Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bUJmy5akXjO7nHRO0NsD99gF2kM.roa
File: bUJmy5akXjO7nHRO0NsD99gF2kM.roa (raw, json)
Hash identifier: OrN5BPZivvlwqYHle5JiNKleJIiobRC8Oj2kpOSh/m4=
Subject key identifier: 6D:42:66:CB:96:A4:5E:33:BB:9C:74:4E:D0:DB:03:F7:D8:05:DA:43
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01942D7AA1F6B5FE67CFF3E53BF2E9BF18F5
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bUJmy5akXjO7nHRO0NsD99gF2kM.roa
Signing time: Fri 03 Jan 2025 18:43:19 +0000
ROA not before: Fri 03 Jan 2025 18:43:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8100
IP address blocks: 188.64.142.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Jan 2025 04:16:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:2d:7a:a1:f6:b5:fe:67:cf:f3:e5:3b:f2:e9:bf:18:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Jan 3 18:43:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6d4266cb96a45e33bb9c744ed0db03f7d805da43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c1:55:ec:71:31:9a:0c:61:46:44:1b:53:4c:
c5:c7:69:97:a8:cd:df:5b:7c:f3:75:96:3b:f7:64:
96:c8:32:91:08:11:48:f1:46:8a:52:fc:07:3c:cd:
9c:9f:7d:69:ad:18:05:54:96:d3:5a:17:96:d5:da:
0b:77:17:69:b7:14:9c:44:9f:a0:cc:c1:7e:34:e3:
25:85:ac:83:7d:6b:49:1b:d3:fd:ac:eb:49:2d:d0:
0b:f7:df:9f:8c:4d:f4:8f:2e:74:b1:d3:63:d4:95:
be:c4:d3:4d:5d:65:a7:5a:b5:0b:3d:9e:af:41:18:
97:61:75:8a:a3:51:f0:79:60:11:0c:78:85:07:4c:
bb:d8:43:1b:d9:54:03:dd:1a:30:fd:e2:05:84:ef:
89:ec:48:0a:f0:e1:e9:4a:33:5b:e1:d0:cf:98:b1:
21:9f:98:89:84:99:5e:1b:46:42:ba:34:0c:b0:42:
b3:1a:8c:f9:5f:84:cc:7a:d4:f8:a7:82:ca:db:1b:
73:d8:9a:a8:fc:a1:0f:65:3f:f5:4b:59:22:89:7e:
7d:66:fc:03:39:6f:73:5a:97:7d:57:b3:28:48:c7:
66:bb:aa:cc:06:b2:5c:de:fc:8a:d9:0a:f5:ff:78:
62:c2:5a:00:9c:cb:bc:57:50:39:b0:70:e5:7e:98:
49:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:42:66:CB:96:A4:5E:33:BB:9C:74:4E:D0:DB:03:F7:D8:05:DA:43
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/bUJmy5akXjO7nHRO0NsD99gF2kM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.64.142.0/24
Signature Algorithm: sha256WithRSAEncryption
48:df:24:b3:96:e0:1b:b6:6a:91:b4:e1:8e:92:11:36:93:37:
59:6f:ed:db:ba:55:49:2b:d2:d2:4d:59:2b:4c:56:0f:48:8f:
dd:67:98:72:e6:b8:c4:19:44:1d:8f:b2:d0:08:52:f1:1f:ab:
d3:74:2c:c3:fa:af:a2:e2:fe:bd:f3:84:1d:83:bf:fe:ae:00:
05:6c:2d:48:e6:8b:5a:c6:6f:65:54:7e:7b:73:ef:24:fd:c6:
6a:46:1e:9b:70:24:47:a3:61:46:9e:da:3e:fa:5f:7e:c3:73:
83:f6:b9:da:da:ba:2b:54:47:34:db:f8:1e:92:b9:f0:f7:f0:
7b:57:25:01:7c:eb:2d:6b:86:49:6b:4e:d6:c9:90:c8:fb:29:
d9:e4:35:f8:10:b8:5c:3f:17:c4:84:d3:43:18:45:e7:72:54:
2a:8f:c8:07:65:95:e1:96:08:11:8d:11:7f:10:ce:fb:53:93:
04:86:cb:4b:f4:88:bc:9e:0a:12:04:ab:c4:18:c7:d1:e5:2f:
1a:56:9d:0b:ad:39:e4:90:f8:90:d3:00:9f:db:f6:84:9b:bd:
75:6e:8c:8c:20:14:45:04:9c:a6:69:60:ea:15:fc:f9:95:93:
96:76:9a:8e:9f:11:35:7f:f8:65:6a:4f:f9:42:95:6d:42:60:
ec:c5:10:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 5 12:45:14 2025 by rpki-client