Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/VnZqYsJfKG6kjH8x2OHwJeQ9YUo.roa
File: VnZqYsJfKG6kjH8x2OHwJeQ9YUo.roa (raw, json)
Hash identifier: gNWHBz7HpumooiT/oVxMQuBlj+Z3EGdGjkCrJyNsWo4=
Subject key identifier: 56:76:6A:62:C2:5F:28:6E:A4:8C:7F:31:D8:E1:F0:25:E4:3D:61:4A
Certificate issuer: /CN=ca3bca8764946932ba2da8bdb7d13cd86895af69
Certificate serial: 019424454A69B811E16B14D41DCAA619B432
Authority key identifier: CA:3B:CA:87:64:94:69:32:BA:2D:A8:BD:B7:D1:3C:D8:68:95:AF:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yjvKh2SUaTK6Lai9t9E82GiVr2k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/VnZqYsJfKG6kjH8x2OHwJeQ9YUo.roa
Signing time: Wed 01 Jan 2025 23:48:28 +0000
ROA not before: Wed 01 Jan 2025 23:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1103
IP address blocks: 132.229.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Fri 17 Jan 2025 10:09:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:4a:69:b8:11:e1:6b:14:d4:1d:ca:a6:19:b4:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ca3bca8764946932ba2da8bdb7d13cd86895af69
Validity
Not Before: Jan 1 23:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56766a62c25f286ea48c7f31d8e1f025e43d614a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:8d:dc:d0:a8:de:35:a2:a9:bf:89:f5:6b:27:
d2:d6:14:28:3b:da:e2:4b:11:e5:f5:9e:b7:1d:cf:
64:ad:b7:ac:71:bf:99:d5:63:7c:fe:37:6e:60:a9:
0b:29:67:0f:93:f5:4c:d0:bc:21:a5:ab:67:38:2f:
41:b8:b3:b4:87:2a:f4:75:75:71:62:24:08:de:bf:
1d:a7:92:4e:87:8e:c3:10:eb:92:e8:f2:af:d4:10:
0f:20:12:3b:8a:42:99:4f:8d:b7:42:5f:65:0f:07:
02:85:fb:9d:ab:70:6f:37:64:74:b5:d0:35:53:6f:
6e:90:8a:23:e5:ae:de:97:95:25:e4:eb:f3:70:06:
67:b2:b6:ca:7a:b5:ec:5e:e5:22:10:df:9f:5d:9b:
0c:37:f3:43:3e:38:a6:91:80:32:1d:17:6c:15:72:
37:ae:4f:13:dd:30:5a:64:ed:90:7e:4a:ff:91:8e:
a7:83:36:5b:6d:ae:9a:45:a0:9d:51:f3:36:e1:dc:
fa:10:67:46:a4:9a:f5:ca:cf:e1:a7:37:99:53:43:
cb:af:72:c5:0c:b0:dc:0b:8a:bf:f6:7c:cc:02:59:
6b:7a:d8:c8:85:d0:b8:f0:03:a9:67:20:62:f9:b8:
d2:0f:21:4b:33:7e:00:af:39:1a:99:fb:68:f5:85:
74:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:76:6A:62:C2:5F:28:6E:A4:8C:7F:31:D8:E1:F0:25:E4:3D:61:4A
X509v3 Authority Key Identifier:
keyid:CA:3B:CA:87:64:94:69:32:BA:2D:A8:BD:B7:D1:3C:D8:68:95:AF:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yjvKh2SUaTK6Lai9t9E82GiVr2k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/VnZqYsJfKG6kjH8x2OHwJeQ9YUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/4e0f2f-40b7-44d9-9fa0-012ddeadf75e/1/yjvKh2SUaTK6Lai9t9E82GiVr2k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
132.229.0.0/16
Signature Algorithm: sha256WithRSAEncryption
89:15:50:5b:20:36:72:57:bc:20:1a:7b:d1:5a:39:0e:51:37:
c8:b3:08:c9:7a:9c:e8:f4:1e:e9:e1:72:dd:10:c0:43:0b:66:
9e:08:dd:ca:4d:60:e6:25:fe:d5:c8:d3:d8:df:4e:99:43:d1:
af:63:83:80:ec:4c:bd:e2:b8:02:fa:9d:c7:c2:21:45:32:80:
3b:1a:56:01:3f:45:32:d3:53:80:d6:6e:73:3a:15:1b:10:a7:
c7:b1:aa:49:69:10:5b:a4:c2:ec:21:8e:03:6c:48:eb:f4:07:
6d:16:07:db:4e:4f:95:ad:1f:7d:94:00:1f:c6:ac:32:40:ed:
83:1f:7b:79:0d:3c:ea:1a:8b:05:9c:68:5e:c1:6f:46:a6:62:
f7:6f:0c:76:7f:c0:83:8c:a5:40:5c:9a:3e:5a:00:89:e9:10:
68:7e:b2:3b:c3:9f:56:b4:64:a0:bd:e3:1b:47:12:df:b9:f2:
79:aa:19:78:00:32:11:e0:0e:a7:8f:f9:a6:e9:c1:18:ff:de:
ee:58:0f:db:db:36:ef:25:fd:75:d2:6a:9d:4b:c3:06:52:12:
71:0d:3a:18:76:71:88:02:2a:9a:a2:01:0c:53:be:61:7b:f1:
08:1c:00:e8:f0:9c:a9:c1:97:2e:e4:94:d5:d7:fa:83:d7:66:
13:78:e5:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 07:00:07 2025 by rpki-client