Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/AgkwhfNNvvYNkyIm87vVZmpYczc.roa
File: AgkwhfNNvvYNkyIm87vVZmpYczc.roa (raw, json)
Hash identifier: uywN+sLfrqMukxoioaNyGsp+e4pDB8xvkLYoSjEcfC0=
Subject key identifier: 02:09:30:85:F3:4D:BE:F6:0D:93:22:26:F3:BB:D5:66:6A:58:73:37
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 0194236A169CC1EB75750477B639BEEAEE72
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/AgkwhfNNvvYNkyIm87vVZmpYczc.roa
Signing time: Wed 01 Jan 2025 19:49:02 +0000
ROA not before: Wed 01 Jan 2025 19:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 82.206.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Feb 2025 14:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:16:9c:c1:eb:75:75:04:77:b6:39:be:ea:ee:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Jan 1 19:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02093085f34dbef60d932226f3bbd5666a587337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:8a:82:b8:05:65:2a:b3:3d:6d:18:14:b5:
5e:f9:b1:6f:89:45:5e:da:53:3f:1d:4e:77:9a:47:
b5:fc:52:92:4e:9a:e1:23:a6:e6:0b:83:7e:1d:04:
69:0b:c1:b8:df:c1:29:1d:3a:08:0a:83:78:4f:a2:
36:1c:d6:e7:f8:7e:20:0c:2b:c8:0f:3d:fa:30:36:
e4:db:48:73:46:40:47:7c:3e:79:d1:40:ca:32:8c:
40:c1:12:c3:d7:e2:25:87:ac:ef:b5:dc:a6:65:fd:
c8:c2:e7:3d:84:05:7f:c2:18:77:5d:f9:a1:ac:ad:
93:66:b5:f7:16:10:70:c5:44:d5:d3:9f:49:ca:69:
03:b0:50:0a:c9:7f:07:21:e9:6e:fd:c8:96:79:dd:
5d:3f:c6:00:d2:48:5f:b0:90:06:b0:e3:7e:3a:0f:
0a:10:0c:a2:98:72:52:51:e9:7a:28:6c:81:5e:99:
cd:59:87:ca:c0:c7:10:1c:6e:ff:46:82:ad:c7:1b:
f3:31:d7:5a:54:a8:ce:b3:a8:63:98:04:67:2d:54:
15:06:2f:b6:9b:40:57:26:f9:37:d5:1b:0c:29:26:
e2:a0:b2:f8:d3:60:7e:6f:44:cb:07:9d:79:79:85:
fb:01:ac:ed:18:7e:46:f2:d4:58:a3:1d:3e:bd:32:
6a:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:09:30:85:F3:4D:BE:F6:0D:93:22:26:F3:BB:D5:66:6A:58:73:37
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/AgkwhfNNvvYNkyIm87vVZmpYczc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.4.0/22
Signature Algorithm: sha256WithRSAEncryption
72:67:f1:14:3d:fa:4f:a5:66:f3:ec:78:12:45:26:cd:01:0b:
04:64:c1:49:86:1b:d6:ae:df:f4:3b:c4:81:96:e1:c6:dc:ff:
72:f4:6a:38:68:88:a1:5e:bc:e0:32:60:0e:62:64:9a:6c:16:
ef:e8:a3:cc:a1:66:e2:a2:6e:ca:0f:c6:56:6c:bf:60:fa:95:
13:45:d2:da:bc:d8:d6:84:49:64:9d:61:70:f2:ac:7f:18:ff:
b8:9b:d9:06:fe:6e:0c:8c:c6:a3:d5:7a:09:1a:43:5d:5e:b9:
e8:f9:9d:b9:ad:4b:62:45:66:e2:f3:8a:a6:6c:4c:49:1e:2a:
5d:a3:3a:36:b6:e3:ff:b1:3b:2b:5b:b9:59:1b:ce:7c:43:a7:
5d:ec:36:7b:f6:9d:10:e2:6a:77:83:72:2c:4b:89:7b:10:ce:
e6:64:68:04:f8:7c:23:d2:89:93:56:f8:0d:b8:18:03:2c:d6:
2c:17:e3:2f:11:d9:c3:e6:89:ef:f3:34:98:26:89:70:8d:86:
40:d5:fd:20:ac:73:2a:83:ce:d1:c9:92:23:07:67:51:07:b2:
2c:f2:f4:1a:91:0a:ca:25:c7:4f:d4:11:b4:af:4e:0f:d5:28:
3f:04:eb:a4:91:9b:69:8c:97:87:6d:a1:42:9c:02:ef:f1:60:
20:3d:78:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:37:36 2025 by rpki-client