Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/uXASPwmwYWayAUSruiaVOCNBeog.roa
File: uXASPwmwYWayAUSruiaVOCNBeog.roa (raw, json)
Hash identifier: pWxxt9CoCgLErbc4jAsGLDKYxWJs/BJ4zdiTyS+PJVI=
Subject key identifier: B9:70:12:3F:09:B0:61:66:B2:01:44:AB:BA:26:95:38:23:41:7A:88
Certificate issuer: /CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Certificate serial: 019428260D4A4B5783F0C8E6A44ABEEED7CB
Authority key identifier: 8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/uXASPwmwYWayAUSruiaVOCNBeog.roa
Signing time: Thu 02 Jan 2025 17:52:49 +0000
ROA not before: Thu 02 Jan 2025 17:52:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61317
IP address blocks: 188.191.96.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 31 Mar 2025 05:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:0d:4a:4b:57:83:f0:c8:e6:a4:4a:be:ee:d7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d1ac83ee3a3f968d66ad2fdf4616e7bb1e4d1d7
Validity
Not Before: Jan 2 17:52:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b970123f09b06166b20144abba26953823417a88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:6b:79:73:f8:16:33:b4:87:cc:5e:ee:19:41:
d3:e4:ea:45:82:16:24:c6:0b:22:6e:cc:db:50:60:
11:93:1d:81:b3:11:8b:6d:ad:11:a2:1b:ce:88:9e:
db:a9:cb:47:8c:fd:fc:ae:37:71:19:92:8c:83:d9:
b3:75:62:c9:91:e8:9a:a7:1c:5e:7a:1d:e8:dd:cf:
d4:c1:e4:8c:cd:a3:60:5b:19:46:b2:14:2e:8f:62:
fb:70:4e:41:d1:a9:94:3f:ca:5e:01:a2:c7:22:a2:
c4:53:f6:3f:63:44:89:69:62:2c:20:d1:1d:8b:64:
51:e6:f0:73:4f:9a:fe:76:15:59:e4:90:05:c8:fb:
86:c3:e0:40:1e:b8:93:be:03:3a:86:71:da:42:e1:
89:14:86:30:53:5e:62:47:d8:74:14:5e:87:38:cf:
8f:ee:bf:3c:57:80:ce:98:f5:53:7e:9c:20:3b:d1:
ca:00:1e:ef:64:b7:65:1e:db:e9:e4:77:d6:bc:9c:
84:c7:7f:72:0c:25:2d:1c:46:7f:c8:65:44:c7:2a:
f1:c5:12:2f:67:92:df:c2:5c:60:17:81:c1:bb:60:
f3:b6:cb:18:c6:be:a7:d7:ae:08:e3:35:04:a0:a9:
40:11:0d:39:49:44:56:c0:74:9f:48:83:76:f0:72:
35:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:70:12:3F:09:B0:61:66:B2:01:44:AB:BA:26:95:38:23:41:7A:88
X509v3 Authority Key Identifier:
keyid:8D:1A:C8:3E:E3:A3:F9:68:D6:6A:D2:FD:F4:61:6E:7B:B1:E4:D1:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jRrIPuOj-WjWatL99GFue7Hk0dc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/uXASPwmwYWayAUSruiaVOCNBeog.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/4abf3f-158f-4f62-a9eb-ddf567eded03/1/jRrIPuOj-WjWatL99GFue7Hk0dc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.191.96.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:9e:fd:0d:c2:64:2a:da:58:ec:ef:2e:ba:1a:98:63:f4:a6:
25:29:97:96:22:6b:b7:bf:23:81:67:ca:a3:af:41:b5:ef:72:
b1:65:6b:ec:81:0d:d6:71:74:05:03:d5:72:8c:60:24:14:a7:
f8:79:81:9d:b7:43:7f:8c:a7:d2:ed:e1:8c:90:71:bb:ae:d0:
59:2b:ac:67:19:5c:e4:d3:9c:f5:96:75:5d:19:33:69:51:b1:
34:38:3a:3c:39:81:06:9d:a9:b6:01:ec:c6:60:cb:10:dc:2f:
34:2d:c6:d1:4a:32:3d:1e:1e:db:06:cf:b6:45:22:81:c3:da:
c6:6e:7c:23:be:e8:5b:51:16:d5:d8:19:b5:9f:75:35:e6:32:
55:ce:a5:50:50:a3:de:14:c7:58:11:c0:93:f1:72:73:b7:49:
47:0d:19:02:c1:33:46:12:83:0f:64:48:80:32:a5:53:5a:0c:
0c:6f:0a:18:d3:3b:3e:a5:ea:1c:9c:2d:67:bc:c9:f2:11:24:
7a:3c:cb:cb:04:18:ee:9c:f4:f9:2a:99:95:78:05:ad:6f:cf:
d6:50:59:39:1e:5f:30:55:e0:c6:fb:2e:63:8e:7a:13:22:01:
cc:4d:97:a4:d7:54:da:a9:55:3b:f5:e1:52:a4:ec:0b:8c:a5:
91:76:f4:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:31:06 2025 by rpki-client