Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/p_7HoW4EDuPq0bWhcsfWtl85k9I.roa
File: p_7HoW4EDuPq0bWhcsfWtl85k9I.roa (raw, json)
Hash identifier: HsxO9ILkwFEtKnKX+YnGHtZ9AMsAz/ulwSaHS0BQoRU=
Subject key identifier: A7:FE:C7:A1:6E:04:0E:E3:EA:D1:B5:A1:72:C7:D6:B6:5F:39:93:D2
Certificate issuer: /CN=18d801de9fe8a6680758817823ae36ba065c610d
Certificate serial: 0193251BF70235E16FA827D15E0E3B2DDB20
Authority key identifier: 18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/p_7HoW4EDuPq0bWhcsfWtl85k9I.roa
Signing time: Wed 13 Nov 2024 10:40:09 +0000
ROA not before: Wed 13 Nov 2024 10:40:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211286
IP address blocks: 193.31.54.0/24 maxlen: 24
193.31.55.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:25:1b:f7:02:35:e1:6f:a8:27:d1:5e:0e:3b:2d:db:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18d801de9fe8a6680758817823ae36ba065c610d
Validity
Not Before: Nov 13 10:40:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a7fec7a16e040ee3ead1b5a172c7d6b65f3993d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:60:e2:8e:1d:02:c0:fc:5e:3c:43:2f:f7:b5:
15:ed:d3:0f:e1:80:ea:99:b7:7a:76:28:4b:13:b4:
8f:bb:48:2b:07:8f:d6:b4:09:55:ed:c9:1e:02:8e:
e6:e3:4a:a5:64:82:f4:0e:34:61:f2:0f:71:bb:39:
93:7e:61:78:96:ec:52:5c:90:cc:d8:45:67:85:30:
83:9e:b1:d2:01:c4:59:f6:c4:da:6f:bf:5b:2b:8c:
9a:aa:d7:47:93:2a:b1:22:dd:4b:84:eb:18:4f:0b:
8f:57:0a:9d:c9:7b:1c:33:09:85:ed:04:6b:e6:b3:
0b:a2:f7:8b:b3:78:f4:39:e6:7f:5c:17:04:c8:70:
8c:c7:ae:85:52:ef:8d:99:74:d1:e5:32:ab:eb:4c:
43:b7:97:78:cb:43:0a:39:d3:ef:9d:45:ef:bc:b1:
9d:bf:e9:4b:21:70:b0:61:21:3d:a4:c2:69:ec:02:
9e:ae:e2:e3:bb:bd:5f:ff:49:92:b7:9c:7c:1b:85:
82:60:21:14:57:75:b6:86:10:a8:31:f7:f2:67:6f:
dc:96:9e:55:b8:f0:9e:68:ac:4f:ba:de:00:40:1d:
e6:1f:c0:75:e3:b4:8d:67:21:df:df:8a:d0:09:56:
0f:07:32:ed:a0:fc:6c:67:9b:50:b2:08:0e:e3:3a:
6d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FE:C7:A1:6E:04:0E:E3:EA:D1:B5:A1:72:C7:D6:B6:5F:39:93:D2
X509v3 Authority Key Identifier:
keyid:18:D8:01:DE:9F:E8:A6:68:07:58:81:78:23:AE:36:BA:06:5C:61:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GNgB3p_opmgHWIF4I642ugZcYQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/p_7HoW4EDuPq0bWhcsfWtl85k9I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/95c3c8-6ab1-4951-8f59-65503a9306a0/1/GNgB3p_opmgHWIF4I642ugZcYQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.31.54.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:76:51:e5:48:f9:46:f4:c6:fb:f1:a0:12:0a:1d:7b:93:ee:
f4:b4:36:51:9a:29:6f:fd:c7:ce:70:71:7f:06:fd:6f:d4:47:
ec:38:60:3d:35:5a:19:d9:39:7d:3c:40:fc:f2:e6:1a:81:5a:
1f:f1:81:2f:b9:ed:3d:9b:d8:85:05:53:b5:74:63:30:da:b2:
e7:2e:5c:a4:51:02:c2:11:98:e1:15:47:ac:d2:6f:00:ca:0d:
3e:c2:00:13:6d:1c:41:03:9b:e6:ba:f2:6d:74:25:b6:47:28:
24:de:0d:0c:26:68:ad:e2:7d:c0:b9:34:08:57:6e:0a:df:db:
4b:35:8f:ad:4e:52:77:60:3a:5f:66:d3:76:d1:d5:e1:1b:58:
41:41:e4:c4:ec:0e:59:45:a1:2c:74:79:fc:ef:c3:79:ff:b0:
7f:f9:2c:3a:23:46:ea:03:bd:8b:72:e0:8e:d5:03:d8:4c:d9:
ad:77:ef:e0:68:47:de:b5:24:cf:e5:28:ba:2c:45:a7:ec:53:
13:fa:2f:36:52:4c:a1:3f:7c:f7:f8:38:bf:ca:e0:dc:f2:3a:
09:ab:13:99:d8:83:0a:63:ec:dc:01:1b:04:2d:72:78:6b:42:
51:93:15:85:05:38:6e:16:a9:29:ed:3e:97:1a:3d:6e:a2:4d:
48:b9:07:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:51 2025 by rpki-client