Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/inJGOoGjHvxy67BDeuNey2quIHk.roa
File: inJGOoGjHvxy67BDeuNey2quIHk.roa (raw, json)
Hash identifier: Nui3+uur6b24wAGSibyDJ7x6aCXX/uAK6MUkarc2z98=
Subject key identifier: 8A:72:46:3A:81:A3:1E:FC:72:EB:B0:43:7A:E3:5E:CB:6A:AE:20:79
Certificate issuer: /CN=50bb4c781a5b393ff07fb405e528179f5ab87726
Certificate serial: 0194244588D4887165D661304633108B8DF6
Authority key identifier: 50:BB:4C:78:1A:5B:39:3F:F0:7F:B4:05:E5:28:17:9F:5A:B8:77:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULtMeBpbOT_wf7QF5SgXn1q4dyY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/inJGOoGjHvxy67BDeuNey2quIHk.roa
Signing time: Wed 01 Jan 2025 23:48:44 +0000
ROA not before: Wed 01 Jan 2025 23:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1103
IP address blocks: 129.125.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Fri 17 Jan 2025 10:08:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:88:d4:88:71:65:d6:61:30:46:33:10:8b:8d:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50bb4c781a5b393ff07fb405e528179f5ab87726
Validity
Not Before: Jan 1 23:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8a72463a81a31efc72ebb0437ae35ecb6aae2079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c1:80:1e:60:73:37:73:a5:9e:8d:20:01:b7:
c7:88:3f:2b:58:aa:c8:fa:3b:d9:37:0e:01:90:d9:
64:92:c9:3d:da:28:67:c3:c3:f5:06:f5:6c:c9:f6:
b7:3a:81:04:22:a2:17:43:84:02:ba:37:85:87:aa:
d5:c2:24:57:a3:1e:e6:96:d1:8d:93:a1:d7:f9:ae:
a3:de:2c:a5:68:8a:9f:12:90:35:9f:56:9e:ce:24:
ec:82:48:c7:f6:8a:04:cf:38:52:a3:60:84:79:92:
1d:2a:e7:49:e4:8f:62:24:56:9d:9e:79:ea:8b:69:
07:72:88:0d:3c:20:6f:71:2f:74:ba:e3:69:26:e9:
5b:5e:1b:49:89:8e:6f:55:3e:06:ef:32:d4:48:2a:
90:79:d1:70:77:20:4a:18:67:9e:3c:58:42:98:3a:
22:4a:a8:9c:18:57:70:22:eb:67:37:9f:65:40:4a:
a6:91:93:ed:7b:3f:d2:ef:9c:6b:ea:16:28:98:40:
16:df:3e:c8:36:58:1e:01:d4:38:42:47:9b:f2:22:
77:fc:d4:a1:61:6b:ed:a6:85:a2:09:ae:1b:e1:a8:
67:2e:43:1b:05:d1:f4:ab:60:3a:27:b9:cb:b7:fc:
73:6c:14:e8:34:13:f2:e4:d9:a9:ba:4b:6f:26:ac:
39:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:72:46:3A:81:A3:1E:FC:72:EB:B0:43:7A:E3:5E:CB:6A:AE:20:79
X509v3 Authority Key Identifier:
keyid:50:BB:4C:78:1A:5B:39:3F:F0:7F:B4:05:E5:28:17:9F:5A:B8:77:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULtMeBpbOT_wf7QF5SgXn1q4dyY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/inJGOoGjHvxy67BDeuNey2quIHk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/1b138e-1e19-4c7d-8ca4-b87f91c29b9e/1/ULtMeBpbOT_wf7QF5SgXn1q4dyY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
129.125.0.0/16
Signature Algorithm: sha256WithRSAEncryption
54:ff:18:9a:aa:c4:d7:6e:f2:67:af:32:c0:b1:32:4a:1c:fa:
46:bd:4a:c8:af:0c:cc:26:0b:12:90:1d:fd:18:49:4a:64:ef:
7d:50:49:e9:36:05:95:87:b0:43:0e:7c:5c:b7:07:14:43:4e:
53:ad:35:3d:e6:7a:bf:1c:6f:7f:dd:fd:e8:cc:77:96:cc:9c:
02:bf:c3:ef:fb:bd:68:dc:07:9c:cd:7e:2c:f7:55:bd:6b:c0:
2b:72:f1:1f:9b:ff:89:19:61:e2:88:5e:4b:a7:2e:17:c7:82:
a3:6a:b4:52:8b:ac:d1:8a:a1:e6:36:1b:79:d5:54:43:88:c7:
7d:ee:a8:62:d6:4c:bd:53:31:f3:12:7a:31:f3:a5:f4:a3:bf:
73:ec:48:26:20:87:14:e9:83:b0:14:57:3c:e6:b6:cc:21:4c:
92:1b:2b:32:1e:2a:8e:13:fe:37:6b:b5:be:c5:eb:75:41:4e:
25:5d:01:68:55:10:bd:b3:b3:b8:ec:bf:1e:14:75:1e:6f:0d:
67:99:44:75:d8:1c:26:ce:03:87:29:53:94:9c:9a:bd:6a:d6:
79:40:db:a8:a6:f7:af:a2:af:66:f7:ef:55:d4:de:fb:7d:67:
97:dc:9a:7f:0c:14:af:af:3c:e3:24:e3:30:70:3d:89:7d:0b:
ba:7c:69:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:22:34 2025 by rpki-client