Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/w_Pn5UoPp_w_0Elwx_ELMjD_2Ks.roa
File: w_Pn5UoPp_w_0Elwx_ELMjD_2Ks.roa (raw, json)
Hash identifier: s+y/SVot+iUKXgYYFnL92VNA36fCH2OVcOc0A7/r+sg=
Subject key identifier: C3:F3:E7:E5:4A:0F:A7:FC:3F:D0:49:70:C7:F1:0B:32:30:FF:D8:AB
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 019277F22B0EB8E25D735B1974F702F17D65
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/w_Pn5UoPp_w_0Elwx_ELMjD_2Ks.roa
Signing time: Thu 10 Oct 2024 19:40:12 +0000
ROA not before: Thu 10 Oct 2024 19:40:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 54339
IP address blocks: 141.226.243.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:77:f2:2b:0e:b8:e2:5d:73:5b:19:74:f7:02:f1:7d:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Oct 10 19:40:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c3f3e7e54a0fa7fc3fd04970c7f10b3230ffd8ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b6:4f:ec:27:7e:32:3d:56:9c:1b:03:b9:d5:
68:3a:ff:6e:b3:db:cf:0e:af:7c:ff:63:38:dc:34:
ec:ad:c5:5d:6a:0d:9a:a6:d5:89:d9:0e:d4:a2:2e:
33:d1:69:cf:4a:2b:2f:73:2a:4f:9e:9b:2b:ca:de:
82:9c:99:02:5b:2a:bc:4e:de:0b:8d:09:ef:67:7d:
a9:f3:c0:1c:1a:e2:25:d4:09:32:03:88:ab:1c:e9:
bc:0b:1e:bb:68:5c:f3:21:a0:98:c5:a2:8e:f1:fa:
1a:83:c2:ed:18:70:a2:e7:0b:e4:7c:aa:45:0d:e1:
86:45:ca:0e:ba:1e:a8:47:9f:92:bb:57:d4:c8:38:
62:10:10:36:69:e3:fd:9d:86:60:ad:cf:ce:2a:73:
65:32:9f:41:19:f4:08:d9:74:bb:96:52:ed:2f:1e:
db:6e:72:94:f3:d1:5a:94:2f:7c:b8:95:10:40:f2:
1d:7c:89:58:9f:d2:ac:bd:fb:ac:65:a6:a7:33:9c:
7c:79:11:92:6b:8e:bf:43:ae:2e:33:aa:3d:60:fe:
d9:19:db:e4:5d:6a:1e:79:b7:9a:a3:46:ec:81:9f:
53:f8:f2:a1:f9:a1:16:af:42:d0:ae:ce:0a:b8:02:
f5:90:4c:22:32:db:66:29:f9:33:f1:fd:5a:3f:f8:
8a:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:F3:E7:E5:4A:0F:A7:FC:3F:D0:49:70:C7:F1:0B:32:30:FF:D8:AB
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/w_Pn5UoPp_w_0Elwx_ELMjD_2Ks.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.243.0/24
Signature Algorithm: sha256WithRSAEncryption
38:04:ef:b0:4d:bf:f7:aa:8f:a8:4c:c3:0d:97:0a:32:c5:d5:
5a:27:f0:8e:2d:80:a5:f0:60:8d:61:ff:de:27:c0:ab:de:9a:
03:0c:27:e9:dc:32:33:94:c4:9a:f3:7b:e8:cd:d3:77:0a:ee:
00:ee:d1:17:89:d1:ca:14:6a:30:91:4b:65:51:c4:96:16:f1:
7b:76:b1:13:bc:3b:2e:77:38:0c:c5:ca:da:e7:9d:ff:e0:d8:
a5:aa:24:79:74:a8:94:1f:26:7b:19:81:fe:a3:35:51:29:8c:
b4:a0:64:fc:7a:5b:72:7d:30:6c:bf:94:24:e7:f4:cd:94:14:
37:75:59:61:25:b3:5b:4d:f3:3a:b1:81:11:20:d5:95:3b:c8:
8a:28:c4:d2:58:19:35:64:0a:90:c8:72:7a:ce:85:14:68:c9:
8f:a0:66:da:e4:fb:64:06:cd:b6:2b:19:7f:5e:da:b8:95:d6:
7d:8a:d5:cc:fd:18:9a:ab:cb:c7:17:0f:5b:31:8b:5a:a1:fe:
89:2c:4a:8c:ed:6b:1f:eb:ec:fd:dc:6f:73:ee:d3:e0:c3:26:
15:76:41:32:b2:31:d5:09:ed:48:fa:ff:ee:4c:7b:68:c8:e6:
ca:de:bb:51:f7:cc:12:5e:99:8f:4c:b9:1b:7e:05:62:fd:85:
b8:a6:1c:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:25 2025 by rpki-client