Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/iXVS0swQdvXB1eAvgVk3yaBPtAo.roa
File: iXVS0swQdvXB1eAvgVk3yaBPtAo.roa (raw, json)
Hash identifier: owjcKYGR0RF+UkGgnB6yuDzYZ73RFbwWXnUdqK+gWx8=
Subject key identifier: 89:75:52:D2:CC:10:76:F5:C1:D5:E0:2F:81:59:37:C9:A0:4F:B4:0A
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 0193FD88282055904AF322A8CC26653A2C9A
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/iXVS0swQdvXB1eAvgVk3yaBPtAo.roa
Signing time: Wed 25 Dec 2024 11:16:19 +0000
ROA not before: Wed 25 Dec 2024 11:16:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214271
IP address blocks: 141.105.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:fd:88:28:20:55:90:4a:f3:22:a8:cc:26:65:3a:2c:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Dec 25 11:16:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=897552d2cc1076f5c1d5e02f815937c9a04fb40a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ee:85:6f:bd:31:bf:68:78:ad:c5:fb:98:e9:
c9:d8:65:02:4c:cd:e4:6b:3c:7b:b3:d5:a1:59:d8:
d1:ca:6b:27:5c:ee:dc:d5:98:37:c0:b7:e4:d4:b5:
62:45:73:b1:e5:b2:76:84:7d:c0:45:e4:ac:22:1a:
f9:8e:c3:3d:bb:8c:32:d4:09:2c:4c:c5:33:e8:f7:
b6:24:21:fb:97:95:6c:c3:75:05:51:9f:4d:13:c8:
ec:9c:41:76:8c:44:48:9f:eb:36:be:94:bd:fe:15:
20:17:82:42:35:8a:7b:f3:f6:3c:e6:29:c7:3c:54:
4b:97:b8:9e:2a:2f:13:5b:49:75:5e:aa:aa:15:22:
7e:7e:96:78:1c:9e:c1:55:93:02:6b:e6:2a:d6:c6:
5f:6e:8c:f1:c7:9e:b7:d7:74:2d:cf:53:65:4f:7f:
2b:b0:c0:90:74:b0:0a:fa:7c:a2:06:65:1a:1e:a4:
46:d4:aa:ea:ca:af:16:10:b8:9a:3f:d2:93:dc:33:
10:56:fa:b5:00:af:01:59:c0:dc:b1:71:3b:31:fe:
36:76:b7:65:04:cf:92:bf:0e:b8:3b:c9:16:1c:7c:
2c:ac:8c:dc:05:f9:d8:7d:ef:b0:b7:74:0c:09:6b:
92:92:82:fd:03:96:11:29:7f:f1:35:40:0f:02:0b:
e7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:75:52:D2:CC:10:76:F5:C1:D5:E0:2F:81:59:37:C9:A0:4F:B4:0A
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/iXVS0swQdvXB1eAvgVk3yaBPtAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.140.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:04:e4:91:35:3c:24:74:6b:6f:44:6a:af:2c:f1:2a:5d:66:
22:65:f3:62:12:fd:c6:5d:93:5c:7f:de:6b:20:f5:ba:a7:fe:
f9:df:21:8e:ef:47:8b:ef:18:c3:df:84:3d:e3:8e:25:54:7e:
71:5e:39:12:e7:e3:52:8d:7b:44:2a:44:ca:b5:8f:d4:69:d0:
7d:bc:84:af:2c:63:5e:e5:8f:6d:09:9e:97:fc:32:a1:c4:53:
b2:d5:5d:e5:97:41:20:b8:ed:09:0f:5a:58:87:f5:f9:04:05:
7b:3a:97:6f:53:1e:d2:d8:88:30:59:29:0b:b4:0d:52:ca:a4:
a6:55:56:04:13:c8:50:9b:99:7e:4a:e7:ba:d2:0a:04:ab:92:
57:ef:51:b7:9a:b5:ff:d3:75:1b:cf:d8:59:a1:5c:41:8b:cb:
d3:c8:7e:48:01:39:e4:e9:da:90:f1:2e:09:66:e5:55:0d:c5:
14:bc:7f:46:fe:87:9c:e7:e2:96:61:c9:3e:5e:97:a0:92:89:
57:32:c8:72:5e:4f:7b:b3:6c:cc:04:b4:1a:92:b1:2f:57:ad:
9b:77:7d:64:a9:36:eb:b8:11:21:cf:d2:33:e6:1b:a7:38:d4:
88:43:21:4e:29:90:f4:eb:86:ee:ae:7c:c8:9d:36:34:9d:6d:
88:92:cb:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:01:22 2025 by rpki-client