Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/mP813yLtGa0C_KgKDqjO6_4QLAA.roa
File: mP813yLtGa0C_KgKDqjO6_4QLAA.roa (raw, json)
Hash identifier: gbqYtp/+9kkCctWkcxfoAcWPo9CQEiI1jqeuzTrrv8w=
Subject key identifier: 98:FF:35:DF:22:ED:19:AD:02:FC:A8:0A:0E:A8:CE:EB:FE:10:2C:00
Certificate issuer: /CN=f811fa5eff370bc36d0e3929625e3414081a2392
Certificate serial: 0191BD83E28291CC41F13AB94B21E3F45646
Authority key identifier: F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/mP813yLtGa0C_KgKDqjO6_4QLAA.roa
Signing time: Wed 04 Sep 2024 14:50:22 +0000
ROA not before: Wed 04 Sep 2024 14:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214780
IP address blocks: 94.127.88.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:48:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:bd:83:e2:82:91:cc:41:f1:3a:b9:4b:21:e3:f4:56:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f811fa5eff370bc36d0e3929625e3414081a2392
Validity
Not Before: Sep 4 14:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=98ff35df22ed19ad02fca80a0ea8ceebfe102c00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ba:78:bf:60:06:2b:97:20:ce:13:18:24:f8:
6f:73:08:02:73:6b:c9:01:05:45:b7:79:05:f7:78:
a6:73:9d:c4:bd:85:5f:8a:f4:d8:6e:c6:04:7e:61:
bf:ef:d3:6f:d3:3d:32:a1:0d:0c:ca:2e:f3:bf:8b:
4d:2a:e1:62:89:d4:a1:7b:37:62:6d:16:5b:60:3b:
d1:88:40:db:c1:59:c3:db:4c:23:a3:6a:f8:9e:18:
49:cc:a6:bc:2b:2f:95:36:42:14:a8:37:e6:8a:70:
6e:83:c3:45:03:0e:18:7a:69:e0:af:82:8c:10:0b:
f0:a5:e1:ef:4d:3b:bd:99:6a:9d:a6:a1:81:b8:69:
15:77:59:ad:97:07:6c:77:d9:c4:01:d6:da:01:1f:
b2:96:b8:cb:0d:e5:5c:b1:c5:66:3c:c1:4d:9b:5a:
bf:92:f1:08:40:09:b2:46:fe:c6:9a:32:10:32:e4:
a2:91:51:2e:4b:fa:20:70:80:56:3f:6a:52:73:f7:
fd:2f:10:c1:f7:20:74:0e:67:3a:1b:2a:f4:c7:c7:
a6:a1:4b:a2:7f:f3:56:8a:50:b2:7d:30:e2:9f:f6:
a2:b2:48:77:0f:b1:a2:9d:f7:13:58:1c:40:ec:e7:
d0:4b:2b:b5:30:14:0c:44:b8:df:20:e3:29:47:ec:
6c:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:FF:35:DF:22:ED:19:AD:02:FC:A8:0A:0E:A8:CE:EB:FE:10:2C:00
X509v3 Authority Key Identifier:
keyid:F8:11:FA:5E:FF:37:0B:C3:6D:0E:39:29:62:5E:34:14:08:1A:23:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-BH6Xv83C8NtDjkpYl40FAgaI5I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/mP813yLtGa0C_KgKDqjO6_4QLAA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4a293d-2ad3-4114-a2b1-1cc505501a0f/1/1-BH6Xv83C8NtDjkpYl40FAgaI5I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.127.88.0/22
Signature Algorithm: sha256WithRSAEncryption
3d:33:a9:66:60:3a:3e:a6:96:ce:42:85:14:57:7c:dd:f6:db:
aa:aa:a8:66:83:dc:61:0d:50:da:01:7b:1c:f3:8c:24:20:b6:
7d:2d:1c:bf:94:0d:ae:f9:2a:4d:1f:da:dc:4f:1c:71:bb:e3:
98:7f:ee:38:bc:5b:8d:cb:92:6f:f0:ef:2d:95:82:0f:89:8d:
be:8b:e7:c7:7f:c0:ef:54:17:54:48:91:e7:8f:90:1f:44:1c:
1d:0d:aa:73:0f:8d:55:5c:4b:e4:e4:8a:d4:99:c2:e1:88:a5:
7d:45:18:b4:54:48:36:9f:d1:a4:72:32:4c:a6:53:38:ef:24:
3b:14:38:4d:c8:18:73:68:3f:91:64:fd:06:79:68:27:e3:81:
a0:39:80:0d:bd:89:2b:dd:94:87:62:1b:c6:fb:b3:61:34:59:
06:6e:2f:4b:eb:94:2c:f2:f9:07:12:43:db:b7:05:75:7c:fa:
9d:b6:1e:2c:c6:21:7d:42:5c:71:d8:a1:bc:00:b4:41:6e:09:
9e:fb:65:7f:e6:1a:3d:6f:72:2e:ee:f8:dc:83:39:83:d8:1e:
eb:4e:6b:6c:c9:0f:b8:24:4b:65:62:81:72:9f:c6:71:27:e8:
b9:d6:86:bc:12:cf:0e:fd:28:c7:8e:3a:a4:5d:82:30:9c:c2:
c3:ae:e5:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:49 2025 by rpki-client