f0:57:cf:
08:d3:73:e0:f9:65:0d:e4:ff:f1:23:4c:dd:71:78:
d5:53:d3:1f:c9:27:ea:ab:7e:94:63:56:20:a3:25:
77:89:61:bc:80:fd:b9:8d:6c:30:44:70:7b:cb:c1:
0a:8d:06:ed:8c:a8:7d:b1:8d:a8:27:74:fb:ea:fe:
e2:ad:38:8e:a9:cd:53:16:0b:ba:45:c3:78:11:6c:
ba:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:02:BA:49:FA:79:87:CC:B1:11:EE:99:CA:EE:92:8F:FB:6B:B3:47
X509v3 Authority Key Identifier:
keyid:42:92:B5:DA:4B:4F:FE:AF:72:06:49:51:8F:BA:AA:10:C5:CB:28:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QpK12ktP_q9yBklRj7qqEMXLKBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/hQK6Sfp5h8yxEe6Zyu6Sj_trs0c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/4522fb-c1da-4ccc-a7c7-a043e1b67b94/1/QpK12ktP_q9yBklRj7qqEMXLKBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.37.216.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:7c:9c:e7:3e:28:38:30:e5:9e:90:1f:e7:fa:21:3a:bf:9d:
72:97:fa:16:47:a4:d8:e2:07:cb:c0:79:c9:fd:94:85:8c:48:
04:82:d4:fe:95:3d:e9:c4:0a:69:1f:45:a1:30:81:b7:21:98:
6f:a1:b8:c3:a1:4a:93:14:9f:6b:da:93:94:26:dc:c1:30:ed:
67:84:3d:13:a3:f3:d0:60:3e:92:19:94:71:f7:fc:f1:e9:12:
23:58:c6:de:11:ea:fd:16:cd:52:d8:75:6a:fd:68:a7:14:89:
8e:5b:58:44:47:05:e4:43:71:a3:70:6a:30:ae:f4:54:4a:69:
77:a1:4a:df:45:27:c0:0a:36:b7:8c:f8:f0:df:cd:f3:ee:3a:
fd:cc:40:34:ad:c0:cf:ad:56:34:bb:a8:10:7d:d2:bd:90:ed:
7e:3a:59:e1:f1:9f:84:d3:13:3e:b2:74:d3:59:9e:b7:d9:7f:
4e:ef:55:78:59:1d:e3:c4:23:71:75:e5:c7:0b:0a:01:61:e1:
ab:5d:b4:47:69:5b:08:86:e8:a2:c7:44:e3:cf:12:b9:4d:80:
70:70:d8:3e:1b:bb:7e:89:f1:f1:64:be:4c:10:14:3f:12:86:
93:00:da:26:3c:2a:1d:8c:9e:4c:2f:a2:41:a9:cb:a9:e2:b1:
94:be:79:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:26 2025 by rpki-client