Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/yYI09PUAoX8jWZYqbgYIvdXcTUo.roa
File: yYI09PUAoX8jWZYqbgYIvdXcTUo.roa (raw, json)
Hash identifier: Qsj0D5Im+DDbSF0LJ7NpT5Y4a34rJgAVlhr3rH1jcb8=
Subject key identifier: C9:82:34:F4:F5:00:A1:7F:23:59:96:2A:6E:06:08:BD:D5:DC:4D:4A
Certificate issuer: /CN=bfe3971a32c0692c4e342e911790662470cf31b2
Certificate serial: 0193913FAE1D55AFB616FA266272A41F347B
Authority key identifier: BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/yYI09PUAoX8jWZYqbgYIvdXcTUo.roa
Signing time: Wed 04 Dec 2024 10:38:09 +0000
ROA not before: Wed 04 Dec 2024 10:38:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213794
IP address blocks: 193.34.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Dec 2024 13:12:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:91:3f:ae:1d:55:af:b6:16:fa:26:62:72:a4:1f:34:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfe3971a32c0692c4e342e911790662470cf31b2
Validity
Not Before: Dec 4 10:38:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c98234f4f500a17f2359962a6e0608bdd5dc4d4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:2c:21:12:02:5a:b7:be:79:0c:ef:4e:91:52:
64:33:a2:a9:00:aa:68:57:e7:57:33:1f:80:5a:92:
7c:5b:42:ad:3f:54:27:23:33:e5:d5:9d:1b:44:86:
27:2f:ea:e8:d0:dd:54:7d:1b:50:31:0c:7c:d0:ac:
7b:81:ea:fb:93:d0:08:49:9e:85:79:7c:36:c0:8d:
3f:15:44:d5:d0:fe:17:95:4d:25:3b:e4:b4:ed:be:
7f:84:a2:90:5f:c4:9a:63:b3:84:3d:78:15:d5:a1:
a7:2c:d0:7f:3d:e5:20:3a:f5:d7:aa:aa:25:29:54:
1b:6e:ef:1d:38:4c:f5:9e:c9:65:1d:66:27:48:36:
68:44:03:e4:70:f1:73:69:14:c1:90:ac:02:c0:cb:
dc:fe:8e:bf:be:d9:71:5e:e4:3c:8f:76:d2:32:4d:
12:a1:e1:2b:bf:85:c2:89:f8:00:ab:84:6d:18:66:
a1:a4:a4:e5:37:af:62:4c:06:71:f4:f2:63:da:f7:
35:69:e9:ab:54:c0:eb:84:cf:a3:6b:78:a3:bc:8c:
b0:ae:d1:d1:62:e3:5f:39:5f:ae:a8:d9:cb:f9:28:
a8:30:68:45:1d:52:8f:cf:c9:bf:bc:77:22:87:75:
ab:53:fb:d5:b2:1b:02:07:64:0e:fb:3c:a6:10:24:
c9:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:82:34:F4:F5:00:A1:7F:23:59:96:2A:6E:06:08:BD:D5:DC:4D:4A
X509v3 Authority Key Identifier:
keyid:BF:E3:97:1A:32:C0:69:2C:4E:34:2E:91:17:90:66:24:70:CF:31:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-OXGjLAaSxONC6RF5BmJHDPMbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/yYI09PUAoX8jWZYqbgYIvdXcTUo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/d76bf8-541f-4efc-98c5-c4dcc7f6b7df/1/v-OXGjLAaSxONC6RF5BmJHDPMbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.34.215.0/24
Signature Algorithm: sha256WithRSAEncryption
39:4a:21:6d:3f:1b:61:60:7c:2a:a9:23:d0:00:82:7e:84:91:
0b:9a:7b:5a:5b:8e:3c:07:62:9e:76:e2:dc:9a:20:a2:6a:61:
0d:07:0e:b7:78:1e:9e:a7:f6:69:20:d8:8b:12:19:27:a6:57:
87:7b:c0:7d:67:6c:08:3f:74:e9:32:bd:c5:4e:83:a2:a3:81:
f2:45:ef:36:05:3a:62:4e:49:6c:70:1b:a1:d9:63:6c:85:aa:
25:9f:22:66:c4:ef:9e:2a:35:d1:29:d5:07:2d:dc:4b:c6:76:
42:2e:89:aa:71:37:02:6a:15:34:34:a6:43:56:1d:a7:63:18:
19:09:0c:2d:18:ee:e5:d1:8d:b4:3d:2b:6b:3b:44:a6:95:99:
f2:4c:ad:59:5e:94:b8:a3:21:06:6c:63:35:86:ed:1c:e6:21:
00:a1:3c:40:b3:52:d2:ec:d8:59:95:91:85:76:59:46:1e:24:
c2:48:84:96:da:70:cc:a2:e1:08:50:a0:bb:72:ec:ab:76:02:
0e:87:e7:ec:84:38:ac:6a:43:41:fe:0e:09:48:0c:19:f1:99:
44:ae:34:24:57:fa:29:bf:6e:ea:53:2b:97:0a:f3:fb:aa:ad:
43:17:2e:ae:f1:d7:19:00:aa:df:0b:0f:7a:35:73:0c:64:b4:
dc:6e:08:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 05:14:18 2025 by rpki-client