Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/2fotSMMlwgEoBIDIQ99ey7Ll1Dc.roa
File: 2fotSMMlwgEoBIDIQ99ey7Ll1Dc.roa (raw, json)
Hash identifier: RYWDrZ34f5ONkmPrn19c9ruZPcsngFLTjvcipl25A80=
Subject key identifier: D9:FA:2D:48:C3:25:C2:01:28:04:80:C8:43:DF:5E:CB:B2:E5:D4:37
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 019243F5B54B1F410D8C8B1532002A0FA55D
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/2fotSMMlwgEoBIDIQ99ey7Ll1Dc.roa
Signing time: Mon 30 Sep 2024 17:23:49 +0000
ROA not before: Mon 30 Sep 2024 17:23:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214105
IP address blocks: 194.26.195.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:43:f5:b5:4b:1f:41:0d:8c:8b:15:32:00:2a:0f:a5:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Sep 30 17:23:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9fa2d48c325c201280480c843df5ecbb2e5d437
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:11:6a:c9:e2:5b:ef:d3:16:36:51:4e:2a:ab:
2f:bd:59:e3:c5:c7:98:20:ec:9d:90:03:d9:aa:6c:
6a:5d:f8:3b:83:a0:53:c2:03:25:40:47:ba:1b:12:
b4:1a:2e:b0:4b:38:d7:98:99:80:c7:ae:9f:f1:9e:
4d:15:a2:43:74:bb:5f:64:de:fa:a4:ae:ae:8a:0c:
09:13:ed:d2:1f:09:33:a1:95:2c:c1:d8:84:4e:be:
08:7e:a5:1f:0e:95:8e:99:e6:89:f3:c8:36:93:6c:
a0:ff:ce:7d:ae:4c:4f:3a:4a:58:fd:96:54:7f:d0:
e8:ab:3c:47:85:41:b3:95:97:f5:83:3d:1b:98:00:
cd:f1:48:7c:8c:a6:49:51:16:95:88:91:6f:4e:bb:
a5:b6:ff:83:e7:ba:e7:18:80:6b:9a:31:d9:8d:77:
4d:7d:83:a0:2b:0a:f9:08:02:17:da:a9:a7:fc:08:
7e:92:b9:b4:f9:ee:d2:d8:6e:d9:ae:48:d1:fe:93:
bf:d4:0b:09:e8:5d:ac:9f:88:9a:30:75:8a:42:b7:
f2:43:e2:a4:f5:f6:53:a0:ad:d0:46:06:cd:e3:5e:
2b:2e:f1:17:c1:b8:34:81:0a:8c:70:49:47:18:05:
d0:37:5b:fb:b2:90:69:16:20:3e:a5:af:01:9b:a2:
0c:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:FA:2D:48:C3:25:C2:01:28:04:80:C8:43:DF:5E:CB:B2:E5:D4:37
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/2fotSMMlwgEoBIDIQ99ey7Ll1Dc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.26.195.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:43:b0:a5:47:79:a1:c6:8b:44:09:7a:78:1d:8b:7f:55:c5:
28:02:6d:83:3b:51:03:32:17:8e:0b:d2:c9:62:36:6d:a7:2a:
da:db:25:0f:34:cb:c6:8a:65:d8:36:71:2f:f7:d8:8d:c2:9c:
90:c8:e0:b9:d6:bf:8e:be:93:cd:6f:a3:f2:63:97:15:8d:23:
d4:22:8d:3e:ad:7b:93:67:71:30:4e:e8:b6:38:d2:bc:92:f4:
1a:d2:dd:71:a0:2a:11:2a:c1:dd:50:09:56:dc:82:f7:28:ca:
4e:7e:5a:a9:86:1c:b3:6f:c5:ec:81:02:b0:43:29:ac:ff:d5:
de:b8:82:58:0a:0e:11:af:b3:5f:6e:20:c7:87:93:97:02:26:
d8:58:49:d7:0d:0d:fe:58:b5:30:67:91:b2:9d:9f:6e:6b:c4:
b1:8d:a4:c0:1a:e3:7e:a1:e1:01:80:de:51:a4:b5:d7:91:28:
2f:ad:bb:9a:60:c6:c3:f7:94:6e:dd:40:b5:45:54:d1:4f:56:
78:7e:ea:f0:78:f6:58:bb:4b:86:ea:14:bd:3d:7a:45:12:86:
e5:13:0c:c6:28:ed:c0:3d:9a:a3:a4:55:6b:3d:4c:14:bb:47:
df:c0:0b:7b:66:49:ca:19:f5:23:69:38:65:d0:17:a7:0b:7e:
e4:b8:ca:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:41:48 2025 by rpki-client