Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/3182ce-9d2f-4b22-abcd-acd9a2eca33f/1/rT5a7KS1A4O5bOVBAyRwN7HOuxM.roa
File: rT5a7KS1A4O5bOVBAyRwN7HOuxM.roa (raw, json)
Hash identifier: J7+RpIgeThG+7GZ7KEnYl9l3ueEMcUw21blVPA0LCrA=
Subject key identifier: AD:3E:5A:EC:A4:B5:03:83:B9:6C:E5:41:03:24:70:37:B1:CE:BB:13
Certificate issuer: /CN=b40c95867c3084c4c16a2febb46651090f3247e4
Certificate serial: 018CC2DADADBC506F40C49D5D5B343735F3A
Authority key identifier: B4:0C:95:86:7C:30:84:C4:C1:6A:2F:EB:B4:66:51:09:0F:32:47:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tAyVhnwwhMTBai_rtGZRCQ8yR-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/3182ce-9d2f-4b22-abcd-acd9a2eca33f/1/rT5a7KS1A4O5bOVBAyRwN7HOuxM.roa
Signing time: Mon 01 Jan 2024 02:29:31 +0000
ROA not before: Mon 01 Jan 2024 02:29:31 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50501
IP address blocks: 193.105.85.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 07:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:da:db:c5:06:f4:0c:49:d5:d5:b3:43:73:5f:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b40c95867c3084c4c16a2febb46651090f3247e4
Validity
Not Before: Jan 1 02:29:31 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad3e5aeca4b50383b96ce54103247037b1cebb13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:47:6e:19:16:de:6b:85:fb:fb:87:b0:4f:bb:
d4:4b:bd:d1:b3:13:81:a7:ea:12:2b:22:53:de:e1:
7f:dc:99:00:86:12:65:49:33:eb:86:ec:f4:20:ed:
ad:5e:be:6c:0a:7a:c2:f5:7c:d5:5c:a7:69:3c:4b:
e5:56:99:a5:f9:0b:33:65:15:ed:40:8e:3e:33:c1:
eb:e1:2a:66:e1:db:26:2f:88:d0:30:26:1a:bb:34:
81:1a:60:15:27:00:3a:fa:1a:df:b6:96:da:82:c3:
80:fc:bb:e0:6b:0b:86:9d:10:ec:0f:3e:9d:57:6b:
b0:3e:b8:d3:b4:8a:dc:a8:e4:72:78:b8:82:35:53:
e3:d8:2f:4a:2b:54:77:7c:e2:33:ac:cb:3c:e1:15:
74:f9:40:d6:d2:81:fe:97:a8:b0:fb:6f:58:b8:1f:
0e:c9:b7:84:8f:cd:92:eb:38:10:6a:5e:62:d0:5b:
94:f9:2d:7b:0c:29:b0:d4:b9:d2:74:5e:83:a0:ca:
aa:9c:3b:41:ac:d8:d0:99:f9:6d:c2:bb:48:bc:20:
07:12:60:80:72:85:23:ab:5c:74:2d:53:88:71:9c:
6d:a2:12:d5:45:4e:35:17:8d:15:35:4c:b7:dd:e9:
ee:49:f2:86:1f:a1:3a:2a:8e:7a:d3:f5:c2:5c:ee:
18:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:3E:5A:EC:A4:B5:03:83:B9:6C:E5:41:03:24:70:37:B1:CE:BB:13
X509v3 Authority Key Identifier:
keyid:B4:0C:95:86:7C:30:84:C4:C1:6A:2F:EB:B4:66:51:09:0F:32:47:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tAyVhnwwhMTBai_rtGZRCQ8yR-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3182ce-9d2f-4b22-abcd-acd9a2eca33f/1/rT5a7KS1A4O5bOVBAyRwN7HOuxM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/3182ce-9d2f-4b22-abcd-acd9a2eca33f/1/tAyVhnwwhMTBai_rtGZRCQ8yR-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.85.0/24
Signature Algorithm: sha256WithRSAEncryption
36:e2:ad:dd:af:d3:b8:8b:65:39:d1:4d:be:4e:b4:20:bc:7a:
95:71:18:f6:56:49:af:11:20:d4:4d:be:29:1d:33:5e:8a:3a:
11:9f:51:1d:4b:c7:cf:4f:49:b5:a7:da:56:20:1c:da:63:bf:
a7:ef:ee:17:9f:ba:ca:ea:e7:93:d9:04:ea:22:7c:a4:7c:d4:
f9:df:f0:86:69:b6:97:73:c5:ce:09:c0:12:e5:94:02:19:14:
a5:cb:4e:ed:34:df:cd:73:d2:9f:63:69:03:31:dc:82:4f:f2:
86:e5:bb:40:e2:75:6e:8e:17:b4:79:5d:33:fd:82:41:0e:5d:
61:28:49:04:70:4e:15:f7:33:6d:c2:fb:47:82:94:ea:66:4b:
c6:c7:a3:5d:7b:ee:49:0d:f4:44:ee:50:b0:ec:cf:83:69:7d:
27:19:7e:2a:30:c0:fe:93:40:32:e4:af:d4:31:c5:b1:46:3a:
05:95:1a:6a:e3:64:0b:00:34:75:3c:23:84:6d:9e:ba:fb:eb:
3d:d9:58:15:e7:96:54:40:1c:6f:52:75:95:a4:47:8d:e2:09:
76:bf:33:d5:1b:8a:b3:15:7c:2e:ff:29:46:9e:ce:8a:47:c2:
6b:ba:c2:9d:10:89:e5:d7:f7:5a:3c:b8:98:e0:32:80:c0:95:
42:0a:e5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:35:38 2025 by rpki-client