Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/u-17TrYAgtrAVSYQznyyv9mGq-E.roa
File: u-17TrYAgtrAVSYQznyyv9mGq-E.roa (raw, json)
Hash identifier: rDW+PphOVLKqtIdO0WwVbdTmf1YcX0teM8y2pOF4D/Y=
Subject key identifier: BB:ED:7B:4E:B6:00:82:DA:C0:55:26:10:CE:7C:B2:BF:D9:86:AB:E1
Certificate issuer: /CN=d914da56e1a934649da02964ac12eba34c5cb84f
Certificate serial: 019384009153C314C229A56A01E2414D559D
Authority key identifier: D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/u-17TrYAgtrAVSYQznyyv9mGq-E.roa
Signing time: Sun 01 Dec 2024 20:54:09 +0000
ROA not before: Sun 01 Dec 2024 20:54:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214019
IP address blocks: 79.174.3.0/24 maxlen: 24
2a13:e3c3::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 02 Dec 2024 00:53:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:84:00:91:53:c3:14:c2:29:a5:6a:01:e2:41:4d:55:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d914da56e1a934649da02964ac12eba34c5cb84f
Validity
Not Before: Dec 1 20:54:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bbed7b4eb60082dac0552610ce7cb2bfd986abe1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:09:84:a8:02:70:58:9d:23:26:66:36:63:6e:
3c:c2:a7:10:58:04:81:b9:a6:ef:7a:5c:f9:2d:d7:
0e:6d:ca:6b:68:8f:5f:a9:84:1d:9a:c2:58:5a:df:
7b:03:9c:49:1a:39:8a:fe:ff:04:08:9f:5c:35:2f:
32:b6:3a:c6:9f:23:e2:5d:2b:43:95:14:e0:a6:07:
b7:8e:ef:14:8e:40:39:71:f2:ee:c6:a6:7b:c3:6f:
24:e2:aa:95:06:84:c4:1a:99:e9:72:c1:0e:de:88:
07:ad:44:d0:43:5a:ed:ab:a3:cb:57:6f:5f:e6:de:
13:98:16:17:bc:ef:e7:b9:d6:11:ae:52:c0:30:c2:
e1:d1:0a:8d:27:db:c2:29:5a:fb:04:b8:2b:0d:4f:
0e:46:10:e1:d5:01:56:d1:f9:ac:95:19:c6:40:b9:
19:d9:5b:e4:a5:8c:e3:a8:04:65:fe:dc:3f:ed:fe:
f0:bb:41:cc:dd:f0:16:ac:64:04:b8:cd:97:2f:a6:
bb:ea:11:ed:6b:0a:60:24:ff:07:4f:4f:67:9e:9a:
c9:c2:ba:2c:bb:20:31:32:71:45:3d:9c:c4:1c:ea:
c3:69:25:64:e9:78:b1:09:ec:32:df:f6:88:03:ae:
ff:ce:ff:00:87:dc:8d:42:58:dc:c2:e2:ec:92:08:
f4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:ED:7B:4E:B6:00:82:DA:C0:55:26:10:CE:7C:B2:BF:D9:86:AB:E1
X509v3 Authority Key Identifier:
keyid:D9:14:DA:56:E1:A9:34:64:9D:A0:29:64:AC:12:EB:A3:4C:5C:B8:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2RTaVuGpNGSdoClkrBLro0xcuE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/u-17TrYAgtrAVSYQznyyv9mGq-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/7a11b5-a405-41cb-81cb-f6bccf1e531f/1/2RTaVuGpNGSdoClkrBLro0xcuE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.174.3.0/24
IPv6:
2a13:e3c3::/32
Signature Algorithm: sha256WithRSAEncryption
70:37:67:e5:5e:00:7c:e3:76:91:c3:bb:5f:ed:82:51:ab:c6:
01:3a:3a:db:97:ba:f7:7f:fe:1a:e9:4a:d1:e3:47:7f:ab:76:
ca:bc:20:1c:bc:62:fc:67:89:f1:1f:a3:6b:a4:ee:83:9c:0f:
3f:26:1c:2a:f3:4b:03:e7:42:6f:3d:d8:06:33:c9:0f:1c:0e:
3a:76:48:34:d3:5f:a0:de:45:0c:e6:41:6d:d5:53:e6:99:61:
39:64:bd:00:66:48:c2:a7:25:46:21:b5:d3:7b:ba:6c:15:0a:
93:28:42:ec:bd:82:ee:04:fd:42:f3:c8:6d:4e:19:8a:54:85:
02:98:ae:ce:2a:15:7f:d3:75:1c:49:fd:e9:40:51:fa:32:57:
a4:fc:7a:3b:4c:90:92:53:0f:96:20:83:1b:0e:00:f3:2d:fb:
2c:79:2b:d2:5f:a6:22:c8:24:69:91:23:2e:64:ca:e8:71:a9:
f2:6c:ed:0f:36:d5:32:0c:b0:27:33:55:a9:81:34:9d:fe:ee:
b7:de:2a:a3:d8:7b:f3:96:96:e7:92:3f:13:79:23:ca:5a:22:
e7:9f:fb:ea:36:2c:62:ee:59:c2:59:6d:c3:d6:75:47:06:e0:
c0:ab:b1:e0:d2:9b:6c:27:ea:4a:a3:18:2c:db:89:fc:12:2a:
74:98:6c:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:35:04 2025 by rpki-client