Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/8hKLs9KZ-ngexZN3RRQmgTOVxmc.roa
File: 8hKLs9KZ-ngexZN3RRQmgTOVxmc.roa (raw, json)
Hash identifier: /asBsczy78pdB8M19qkJFO5FsoCWO6L5KHwPTRNQ6vA=
Subject key identifier: F2:12:8B:B3:D2:99:FA:78:1E:C5:93:77:45:14:26:81:33:95:C6:67
Certificate issuer: /CN=365b4abab716ad1407a902e5176560ecc37c966d
Certificate serial: 018CC2DACF990C8DCDA4AE4CB3EF16E312EA
Authority key identifier: 36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/8hKLs9KZ-ngexZN3RRQmgTOVxmc.roa
Signing time: Mon 01 Jan 2024 02:29:29 +0000
ROA not before: Mon 01 Jan 2024 02:29:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24971
IP address blocks: 130.193.16.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:49:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:cf:99:0c:8d:cd:a4:ae:4c:b3:ef:16:e3:12:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=365b4abab716ad1407a902e5176560ecc37c966d
Validity
Not Before: Jan 1 02:29:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f2128bb3d299fa781ec59377451426813395c667
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:1b:2d:24:89:c9:a9:06:85:cb:3e:c6:55:d6:
04:dd:ca:ed:ad:ad:c8:24:8c:5d:90:28:03:45:f1:
cf:d7:e7:6c:b5:6a:07:53:7c:6c:8d:0a:1d:f3:8a:
47:03:d5:f4:09:64:08:ee:47:1d:cd:46:dc:86:fd:
44:37:00:9b:03:48:41:e6:9e:f1:af:23:71:f7:ce:
fe:23:39:09:f5:88:3b:79:3d:8f:18:22:e9:1c:32:
ed:8e:f4:b0:79:f9:34:b8:8b:e8:4b:95:8e:78:08:
46:58:e1:a2:0d:2f:c1:93:b5:36:84:dd:81:68:a9:
5b:6f:d7:19:6a:8a:e7:8b:3c:3d:10:32:4e:53:ce:
9d:c8:ce:eb:3b:e4:3d:03:d7:18:d6:1d:2b:53:33:
8d:d6:52:54:d3:ad:f3:8e:d1:db:5e:aa:1a:fd:85:
f4:06:39:fb:22:26:5c:76:f8:7c:cc:e0:b8:bb:62:
9f:fb:06:9d:b7:23:f5:1e:e3:89:14:7c:ad:22:db:
72:56:fd:6b:8e:87:81:1d:19:30:dc:3c:b6:71:7c:
0f:70:a5:f9:4d:40:79:43:bb:60:6f:ec:ad:40:db:
8b:73:95:90:68:15:48:2a:c6:c9:6b:24:90:ed:fd:
7d:9b:27:1a:39:0b:3d:6e:59:99:8b:2d:0e:95:80:
60:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:12:8B:B3:D2:99:FA:78:1E:C5:93:77:45:14:26:81:33:95:C6:67
X509v3 Authority Key Identifier:
keyid:36:5B:4A:BA:B7:16:AD:14:07:A9:02:E5:17:65:60:EC:C3:7C:96:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NltKurcWrRQHqQLlF2Vg7MN8lm0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/8hKLs9KZ-ngexZN3RRQmgTOVxmc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/e35ac1-05d1-406d-b668-36eaf7948531/1/NltKurcWrRQHqQLlF2Vg7MN8lm0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.193.16.0/24
Signature Algorithm: sha256WithRSAEncryption
06:6e:5b:dd:00:a5:b7:dc:b9:cd:47:a6:18:af:9f:7d:f5:b9:
24:bc:80:bc:a4:35:ad:54:03:bd:14:a0:cd:77:f8:44:8d:83:
72:e3:d3:fe:a7:fb:50:5a:76:b9:58:76:95:c5:22:b0:93:33:
f0:32:fc:1e:58:ed:04:f2:ee:21:b0:6d:57:98:8d:de:bf:87:
3f:38:1b:c7:3c:ec:74:8c:b3:21:93:eb:9f:f4:4a:f8:0b:11:
a8:1c:9a:08:d7:6e:39:6e:dd:b3:14:18:63:33:2d:32:42:0a:
b3:c0:48:e6:40:97:94:70:a7:6b:d6:8c:61:a5:b4:6b:9d:ca:
bf:cd:74:51:0c:f3:c1:d1:3b:da:7a:2b:c1:cd:9b:fc:20:92:
5e:01:77:12:cb:3c:5a:5c:c3:3e:f6:b0:27:b1:30:fd:52:de:
e5:1e:ab:68:21:af:b8:00:1f:55:26:46:d4:bf:c3:c1:58:11:
b8:97:51:c0:d5:a9:47:7e:2b:c6:67:f9:d4:87:7c:67:68:b2:
66:13:3a:cf:97:79:2a:cf:ef:ad:ce:b5:a1:7d:d5:23:f7:aa:
df:fb:f9:45:2d:2d:23:16:71:84:fb:c2:19:a5:01:db:8b:0b:
66:3f:17:f1:52:1a:ae:6d:d8:6b:e2:d4:d1:26:41:98:c1:24:
0c:53:f7:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 10:23:00 2025 by rpki-client