Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/2qHFsXMTN1ioeEUSWv8oWnAHl2I.roa
File: 2qHFsXMTN1ioeEUSWv8oWnAHl2I.roa (raw, json)
Hash identifier: xHnP54lraFviqpAPpowmq0RNizOsOTUMG104mg28zYY=
Subject key identifier: DA:A1:C5:B1:73:13:37:58:A8:78:45:12:5A:FF:28:5A:70:07:97:62
Certificate issuer: /CN=380b283a0513940d520a680b8b3d14dbc367770d
Certificate serial: 019306FC592F542341FC572EFFCEEBD56F9D
Authority key identifier: 38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/2qHFsXMTN1ioeEUSWv8oWnAHl2I.roa
Signing time: Thu 07 Nov 2024 14:17:01 +0000
ROA not before: Thu 07 Nov 2024 14:17:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57771
IP address blocks: 185.54.93.0/24 maxlen: 24
2a00:8641::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 02 Jan 2025 09:49:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:06:fc:59:2f:54:23:41:fc:57:2e:ff:ce:eb:d5:6f:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=380b283a0513940d520a680b8b3d14dbc367770d
Validity
Not Before: Nov 7 14:17:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=daa1c5b173133758a87845125aff285a70079762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:bd:ab:91:51:76:9f:87:34:0e:4f:3d:d5:fd:
12:5c:c9:b7:fe:e0:0a:72:6d:41:7b:d4:63:3a:75:
ae:7e:af:74:42:c4:c2:5d:49:81:e3:be:63:e7:fb:
75:31:1b:ea:c0:0c:a8:1b:ee:54:b4:15:14:b1:6b:
59:eb:ee:c0:b5:14:82:10:84:e3:db:6e:c2:18:08:
94:78:82:58:30:49:07:fa:90:a2:a0:3b:f1:89:de:
e5:9c:5c:af:8f:36:16:d0:aa:b8:c4:c6:48:f7:e5:
77:4a:7f:93:0c:e5:21:c6:ee:9c:91:b8:c5:31:14:
fa:7d:86:ca:63:91:98:9d:4b:70:b5:8d:b4:e0:a1:
90:fb:cc:e2:ba:18:23:ec:cd:3f:0c:b9:ab:69:56:
5a:a2:b1:b9:21:9c:56:e6:a7:39:18:20:84:4f:86:
30:8b:42:15:f3:06:ee:99:3c:3d:8b:f4:7a:ee:a8:
2f:29:26:ca:42:b5:74:a6:d4:a1:96:54:45:22:d4:
97:8c:c1:e0:c8:1c:8a:d2:4c:b9:9a:d6:46:be:cb:
8f:38:13:ca:17:98:41:90:e0:a3:2f:b7:f4:57:a7:
9b:d7:41:63:ac:96:f5:e9:8e:b7:9c:d7:8b:57:d5:
30:d1:43:c3:56:8a:52:41:80:9e:26:88:e1:b9:96:
e8:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:A1:C5:B1:73:13:37:58:A8:78:45:12:5A:FF:28:5A:70:07:97:62
X509v3 Authority Key Identifier:
keyid:38:0B:28:3A:05:13:94:0D:52:0A:68:0B:8B:3D:14:DB:C3:67:77:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OAsoOgUTlA1SCmgLiz0U28Nndw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/2qHFsXMTN1ioeEUSWv8oWnAHl2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/c08e1e-f5bd-4a1a-8aba-ccf6454bb24c/1/OAsoOgUTlA1SCmgLiz0U28Nndw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.54.93.0/24
IPv6:
2a00:8641::/32
Signature Algorithm: sha256WithRSAEncryption
79:4e:42:3e:43:d9:ce:55:93:00:b5:c3:43:0b:b4:a2:1a:e2:
66:d4:36:e4:b0:73:73:73:49:cb:ab:15:a4:2e:7b:75:e5:c0:
c3:72:3f:a0:63:f4:9e:43:47:6f:6e:a3:58:4e:87:85:f6:79:
20:65:30:c8:7f:91:46:86:a4:50:31:7b:d3:e0:e0:a0:dc:45:
9e:a2:03:6a:a7:7f:22:6b:6e:b0:68:f0:43:d6:89:90:bb:50:
4e:6c:8a:97:24:8c:5f:54:a1:cb:9d:d2:c5:41:a8:9b:84:cb:
b7:e0:68:2e:cb:4c:cb:aa:74:ac:7d:b8:03:80:27:f2:94:ac:
2b:05:21:4f:21:c2:74:f2:3e:82:b2:d6:58:10:d3:03:5e:42:
97:eb:60:fd:d1:08:c7:a5:1c:0f:55:57:14:80:16:c4:ef:fc:
1c:57:f6:7c:ee:fb:45:ba:89:e8:2b:3e:31:16:1c:65:2d:f5:
da:a6:07:7e:73:0b:fa:d1:97:dd:8f:41:5a:c0:7a:5e:a4:22:
4c:40:2d:ce:bb:85:c7:b3:e6:36:a7:49:07:62:bf:f9:8b:dc:
83:e2:16:89:7e:ab:88:de:5d:00:6d:35:80:04:d2:16:bc:bc:
ba:ec:f7:f2:31:42:d4:79:77:5d:5f:b7:12:9a:d9:01:a1:92:
cd:ed:ff:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:20 2025 by rpki-client