Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/1SEyyaiDFf5UBFoboP8oOD14u4I.roa
File: 1SEyyaiDFf5UBFoboP8oOD14u4I.roa (raw, json)
Hash identifier: H0qutCZRbBxGdK3uhAxlUt26h0oMqbFHJoljok9fMG0=
Subject key identifier: D5:21:32:C9:A8:83:15:FE:54:04:5A:1B:A0:FF:28:38:3D:78:BB:82
Certificate issuer: /CN=c401a6483dc6f66b78a7a4112d5873dc56647a19
Certificate serial: 019102B35BCAB9325D5FB94E863031C61EED
Authority key identifier: C4:01:A6:48:3D:C6:F6:6B:78:A7:A4:11:2D:58:73:DC:56:64:7A:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xAGmSD3G9mt4p6QRLVhz3FZkehk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/1SEyyaiDFf5UBFoboP8oOD14u4I.roa
Signing time: Tue 30 Jul 2024 08:13:14 +0000
ROA not before: Tue 30 Jul 2024 08:13:14 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8461
IP address blocks: 193.254.216.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:02:b3:5b:ca:b9:32:5d:5f:b9:4e:86:30:31:c6:1e:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c401a6483dc6f66b78a7a4112d5873dc56647a19
Validity
Not Before: Jul 30 08:13:14 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d52132c9a88315fe54045a1ba0ff28383d78bb82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c4:a2:22:23:3e:7e:24:ed:5d:58:bc:17:eb:
0a:b8:e3:d0:a7:7f:a9:3d:50:be:68:c7:3d:c5:2f:
9f:30:00:48:fe:a0:cd:18:f5:63:e1:e6:4f:e7:82:
fb:e3:28:e8:23:ea:1f:cc:18:6f:7c:5e:6b:23:5c:
3b:98:e7:34:87:d9:63:eb:11:eb:3b:9e:42:98:b9:
cb:60:1e:2e:21:45:81:b8:eb:95:b0:c0:b6:d2:be:
17:31:61:55:4f:ec:6b:98:2a:82:a3:08:00:cc:d5:
20:1d:22:7d:81:ec:3e:04:07:d7:1f:5c:5d:1a:af:
a8:94:30:49:27:f0:4a:1d:99:a2:66:53:af:3f:ac:
59:01:45:9e:1b:31:1c:6d:00:b4:24:32:0b:e5:09:
0f:71:b5:1e:ad:51:ca:43:71:c6:a7:73:26:93:2d:
59:c5:4e:18:17:22:2b:23:69:ec:36:b1:d3:56:be:
0b:78:20:74:4f:28:5e:84:49:36:37:5b:8f:cd:8e:
71:02:41:e4:35:0e:98:14:4d:77:86:fc:e6:6b:23:
e1:30:5a:02:ae:c8:18:37:33:fd:db:8e:40:b1:82:
a0:c4:41:2e:b6:c0:d7:6c:8c:b0:86:c9:09:bf:f4:
a1:ca:47:c7:b3:89:3d:32:7e:91:13:4e:40:69:91:
2a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:21:32:C9:A8:83:15:FE:54:04:5A:1B:A0:FF:28:38:3D:78:BB:82
X509v3 Authority Key Identifier:
keyid:C4:01:A6:48:3D:C6:F6:6B:78:A7:A4:11:2D:58:73:DC:56:64:7A:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xAGmSD3G9mt4p6QRLVhz3FZkehk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/1SEyyaiDFf5UBFoboP8oOD14u4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/6a8a62-f54a-4150-adde-19d33e055857/1/xAGmSD3G9mt4p6QRLVhz3FZkehk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.254.216.0/23
Signature Algorithm: sha256WithRSAEncryption
47:d1:a1:1a:56:c0:83:dd:be:3c:38:8f:02:85:42:60:6f:ea:
19:a3:d4:cb:6f:b4:a1:50:93:fd:df:5f:bb:f4:c2:ef:ea:9a:
98:a5:0a:73:8d:17:45:91:cb:0e:a9:46:21:b9:08:92:e7:0b:
7f:4e:ae:fd:18:d9:8e:56:ce:a5:be:56:e7:94:f6:21:81:05:
97:6e:2c:00:d3:88:ad:45:fd:08:7e:80:ba:e8:d1:58:96:9b:
f0:15:4b:3c:c5:be:92:fc:1c:d1:44:0b:8c:10:e2:46:6f:43:
68:1d:7b:42:76:22:48:5f:97:13:72:a3:ab:09:5e:90:07:ae:
a9:ba:06:c6:81:97:87:e5:be:2c:c7:ea:b7:8c:a9:da:8f:e1:
f4:4d:42:b0:97:84:43:35:d7:eb:4b:96:b8:0e:0a:a8:8f:37:
ee:74:1e:00:e5:fa:88:a0:09:8a:0f:17:b3:79:2b:85:0f:fb:
74:04:03:6d:42:e7:58:e9:ed:12:53:d0:5f:91:44:e1:11:c3:
b6:c5:1b:96:81:bc:11:33:08:6e:47:17:fd:c9:b9:72:e7:fd:
e9:b8:52:db:c1:cb:31:64:ce:db:11:bf:19:b3:0b:e6:1d:81:
66:04:80:98:04:37:68:79:78:8a:55:39:b8:ef:1a:86:01:64:
f7:71:f3:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:17:36 2025 by rpki-client