Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/vNzHN_Qo7oPOON43j1gJwfdHfjA.roa
File: vNzHN_Qo7oPOON43j1gJwfdHfjA.roa (raw, json)
Hash identifier: BVZOyxzzjOoleNBLhaSFAkkLi8XL5MSr63CuRXM9XiM=
Subject key identifier: BC:DC:C7:37:F4:28:EE:83:CE:38:DE:37:8F:58:09:C1:F7:47:7E:30
Certificate issuer: /CN=b72945f57103153a07854e74e227f2aec1c5f430
Certificate serial: 01942220069F393CEBCEB2CE5BFFD0006019
Authority key identifier: B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/vNzHN_Qo7oPOON43j1gJwfdHfjA.roa
Signing time: Wed 01 Jan 2025 13:48:31 +0000
ROA not before: Wed 01 Jan 2025 13:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 212.16.92.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 18 Feb 2025 11:54:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:06:9f:39:3c:eb:ce:b2:ce:5b:ff:d0:00:60:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b72945f57103153a07854e74e227f2aec1c5f430
Validity
Not Before: Jan 1 13:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bcdcc737f428ee83ce38de378f5809c1f7477e30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:12:51:a7:4f:02:db:74:f3:92:3c:f2:46:9c:
35:47:35:c7:f2:f6:fb:a2:8b:7b:0f:78:57:74:65:
5f:76:51:d3:0d:ee:bf:43:e7:73:75:ec:2a:20:63:
3a:ba:61:86:39:97:9b:b1:f4:79:35:3c:97:8a:bf:
38:72:2a:0d:53:77:8c:bc:03:23:02:19:b2:7b:2f:
3e:e9:c5:93:3a:d4:5b:6e:96:95:47:a2:38:18:8f:
a0:53:af:3a:37:3b:a6:b4:02:15:0a:49:fe:04:ca:
de:c5:93:a4:3e:7a:46:1b:a7:4b:0f:76:b7:ec:90:
ce:77:63:cf:09:20:82:5c:1c:db:05:25:9c:46:e9:
a1:e0:e0:f1:23:95:ba:9f:96:a4:bd:7c:66:0c:bd:
69:b2:40:e6:83:37:39:5c:cc:6b:55:cc:23:44:a4:
82:97:c0:c6:23:29:54:0d:a5:7c:23:e3:ca:33:be:
dc:ba:08:d7:52:95:aa:fd:00:ce:53:df:7f:07:9b:
4c:a8:47:29:5a:ad:82:39:39:a4:1c:65:28:a5:29:
cf:65:f8:8a:81:70:41:23:6a:89:ff:b5:1c:9e:17:
0b:4d:21:f0:ec:66:22:f1:a8:78:f6:02:e7:35:c1:
44:52:dd:d2:50:60:82:c8:28:6b:b5:64:c8:8a:a4:
b3:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:DC:C7:37:F4:28:EE:83:CE:38:DE:37:8F:58:09:C1:F7:47:7E:30
X509v3 Authority Key Identifier:
keyid:B7:29:45:F5:71:03:15:3A:07:85:4E:74:E2:27:F2:AE:C1:C5:F4:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tylF9XEDFToHhU504ifyrsHF9DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/vNzHN_Qo7oPOON43j1gJwfdHfjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/5f6906-3fb0-4dff-8d01-2a09cc53a805/1/tylF9XEDFToHhU504ifyrsHF9DA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.16.92.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:99:d6:9a:0f:63:a3:dd:5f:54:51:4a:f7:d7:68:06:61:79:
bb:03:9d:dc:5a:ba:56:e0:f3:57:03:3e:bf:b4:aa:67:57:83:
59:3e:98:91:6e:a4:12:2e:40:d6:a5:46:50:c4:4a:58:92:5a:
25:b3:33:0d:36:5c:73:16:d7:c0:6c:71:2c:19:88:c4:ad:ad:
db:97:c4:f6:7b:d1:64:20:0e:98:d3:38:d5:b8:d8:ac:c9:e7:
73:63:36:69:03:8d:28:04:93:f5:dc:31:3c:67:9b:5e:64:a4:
3b:7c:55:74:34:02:7c:85:ba:f2:84:4f:66:a7:c2:c4:6c:bb:
c6:44:73:18:a6:12:4a:fb:07:b9:2a:6c:08:13:18:30:33:1e:
c8:75:a4:c6:6a:8c:63:30:ac:69:d7:5a:be:e4:8d:19:9a:e0:
a2:ea:76:a0:f4:81:0c:25:f6:5b:d1:3f:88:b8:dd:f9:cd:c0:
d9:9d:bc:1f:38:a3:eb:99:7e:01:80:62:d6:81:76:0f:0d:10:
22:bb:5f:56:9a:ae:4f:74:b0:e2:b5:e1:9f:ca:f0:bd:1e:f4:
54:e4:b9:76:a8:f2:3e:a2:53:6c:bc:ab:80:72:b1:fd:a7:a7:
26:a4:f7:1d:9a:af:24:0a:62:74:a6:69:76:0b:aa:b2:3a:fc:
70:b5:72:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:41:39 2025 by rpki-client