Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/9lp9kanrneD3IELPl2piss3Iccs.roa
File: 9lp9kanrneD3IELPl2piss3Iccs.roa (raw, json)
Hash identifier: wFVvWPzPj9SMXk+x6/zegoA+O83UV4yd35lJ7cRBChw=
Subject key identifier: F6:5A:7D:91:A9:EB:9D:E0:F7:20:42:CF:97:6A:62:B2:CD:C8:71:CB
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 018FFD2F9FE52B68AC44F52BD727D6F939F3
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/9lp9kanrneD3IELPl2piss3Iccs.roa
Signing time: Sun 09 Jun 2024 13:28:27 +0000
ROA not before: Sun 09 Jun 2024 13:28:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204104
IP address blocks: 5.57.33.0/24 maxlen: 24
185.26.32.0/24 maxlen: 24
185.26.33.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 21 Jun 2024 16:14:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:fd:2f:9f:e5:2b:68:ac:44:f5:2b:d7:27:d6:f9:39:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Jun 9 13:28:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f65a7d91a9eb9de0f72042cf976a62b2cdc871cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:82:30:be:8e:db:1d:9c:6a:a8:79:bd:75:ac:
29:74:ce:7f:5d:dc:b6:93:66:f5:52:4a:14:10:98:
f2:c3:cd:30:9a:45:7c:d6:62:0a:88:57:4b:d0:71:
bf:06:70:ee:34:ac:f0:46:84:c2:f5:88:ab:95:4c:
dd:39:a7:4d:37:c1:44:80:87:35:a6:46:d6:b9:95:
92:cf:3f:87:78:46:8f:65:72:46:fa:63:4f:17:70:
d2:73:04:2e:23:f6:bd:fa:f2:93:88:e7:06:fb:78:
4d:6d:49:fe:86:40:aa:d1:41:d8:61:86:4f:18:06:
92:4a:d9:c0:ab:ae:51:dd:b5:04:2e:31:21:6c:96:
b0:54:3d:65:a0:d3:2e:0a:69:87:27:22:3c:7d:d2:
b9:df:3d:e6:d2:fd:c4:b2:80:ec:6c:e2:2c:3c:2a:
15:25:e4:76:74:9b:d5:7f:b7:ac:f2:1d:ee:48:cb:
05:4b:ad:7e:58:a1:23:93:4b:9f:14:b5:56:88:32:
a6:5b:f5:30:bd:bc:fa:00:76:b2:58:7d:c5:3c:e4:
91:4b:9a:a3:5e:aa:ea:c1:fa:58:8f:11:48:db:c3:
b7:14:15:80:f9:26:29:ce:af:d9:a3:1d:c1:9e:03:
04:b2:7a:ef:9c:4d:7d:3b:75:99:d2:a3:01:5e:37:
05:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:5A:7D:91:A9:EB:9D:E0:F7:20:42:CF:97:6A:62:B2:CD:C8:71:CB
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/9lp9kanrneD3IELPl2piss3Iccs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.57.33.0/24
185.26.32.0/23
Signature Algorithm: sha256WithRSAEncryption
38:24:4c:44:64:06:4b:94:32:17:01:b9:9b:f7:e7:14:d8:34:
83:9f:cf:71:67:48:a5:5e:ff:c3:3d:c5:12:2e:d3:8e:bd:d6:
06:f3:5f:10:11:b5:2e:74:43:3b:ac:d9:07:2c:b7:0d:ca:d8:
71:e7:45:52:f5:4d:72:a0:0d:1d:fc:52:54:71:f2:32:d0:22:
c1:18:a5:f7:d7:09:a4:69:57:c6:07:38:13:8b:be:9f:44:40:
60:62:9a:5b:95:ba:7f:f9:0b:61:29:84:25:01:ac:98:ed:2d:
2b:0c:b9:ad:98:c1:5e:1a:f8:7d:c0:27:aa:22:e0:65:00:eb:
73:0c:c0:b4:22:91:47:7b:eb:7a:bd:07:a1:56:fd:79:9c:73:
0e:23:a6:4a:d3:2b:d1:9d:25:9b:43:b9:68:4e:28:3f:ce:e2:
00:6e:ec:fb:6f:d0:33:4b:f2:d4:20:c0:22:99:14:09:d2:24:
4b:f2:92:e2:88:f4:c9:35:9e:a6:40:3d:a1:44:82:18:f5:2b:
22:a3:a0:91:e3:48:0b:92:a3:72:90:32:39:dd:26:a4:68:84:
15:97:3a:82:d2:46:1c:23:ad:75:4a:7f:12:f4:9e:e4:fc:db:
c4:23:b4:d1:6a:8f:5a:7e:d1:b9:36:be:45:1a:e3:85:43:fe:
c9:ab:c3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:10 2025 by rpki-client