Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2cd5l22YukcJhONU4Wm7ICvv3Uc.roa
File: 2cd5l22YukcJhONU4Wm7ICvv3Uc.roa (raw, json)
Hash identifier: wgGdeePs+jQrD0Mp1whyQ13GHTXl9rIm/aPhqcLZMks=
Subject key identifier: D9:C7:79:97:6D:98:BA:47:09:84:E3:54:E1:69:BB:20:2B:EF:DD:47
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0193F3C1332D6B31CEB0B13FBCF9A07FDC85
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2cd5l22YukcJhONU4Wm7ICvv3Uc.roa
Signing time: Mon 23 Dec 2024 13:42:25 +0000
ROA not before: Mon 23 Dec 2024 13:42:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 398465
IP address blocks: 82.153.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f3:c1:33:2d:6b:31:ce:b0:b1:3f:bc:f9:a0:7f:dc:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Dec 23 13:42:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d9c779976d98ba470984e354e169bb202befdd47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:51:6e:06:f4:ef:5f:76:6a:01:e9:1b:40:c2:
26:9f:ec:37:c8:c4:00:0f:e6:58:0f:d9:c9:97:97:
c6:07:ca:1b:79:5f:11:cb:1d:81:aa:c2:c9:67:0e:
9d:2c:7e:57:ca:3f:3c:05:f6:43:68:6e:aa:b2:0e:
ff:ba:1d:74:e1:2f:5c:f2:e4:6c:02:44:b1:91:01:
3c:61:fa:bd:e2:92:0c:b5:e3:7b:1e:9f:b0:8c:a5:
c4:02:58:8d:c3:ab:f6:b6:ca:a2:01:1d:9d:6c:df:
7e:2c:94:38:65:e2:bf:9e:b8:86:0c:87:28:fb:68:
2f:23:3d:4a:61:3f:7b:f1:7b:41:41:90:77:24:92:
d7:64:2d:d4:eb:77:f9:05:8e:c4:f8:d2:b2:f8:9f:
e2:7d:78:1a:6d:df:80:5c:f7:01:0e:78:1d:40:7d:
51:a9:5d:19:07:99:1b:ed:be:31:32:e9:e8:5b:09:
f6:b3:f6:df:de:bb:15:4d:9f:85:0e:aa:df:77:fe:
5a:20:db:86:e4:96:7a:00:90:ff:cd:ab:90:d9:ca:
4c:4b:0e:92:2f:5b:22:78:a9:48:87:66:a5:b1:f9:
55:9f:80:cd:d7:54:fd:a7:fb:49:8e:4b:21:a9:0d:
29:71:a6:0e:fc:70:4c:f8:7c:32:fc:b9:5f:ff:bb:
2a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:C7:79:97:6D:98:BA:47:09:84:E3:54:E1:69:BB:20:2B:EF:DD:47
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2cd5l22YukcJhONU4Wm7ICvv3Uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.153.50.0/24
Signature Algorithm: sha256WithRSAEncryption
05:bd:c8:03:c1:5e:9f:6e:dc:3b:7b:53:03:96:20:91:4e:ac:
24:1b:9d:f2:88:37:ae:d5:b9:e0:bb:7e:8e:8f:4f:57:e2:97:
cd:17:bd:74:77:ef:97:86:0a:45:88:ae:69:46:af:0a:2f:33:
fa:b2:b5:03:2a:64:11:2d:65:14:13:d0:44:07:99:b4:06:e2:
13:01:11:d4:f6:04:cc:81:f5:da:55:f4:36:c3:4a:b6:17:87:
9b:8f:77:e3:9e:c3:39:47:99:da:e5:9c:8d:fb:f5:de:91:d6:
be:1b:ca:be:b2:15:50:cb:3a:84:f4:aa:66:4d:18:87:27:ea:
08:8d:e4:bc:1a:9a:96:4f:46:65:9d:76:b3:d8:2f:5c:9b:7a:
d4:1c:68:5c:d5:70:c7:9a:92:51:d5:b3:58:81:96:7f:1e:1e:
2b:a1:30:33:13:30:c9:2b:7b:bc:97:61:08:3e:3d:9d:b5:0f:
ed:09:16:93:ba:c6:22:4d:9a:9a:80:ae:61:de:ff:36:05:84:
b4:bf:11:30:0f:c4:36:e9:39:3f:eb:54:9c:04:06:b5:05:cd:
9f:d1:43:b9:5c:36:bb:79:e3:06:07:92:89:11:e6:89:58:ff:
e6:d1:1b:a1:37:4c:dc:9c:89:80:4d:4c:65:37:52:5c:f0:12:
97:b1:be:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:05:04 2025 by rpki-client