Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/b9hgBqak-6mlo0QPHY4lueEOJpE.roa
File: b9hgBqak-6mlo0QPHY4lueEOJpE.roa (raw, json)
Hash identifier: uv05fGSfuMYIPY2xDpMlaUm9LUNdfYolISR5pro3mz8=
Subject key identifier: 6F:D8:60:06:A6:A4:FB:A9:A5:A3:44:0F:1D:8E:25:B9:E1:0E:26:91
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0193CF50DA5B8E186D362971FFF37C63181F
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/b9hgBqak-6mlo0QPHY4lueEOJpE.roa
Signing time: Mon 16 Dec 2024 11:53:22 +0000
ROA not before: Mon 16 Dec 2024 11:53:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199785
IP address blocks: 212.192.31.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 27 Dec 2024 15:46:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:cf:50:da:5b:8e:18:6d:36:29:71:ff:f3:7c:63:18:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Dec 16 11:53:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6fd86006a6a4fba9a5a3440f1d8e25b9e10e2691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d2:f7:29:a1:39:57:95:a0:8e:1e:d8:66:32:
17:4a:41:6b:01:0c:e7:2a:da:c2:2d:da:69:a5:d9:
83:a9:27:58:fe:84:11:ca:21:f0:82:1a:7b:f7:8a:
c3:7b:7e:09:a5:d4:98:c3:d8:17:ce:ec:46:e3:88:
2c:54:1a:29:aa:af:69:b3:ae:b0:58:d1:e5:85:44:
03:7a:5f:94:15:4d:6c:9f:55:d8:82:f0:6f:38:46:
a4:64:34:d2:0e:09:43:0c:e9:76:1e:15:9f:68:c2:
e5:df:3e:57:9c:af:05:c5:55:9d:e8:95:ab:61:4f:
5f:90:45:e4:71:b7:6e:3c:d2:67:63:a4:57:9b:e0:
16:55:90:96:3a:d6:33:d3:6e:98:6b:34:26:df:79:
08:c9:63:7c:f2:dd:9e:ab:65:77:e8:2f:4e:d3:d1:
76:05:b3:ba:82:0f:0d:1d:a7:a2:67:01:cb:3a:d8:
c1:88:0b:72:68:c9:a0:de:1f:3d:07:6a:63:50:86:
15:d6:6a:32:be:a2:a1:49:8c:7a:e8:3f:29:8c:e9:
3f:1d:d6:4f:b3:ea:46:9a:69:03:28:96:4d:95:ab:
57:ab:fc:2c:f8:14:6e:43:06:7f:62:e5:fd:fd:98:
82:0f:b0:32:4c:e0:76:5f:07:b1:fc:c6:54:57:f8:
2d:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D8:60:06:A6:A4:FB:A9:A5:A3:44:0F:1D:8E:25:B9:E1:0E:26:91
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/b9hgBqak-6mlo0QPHY4lueEOJpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.192.31.0/24
Signature Algorithm: sha256WithRSAEncryption
98:17:45:48:76:c4:85:99:48:bd:70:d6:7b:66:58:17:60:a2:
ef:5a:7b:40:81:db:17:6c:0a:9e:8b:e1:d0:18:c5:d2:ec:05:
60:7b:44:d8:85:8e:1c:f4:c7:ea:2b:ef:a8:62:c6:ec:2f:6f:
70:31:4c:87:b0:80:fc:8a:64:d0:df:c2:29:24:1a:11:d5:06:
4f:8e:90:fb:ce:8b:6d:bd:75:36:65:c7:f7:a8:d0:82:e1:de:
f0:8b:41:a6:ca:51:18:46:22:ff:52:53:cd:10:b3:49:bf:45:
b0:e0:73:07:b5:62:f4:29:1c:ab:e7:cc:84:17:1c:e6:16:d9:
08:89:53:ac:52:66:7c:99:c2:53:8a:e8:e7:b0:76:3d:5c:cf:
42:cc:c2:aa:f2:da:41:27:f9:65:f8:78:45:95:06:95:29:cc:
7b:c1:de:99:31:7f:f4:e6:33:95:f6:e9:56:f1:4d:2f:f6:f0:
f3:af:44:23:9e:b5:e6:2a:f8:cb:0e:90:95:27:b0:80:8b:2b:
7e:c2:da:94:9a:5f:07:b1:67:e0:79:b5:f7:ca:f7:f8:cf:c7:
03:80:c2:89:25:6f:ae:69:98:b4:9f:d0:6c:12:2f:f7:0c:9a:
f8:94:5b:b5:9a:52:2b:c8:96:f6:db:05:5f:4a:15:a1:27:35:
15:da:90:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 14 11:42:46 2025 by rpki-client