Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/uYiiAg8Ud-0oiDfgxqXqon1wC9o.roa
File: uYiiAg8Ud-0oiDfgxqXqon1wC9o.roa (raw, json)
Hash identifier: rUWimPluoRLQyYZlx7uTTf4NkeDJ7x9s+vizFEzBobk=
Subject key identifier: B9:88:A2:02:0F:14:77:ED:28:88:37:E0:C6:A5:EA:A2:7D:70:0B:DA
Certificate issuer: /CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
Certificate serial: 019442C782E347D7BD779E3BBE1D448F70B1
Authority key identifier: B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/uYiiAg8Ud-0oiDfgxqXqon1wC9o.roa
Signing time: Tue 07 Jan 2025 21:59:18 +0000
ROA not before: Tue 07 Jan 2025 21:59:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207388
IP address blocks: 79.110.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 10 Feb 2025 21:19:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:42:c7:82:e3:47:d7:bd:77:9e:3b:be:1d:44:8f:70:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3674e822f3876d27deaed5f66dbe9c1a422eb16
Validity
Not Before: Jan 7 21:59:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b988a2020f1477ed288837e0c6a5eaa27d700bda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:04:d6:e9:0f:fb:6d:5a:0d:f2:2f:e5:e0:cb:
ee:93:ac:3c:ad:28:ec:92:45:cc:29:39:4c:1a:06:
18:4a:8e:f1:7c:81:e5:c1:ec:d1:d7:5e:53:f2:ba:
2c:0b:62:86:86:f9:26:e5:44:c7:fd:e0:e7:6b:34:
2d:21:8e:6d:03:c6:76:aa:b9:32:b8:d1:44:9f:9c:
1f:4a:4e:6e:b9:a5:29:0d:d3:6a:ef:c3:d2:1c:cf:
82:87:9c:c6:62:12:0a:23:f6:cd:55:78:ba:84:ce:
29:a2:e4:2a:f3:ce:0b:10:c4:a3:9a:ee:0d:33:77:
28:cc:52:36:74:ef:e5:b0:4d:b3:a7:b9:19:de:05:
07:90:90:a6:23:97:b0:8f:a6:fb:b5:32:3d:29:5a:
a0:78:1f:7c:47:90:a6:76:54:c8:15:fd:c5:34:09:
4c:7c:49:59:67:0b:1b:d0:ee:b9:49:67:93:01:39:
50:6b:39:39:9b:68:7e:f4:74:b2:4b:4f:86:1a:7f:
8f:80:87:82:57:5a:35:35:80:d0:54:4a:af:79:3d:
05:69:7e:67:36:bd:83:5c:7d:df:ff:54:65:62:60:
00:88:e8:5d:c3:7f:fc:de:45:1d:14:4b:18:14:dc:
a4:5d:b0:7c:f3:1f:81:3e:1e:c5:58:78:87:19:5a:
27:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:88:A2:02:0F:14:77:ED:28:88:37:E0:C6:A5:EA:A2:7D:70:0B:DA
X509v3 Authority Key Identifier:
keyid:B3:67:4E:82:2F:38:76:D2:7D:EA:ED:5F:66:DB:E9:C1:A4:22:EB:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s2dOgi84dtJ96u1fZtvpwaQi6xY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/uYiiAg8Ud-0oiDfgxqXqon1wC9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/393251-b488-40d3-be39-f8f08fe64838/1/s2dOgi84dtJ96u1fZtvpwaQi6xY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
79.110.238.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:ad:76:2c:d1:bb:2e:04:64:45:ee:60:37:6f:71:b9:9b:c8:
54:48:d2:d2:9b:ac:ef:91:3b:15:7f:74:d7:f9:33:aa:67:25:
d4:4e:be:7e:9c:68:89:d7:d0:da:69:b1:a1:e1:9b:0a:aa:3e:
38:f4:d8:0a:19:6a:70:f6:0c:bb:ae:d9:e4:26:29:f3:d0:3a:
fb:50:8f:9c:92:1f:b3:34:5e:50:38:88:e7:43:57:9c:f5:de:
eb:5d:47:c4:ac:25:35:93:52:57:8b:97:a0:d9:9f:9c:cd:0f:
a0:d5:11:85:33:33:a7:2f:a9:22:bc:0a:f6:11:11:5a:7e:c5:
ab:c4:8e:36:4d:a5:84:db:57:b1:d6:19:ea:db:c8:1f:f3:c0:
51:08:7f:0f:c3:b4:aa:fb:aa:55:4c:86:0e:df:a1:52:57:57:
b3:51:f8:88:34:2f:22:33:84:80:7a:61:af:b4:07:7b:1a:78:
76:ce:34:e4:eb:68:61:84:73:46:3b:47:33:36:65:a0:be:a2:
04:3b:c7:7a:7b:53:94:9c:1f:31:5d:a2:a9:97:ff:80:71:ce:
e8:bd:6b:a9:13:42:71:41:82:ad:ee:9c:fd:f0:c7:9f:47:41:
b5:25:f0:6c:96:91:09:7c:12:46:ce:a9:dc:3c:35:1b:71:3f:
4a:c2:d1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 12:09:08 2025 by rpki-client