Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/hNJj3W093hRBrk08cvRmCFojVzs.roa
File: hNJj3W093hRBrk08cvRmCFojVzs.roa (raw, json)
Hash identifier: p+eq0RQIL0SSxV/qiiHRWF83hfxVRnny5Jt+y9RDdA0=
Subject key identifier: 84:D2:63:DD:6D:3D:DE:14:41:AE:4D:3C:72:F4:66:08:5A:23:57:3B
Certificate issuer: /CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Certificate serial: 0192E49F0BD886B471257D6E6B856FFDE11B
Authority key identifier: 2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/hNJj3W093hRBrk08cvRmCFojVzs.roa
Signing time: Thu 31 Oct 2024 22:08:01 +0000
ROA not before: Thu 31 Oct 2024 22:08:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 5.1.104.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 02 Jan 2025 15:50:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e4:9f:0b:d8:86:b4:71:25:7d:6e:6b:85:6f:fd:e1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Validity
Not Before: Oct 31 22:08:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84d263dd6d3dde1441ae4d3c72f466085a23573b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f0:45:9d:2a:8a:1d:8c:11:3f:15:1c:d2:b7:
e5:bb:b5:12:8a:6a:e3:04:40:a2:93:2e:3e:06:66:
82:15:97:7d:a5:56:81:46:56:b7:39:89:f8:f4:90:
d6:63:c6:1c:32:3f:96:13:1b:27:4e:cc:ad:8d:56:
5a:08:39:4c:be:dc:7a:47:40:52:ca:0f:bb:7f:ac:
15:cf:bb:a5:23:fc:42:63:33:76:ed:94:08:c7:5e:
54:de:d0:6a:5f:1c:ff:d2:4b:33:02:72:85:ce:3c:
36:12:a9:3c:c8:34:c8:cd:86:c0:9c:6f:75:b6:60:
c8:70:f3:ac:30:be:e4:c8:d0:85:31:78:a9:db:04:
55:b3:2e:d1:73:9f:7f:1b:56:f7:c5:7c:d1:e6:c4:
ad:de:c9:dc:e2:cc:bc:f3:de:b3:82:0a:91:98:42:
de:da:39:e4:2c:17:d7:a8:11:e5:9d:94:fe:96:bd:
18:59:d4:db:0a:5d:12:7c:3e:1c:05:76:97:ed:95:
5d:18:70:32:37:d8:6b:48:0f:97:3e:49:30:21:ff:
8d:a6:ca:38:34:30:57:5a:e6:c3:4e:3d:1d:8a:59:
a2:1b:d4:53:51:f9:d4:8f:50:46:ff:a1:31:ef:0b:
74:8b:33:20:38:c4:0b:d0:cd:24:cd:66:40:8e:b7:
0c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:D2:63:DD:6D:3D:DE:14:41:AE:4D:3C:72:F4:66:08:5A:23:57:3B
X509v3 Authority Key Identifier:
keyid:2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/hNJj3W093hRBrk08cvRmCFojVzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/LSjPo_0tqcqqZZKEdY3uZwmZNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.104.0/21
Signature Algorithm: sha256WithRSAEncryption
42:a5:fe:3d:4f:b5:99:e4:37:0e:c8:5d:10:f0:e3:0c:35:0f:
d4:de:51:46:00:86:6c:67:b5:58:dc:14:e8:1c:2b:2b:1f:9c:
9e:72:ca:c7:16:44:65:7e:4c:fc:ed:35:fc:8a:ce:a2:42:21:
39:8f:7d:70:d7:fa:46:6e:88:bc:cd:f9:d6:ad:b7:d8:7d:ca:
2c:ce:72:b7:7d:3c:78:9a:69:e2:5c:dd:6b:70:05:45:56:e5:
74:06:f7:f1:7a:b5:1d:1c:78:76:c4:65:e9:52:b4:57:b7:3f:
7c:9f:bc:84:ca:cf:96:48:00:08:a5:e9:f8:4a:d2:87:16:ff:
09:f4:72:be:2c:7f:8b:1e:b6:3e:19:10:28:34:d4:4a:79:a2:
28:01:d7:34:c2:e8:35:7f:2b:6e:69:6a:de:2d:ae:e0:20:8b:
d7:2e:dd:94:56:89:95:14:24:74:f6:4f:1d:71:9b:e2:a9:17:
6d:69:8b:10:f0:61:29:63:37:8d:ea:37:b8:c3:8b:4c:96:53:
e4:76:25:96:ab:cb:23:b5:90:1e:db:65:a7:8a:62:ef:f0:ff:
bb:98:4c:f9:13:94:6f:a0:b1:e9:31:27:ea:80:f7:f0:95:5c:
8d:87:31:af:fe:f6:a9:09:30:ee:80:a2:6f:bd:4a:6d:bb:3e:
28:b0:f7:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:53:00 2025 by rpki-client