Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ObT1yAbxSq6IWLGBTKMnJ0if6DU.roa
File: ObT1yAbxSq6IWLGBTKMnJ0if6DU.roa (raw, json)
Hash identifier: 7kpqdfXx81an1nQBJHO18KZ0V/mZv47dBtkYjQtuJ/U=
Subject key identifier: 39:B4:F5:C8:06:F1:4A:AE:88:58:B1:81:4C:A3:27:27:48:9F:E8:35
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019192CBE92A767412695765D97E578441D0
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ObT1yAbxSq6IWLGBTKMnJ0if6DU.roa
Signing time: Tue 27 Aug 2024 07:45:22 +0000
ROA not before: Tue 27 Aug 2024 07:45:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 262725
IP address blocks: 89.213.41.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Oct 2024 23:56:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:92:cb:e9:2a:76:74:12:69:57:65:d9:7e:57:84:41:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Aug 27 07:45:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=39b4f5c806f14aae8858b1814ca32727489fe835
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:00:9a:65:52:6a:75:d5:01:16:1b:76:c4:a8:
79:f7:c0:35:bd:12:40:d0:69:3b:0a:88:ff:67:d1:
ac:7a:66:69:a3:c7:72:7f:c3:49:d3:ef:3a:f4:f1:
53:d0:19:0b:8b:e3:07:81:83:51:2e:c5:23:25:c1:
29:dd:71:83:f5:4f:74:3e:4f:6e:d4:eb:44:3c:30:
b6:c4:f1:cd:6f:65:0b:0b:6b:27:a4:9c:e9:2a:f5:
a4:de:64:c4:e6:1c:86:ca:ed:14:0b:f9:6d:e8:c7:
51:03:16:59:44:3e:55:ee:26:5c:85:e9:3c:5c:b4:
d7:a3:cb:ed:6a:b6:6a:2d:59:5d:b6:8a:5a:55:89:
4d:53:49:8b:fd:25:14:a3:3c:f3:32:85:2b:68:ca:
73:a3:bf:47:2a:68:31:86:9c:a0:d9:41:d4:06:2e:
ef:16:17:dd:ba:e1:42:76:ba:c1:47:37:2c:8a:01:
f7:64:a4:04:19:79:48:c9:43:09:03:34:6d:ae:70:
7c:4d:7e:24:bd:d7:2d:55:47:fe:40:44:2a:96:ee:
ae:5a:a0:cd:02:82:3e:5a:5b:98:48:d2:7f:50:3b:
e7:fb:1d:f1:7a:ec:d1:82:1f:e4:60:2a:b6:e6:72:
b0:15:fb:aa:1e:c4:93:3c:5c:59:35:7c:6a:44:35:
19:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B4:F5:C8:06:F1:4A:AE:88:58:B1:81:4C:A3:27:27:48:9F:E8:35
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/ObT1yAbxSq6IWLGBTKMnJ0if6DU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.213.41.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:3e:25:58:a2:55:f7:07:0f:bd:88:ee:9b:5e:ff:c3:f2:33:
aa:e7:66:1f:66:b9:bb:61:9d:f4:b6:90:9b:72:95:56:a5:c9:
73:c3:15:84:b9:16:a0:4c:4d:76:b4:17:05:c9:e3:b2:79:37:
5a:12:42:e8:52:e1:21:7f:fd:81:a6:86:38:cd:9d:ad:a2:5c:
ad:7d:ae:84:3c:73:05:3f:b6:72:5d:e0:8a:21:68:20:20:76:
97:eb:36:b9:61:2c:19:ab:bb:70:ce:51:63:0b:df:84:39:50:
01:a3:78:e5:32:5e:16:15:b1:88:55:f1:01:c4:00:dd:ba:76:
6b:28:a4:5a:b6:16:69:19:85:3f:82:02:fe:19:d4:ef:2b:03:
76:1d:93:1f:d0:08:46:bd:17:e9:0b:40:f6:26:2b:b5:7b:44:
8e:00:aa:6d:11:ba:0a:2f:97:92:55:25:08:15:8a:6f:9f:3b:
58:7f:91:ec:e8:c3:17:e3:17:c5:74:dc:72:cc:3d:c8:b3:04:
38:b1:8b:a2:b1:69:60:9a:12:35:8f:b2:7e:b5:23:25:37:12:
31:b1:ef:f8:0d:27:0b:61:41:94:6e:88:f6:3e:a9:c7:7e:dc:
49:28:26:23:a9:1a:4f:a2:cb:9a:40:17:b9:71:13:25:c2:5a:
c4:75:9e:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:06:04 2025 by rpki-client