Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/hBBa9Zt8q__mXjpJHCwkXcoi4s4.roa
File: hBBa9Zt8q__mXjpJHCwkXcoi4s4.roa (raw, json)
Hash identifier: /nPvCWfh3Lnot0FmzjK6EtTCAB273xfcT7wMvenIsCk=
Subject key identifier: 84:10:5A:F5:9B:7C:AB:FF:E6:5E:3A:49:1C:2C:24:5D:CA:22:E2:CE
Certificate issuer: /CN=68c0f2d0776f7e1d349075881c35e9d387463405
Certificate serial: 019140578A90474AA71651FAE5660172D40D
Authority key identifier: 68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/hBBa9Zt8q__mXjpJHCwkXcoi4s4.roa
Signing time: Sun 11 Aug 2024 07:29:24 +0000
ROA not before: Sun 11 Aug 2024 07:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215633
IP address blocks: 194.0.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:49:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:40:57:8a:90:47:4a:a7:16:51:fa:e5:66:01:72:d4:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c0f2d0776f7e1d349075881c35e9d387463405
Validity
Not Before: Aug 11 07:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84105af59b7cabffe65e3a491c2c245dca22e2ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:da:d2:f5:4a:52:d8:34:cd:d8:f8:91:24:09:
eb:c9:f2:0e:f5:39:de:49:5d:48:d2:00:1e:88:59:
3b:e6:93:79:c3:fa:35:38:fa:ed:d5:02:43:5f:04:
b0:d0:f1:8d:ca:87:7e:fc:34:35:6d:d3:79:c3:a7:
4e:80:b9:79:24:3f:24:df:49:06:d5:9b:cf:89:01:
52:2c:aa:93:ce:62:f4:0f:49:4e:9d:af:18:8d:5b:
73:d0:56:61:80:70:dd:2c:38:85:64:70:d7:b1:5a:
77:ba:5b:66:b0:19:65:2f:9f:eb:9b:f8:f2:5d:66:
ed:d6:0d:77:6d:a6:6e:dc:45:7b:ef:74:0b:30:fb:
45:eb:1d:22:df:13:75:db:42:a6:e1:6d:30:e8:bd:
84:5e:96:4e:cc:61:5c:1f:3b:70:b0:90:a2:8a:bc:
9e:fa:05:eb:28:3d:b5:98:c3:ad:8c:da:dc:93:6a:
69:82:d2:1c:b8:a5:9a:66:ae:42:15:32:6a:dd:2a:
a0:a9:3f:0a:09:5f:72:25:ac:09:ee:f5:4b:28:84:
c1:62:f1:03:98:84:bc:94:ac:d4:e5:4f:6f:44:bb:
64:66:24:ad:d3:ba:ea:5a:a0:6c:a6:f3:af:11:f7:
8e:8a:c9:0c:6b:63:99:82:f6:d0:ab:98:65:60:60:
63:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:10:5A:F5:9B:7C:AB:FF:E6:5E:3A:49:1C:2C:24:5D:CA:22:E2:CE
X509v3 Authority Key Identifier:
keyid:68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/hBBa9Zt8q__mXjpJHCwkXcoi4s4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.234.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:4e:3b:24:1d:8e:00:8b:ad:f7:5b:8b:20:2b:49:fb:70:32:
5c:df:1d:2e:22:37:73:05:38:ac:f6:70:70:54:d0:8a:75:d4:
be:11:83:9c:35:05:36:76:ba:d1:55:54:86:f1:93:cb:fc:85:
56:d5:f7:08:69:60:82:a0:cd:84:cc:a6:38:de:31:43:aa:b0:
c6:46:11:0a:b6:f4:bd:9d:47:41:c8:a1:c3:4e:9f:5b:4d:b3:
5a:c6:51:04:51:21:87:f6:fa:5d:a5:c6:23:ee:b6:85:20:ad:
1a:ef:5f:7f:a3:84:86:d0:91:d1:d5:ec:40:40:13:ff:87:0e:
8e:bf:8d:78:ce:d2:05:8d:bf:bd:e6:b8:27:3d:1c:3b:93:7a:
35:63:23:24:cf:41:40:60:24:79:f6:a8:c3:73:4d:59:4c:f6:
4b:a9:a9:c0:a6:5d:5f:c4:0a:8f:22:ec:56:60:bd:93:23:55:
90:53:4f:68:ee:33:7b:f8:c4:cb:0e:fe:82:3f:b8:ce:a0:bd:
66:5b:0d:60:35:7b:7f:77:9b:9a:45:e0:9b:ab:00:21:97:d1:
77:b9:d2:a6:db:ea:8c:f6:27:40:0a:fd:34:f9:00:18:bb:b2:
6d:40:93:1d:50:b0:aa:4c:bc:b5:aa:de:bd:a3:19:28:e3:a7:
69:cc:45:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:31 2025 by rpki-client