Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/pPGIolJhXFN2yet-jjX9pa51AZo.roa
File: pPGIolJhXFN2yet-jjX9pa51AZo.roa (raw, json)
Hash identifier: fRKfEz5YdXkcKKBLitKqhmjWK2XJolLECrU41HiElEI=
Subject key identifier: A4:F1:88:A2:52:61:5C:53:76:C9:EB:7E:8E:35:FD:A5:AE:75:01:9A
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 019053BA93CFF03C7C4C76BBE5DB44DC1E7F
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/pPGIolJhXFN2yet-jjX9pa51AZo.roa
Signing time: Wed 26 Jun 2024 08:47:34 +0000
ROA not before: Wed 26 Jun 2024 08:47:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215051
IP address blocks: 82.153.202.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 10 Jul 2024 14:56:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:53:ba:93:cf:f0:3c:7c:4c:76:bb:e5:db:44:dc:1e:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Jun 26 08:47:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a4f188a252615c5376c9eb7e8e35fda5ae75019a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:42:41:f3:56:6f:5d:6b:b6:05:b0:56:93:89:
eb:37:da:71:e1:49:59:af:16:e5:77:76:69:31:16:
fc:4e:25:1f:d6:8a:3e:6d:73:84:19:11:f7:4a:4f:
06:95:bb:4e:3b:ea:8f:b0:8c:c4:d5:60:8e:27:96:
05:58:3a:b9:51:42:b4:68:37:e6:5a:2b:83:a6:b4:
0d:7d:28:ab:2e:96:5e:ce:ed:2a:e8:cb:d9:fa:aa:
9c:ef:b7:30:a5:84:c8:52:72:df:3a:8d:80:07:05:
9f:2d:8d:7a:ad:f3:af:14:82:e6:85:6f:af:b2:40:
7d:06:63:44:bd:99:b1:c5:a4:a7:f6:a9:c1:e8:50:
be:32:60:58:cb:63:7c:29:0b:0d:ff:49:f8:bf:97:
1f:d3:a3:29:68:a6:08:aa:7f:96:be:a2:f9:16:c0:
cc:ca:c2:1e:0d:f4:37:37:96:2e:35:97:11:52:b4:
5a:28:eb:65:0e:0b:40:df:ab:a4:16:0e:01:19:bf:
29:eb:ad:5a:c8:db:4d:9f:38:e6:d9:c2:93:b3:f3:
0f:ac:0e:d9:4f:c5:dd:2a:a4:22:c0:e9:7a:a7:0d:
a3:d4:ea:2b:6d:7d:be:86:80:f6:bf:b8:a5:09:eb:
06:ad:82:34:e6:ec:23:84:48:2c:b7:a5:3b:24:9a:
b3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F1:88:A2:52:61:5C:53:76:C9:EB:7E:8E:35:FD:A5:AE:75:01:9A
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/pPGIolJhXFN2yet-jjX9pa51AZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.153.202.0/24
Signature Algorithm: sha256WithRSAEncryption
63:ff:dd:c2:43:89:69:59:95:d7:85:41:23:a3:09:64:08:36:
82:88:0f:c4:bd:95:c1:58:17:1c:26:eb:7d:fe:1e:b6:9d:6b:
15:f0:f1:a3:21:80:2c:f9:35:7b:34:5c:57:2a:6b:ca:7e:ff:
c3:51:16:ec:f7:05:2c:ef:b0:bc:da:55:c3:01:7e:9e:3d:da:
f1:ee:16:5e:4e:4c:af:7c:31:88:c9:72:bf:b8:8f:b5:4e:a3:
41:50:03:d0:9a:5d:85:63:21:c3:96:62:c8:2e:01:0f:4e:87:
64:73:12:41:13:72:8d:ca:5b:38:0e:ca:85:14:d2:73:c1:8f:
fd:3a:b5:af:a1:76:fe:74:c2:0d:dc:7c:f4:d6:a4:88:7d:e4:
c4:d3:8f:17:ed:fc:49:29:ad:4f:83:f4:c0:6c:18:1c:05:a9:
d1:c7:5e:50:50:ce:5d:00:d5:2b:ba:e6:07:33:32:8f:c3:fe:
59:90:02:5e:1c:70:a7:68:48:37:39:dd:fb:52:aa:66:a6:aa:
f0:b3:20:f7:5b:03:bd:bd:57:d0:d4:a9:96:cb:e6:c7:bf:f9:
8a:13:c2:72:9c:b0:dc:68:3f:70:ec:57:9b:cd:95:5f:46:aa:
3d:c1:55:48:94:52:31:92:6b:13:a4:7e:b2:33:12:dc:e6:14:
0e:a3:c4:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:15:29 2025 by rpki-client