Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Rsy9doRPn9zr-j8EiiPdLgayRoE.roa
File: Rsy9doRPn9zr-j8EiiPdLgayRoE.roa (raw, json)
Hash identifier: KhUtB9QEUu72DoVYAvyAEtH9w9HYECSKaM2yVKMqCEI=
Subject key identifier: 46:CC:BD:76:84:4F:9F:DC:EB:FA:3F:04:8A:23:DD:2E:06:B2:46:81
Certificate issuer: /CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Certificate serial: 018E13C4622D37E379FA28D97B7081C6BF09
Authority key identifier: F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Rsy9doRPn9zr-j8EiiPdLgayRoE.roa
Signing time: Wed 06 Mar 2024 12:37:01 +0000
ROA not before: Wed 06 Mar 2024 12:37:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209916
IP address blocks: 194.147.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 23:17:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:13:c4:62:2d:37:e3:79:fa:28:d9:7b:70:81:c6:bf:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f77705e89bb65b472e4e0184d6fe9bfb8c58635a
Validity
Not Before: Mar 6 12:37:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=46ccbd76844f9fdcebfa3f048a23dd2e06b24681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:e0:ff:7d:f7:85:96:07:96:76:f4:c3:7c:
fc:67:71:89:42:c5:b4:dd:64:27:0b:ee:e9:1c:78:
cf:38:39:57:0f:0c:64:69:4c:1c:27:29:91:a3:86:
e9:1b:7e:7e:b2:40:f1:e9:bd:90:e7:1a:bb:98:c2:
36:99:a5:6f:73:3a:ac:f0:72:19:d4:98:76:bb:6e:
f7:b9:e7:4c:50:d1:bc:55:5a:a9:0a:42:0b:dd:21:
d6:1b:32:2d:35:83:a6:9a:61:0e:bb:98:09:8a:ea:
2b:fb:0e:f3:f3:00:7c:2f:ef:9b:98:14:e8:bb:7d:
fc:70:9c:7c:91:4f:90:11:77:f1:2d:60:d7:d3:35:
f1:bb:fe:44:76:61:7e:b4:cf:4d:80:c8:10:bc:b0:
b8:f9:6c:57:f5:41:25:1c:77:2a:7e:09:4d:6f:06:
0d:b7:3e:52:03:c3:78:10:5c:b3:81:7f:94:65:7e:
e0:9b:50:ec:d1:aa:43:7d:b6:01:95:1f:e4:85:57:
b5:44:ff:a2:c4:85:79:61:69:80:32:45:83:f9:bb:
5d:07:c4:6b:7d:a2:f3:b2:97:bf:99:94:61:77:e5:
23:40:65:2c:5f:fa:bc:9c:e9:50:41:c5:d4:2b:45:
f9:dd:fc:0d:d5:0e:ad:fd:f7:dc:8a:94:49:95:a0:
5a:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:CC:BD:76:84:4F:9F:DC:EB:FA:3F:04:8A:23:DD:2E:06:B2:46:81
X509v3 Authority Key Identifier:
keyid:F7:77:05:E8:9B:B6:5B:47:2E:4E:01:84:D6:FE:9B:FB:8C:58:63:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/93cF6Ju2W0cuTgGE1v6b-4xYY1o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/Rsy9doRPn9zr-j8EiiPdLgayRoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/022839-6984-40d4-8716-6cb89791d7fd/1/93cF6Ju2W0cuTgGE1v6b-4xYY1o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.109.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:ec:17:69:03:e0:52:07:15:2a:4c:a8:ec:c5:dd:28:ce:f5:
fd:15:e9:9c:b4:41:47:96:9f:f0:d9:b0:37:4f:9b:35:58:29:
6c:8e:55:f4:6f:68:d6:58:cc:4b:71:20:24:16:fe:3f:b2:0d:
3a:87:47:50:a2:4e:48:4c:89:45:c8:68:93:cf:f7:95:1f:e2:
f8:fd:3a:97:00:ef:ac:12:7e:fb:a8:c4:3d:7b:17:6f:43:1f:
12:9b:f0:09:e3:8a:c3:0c:4c:47:ca:95:82:79:27:44:2d:33:
c2:ce:c0:17:26:6c:eb:63:cb:87:6d:ae:cf:5c:5a:45:d4:65:
a3:96:82:bb:ec:3f:af:a5:83:b1:fb:90:f8:51:b6:ec:aa:87:
ab:6e:49:bd:6f:e0:dd:c3:29:88:8b:6d:8a:98:83:7d:50:8a:
a1:c0:27:42:f6:71:8f:95:71:01:98:60:1e:87:ff:bc:88:8b:
bb:cd:fd:1f:09:66:98:c8:d7:c3:39:3f:35:a6:5a:60:c7:b1:
f7:eb:3e:c1:f0:86:64:bd:5e:26:58:32:87:eb:3a:89:7f:fc:
4b:37:46:08:f9:9a:ab:b4:4d:0c:aa:64:60:c5:22:f0:14:5a:
46:87:aa:f7:07:04:67:d2:de:ba:5d:c2:66:37:3e:19:e8:e9:
14:6e:2f:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 15:45:44 2025 by rpki-client