Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/UYeDvBfvEXZAe8Htw7ksyomso_g.roa
File: UYeDvBfvEXZAe8Htw7ksyomso_g.roa (raw, json)
Hash identifier: sJhH6FIvR/+mPo+loOEsQRCDci3FvsYKPppq/BiVZlM=
Subject key identifier: 51:87:83:BC:17:EF:11:76:40:7B:C1:ED:C3:B9:2C:CA:89:AC:A3:F8
Certificate issuer: /CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Certificate serial: 0192D9732EAD5944777668FA7587D68E5A7C
Authority key identifier: 0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/UYeDvBfvEXZAe8Htw7ksyomso_g.roa
Signing time: Tue 29 Oct 2024 18:04:17 +0000
ROA not before: Tue 29 Oct 2024 18:04:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200590
IP address blocks: 188.116.20.0/24 maxlen: 24
2a02:c6c1:e::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:d9:73:2e:ad:59:44:77:76:68:fa:75:87:d6:8e:5a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ef5cb2f590d041654f4dfdb60a28f9a1544f444
Validity
Not Before: Oct 29 18:04:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=518783bc17ef1176407bc1edc3b92cca89aca3f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4b:b8:12:83:f6:f2:d0:cc:ec:8f:bd:51:61:
4f:9a:b6:55:e9:9d:48:31:84:91:4c:98:92:06:ae:
b3:b5:55:e2:21:c3:63:55:9d:72:db:96:87:a8:5d:
c4:fc:47:44:84:17:8e:f6:89:ea:99:5d:2f:85:9a:
3f:4e:e2:6a:e5:24:db:7b:b7:40:9d:61:32:05:95:
4f:8e:ea:fb:e6:9b:87:b3:65:cb:f3:76:ad:07:29:
6e:ad:1b:f7:a4:77:e4:dc:3a:1c:11:93:c6:b4:93:
01:ee:ca:f5:f7:c3:9d:72:03:ab:68:c0:c6:75:f1:
59:a5:00:70:c5:a0:3a:49:f1:80:2e:f6:6d:18:9c:
46:5c:67:44:ab:21:41:29:b1:5a:14:79:c3:9a:41:
14:44:f7:59:8a:fd:36:24:47:8b:e5:f1:07:29:68:
4f:98:d8:a5:be:e2:e9:5a:8b:c7:a5:0a:9a:51:6b:
7a:42:e6:93:cf:02:10:84:13:a4:53:32:3c:76:31:
9e:99:d4:89:66:50:44:d5:bb:fe:c4:31:b1:3a:81:
44:30:9b:71:a6:1f:33:c3:6c:ea:7e:a4:7e:f1:7c:
f9:eb:d6:a3:d4:cf:e1:15:81:bf:c2:62:a1:52:0e:
9b:68:8c:b0:da:aa:e2:7f:e8:a4:a3:99:71:0f:7c:
2f:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:87:83:BC:17:EF:11:76:40:7B:C1:ED:C3:B9:2C:CA:89:AC:A3:F8
X509v3 Authority Key Identifier:
keyid:0E:F5:CB:2F:59:0D:04:16:54:F4:DF:DB:60:A2:8F:9A:15:44:F4:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/UYeDvBfvEXZAe8Htw7ksyomso_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/226f04-f7db-491a-bafb-ee435d3cd585/1/DvXLL1kNBBZU9N_bYKKPmhVE9EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.116.20.0/24
IPv6:
2a02:c6c1:e::/48
Signature Algorithm: sha256WithRSAEncryption
47:ec:00:24:6a:fc:de:15:50:54:76:56:ea:31:2b:93:33:13:
dc:cd:d1:57:6f:f5:8f:16:e5:8c:3e:83:28:11:b9:ea:85:90:
ba:7f:f5:68:4a:6d:fe:88:13:92:eb:24:a0:12:b7:2c:31:33:
65:94:a5:46:67:e6:91:90:a5:c8:05:d2:aa:90:b8:29:96:23:
1b:8f:67:70:51:08:02:fe:7c:1c:a3:c1:d5:50:8f:f1:8c:0b:
e3:16:ec:80:9d:e2:75:0c:cb:b5:3f:87:40:c6:c2:4b:48:83:
e1:19:e9:08:d0:47:f3:16:94:a8:9d:59:61:50:31:74:22:62:
17:db:35:37:57:7a:d4:81:17:ff:a6:e6:fb:25:60:66:ce:e2:
fd:62:1a:73:4a:ee:5c:bd:d5:6f:22:7f:a3:ad:8f:8a:ec:be:
8c:9c:5d:2d:c3:5c:82:bb:cc:f1:54:d2:96:2d:dc:45:70:f3:
d8:d3:f0:44:3b:6a:8c:e5:52:f7:bb:24:9c:a2:a6:8b:97:6d:
d4:7f:58:a9:7f:5d:2f:76:c9:a0:1e:e9:60:6f:ff:5b:08:17:
0a:53:07:13:7f:fc:5c:44:c9:0e:17:aa:d3:79:14:ca:4c:0c:
bf:16:d7:1a:62:48:8a:a6:b9:a1:ed:6e:a6:4d:e2:0d:10:8d:
72:c1:b4:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:26:57 2025 by rpki-client