Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/59e9da-9c2c-40cb-9a65-3d7965539bc7/1/vXFrVC5aTrTZ4LyzRt5E1cnFqd0.roa
File: vXFrVC5aTrTZ4LyzRt5E1cnFqd0.roa (raw, json)
Hash identifier: 9+Vyvq36y0lWK64lPIidARY5giL+gVyVUUUR3SrfYao=
Subject key identifier: BD:71:6B:54:2E:5A:4E:B4:D9:E0:BC:B3:46:DE:44:D5:C9:C5:A9:DD
Certificate issuer: /CN=ce179e89aaa2d59eee4bd6858fae5bb3fda74961
Certificate serial: 0190581A04ABD988E90D2B0599923E85C4BC
Authority key identifier: CE:17:9E:89:AA:A2:D5:9E:EE:4B:D6:85:8F:AE:5B:B3:FD:A7:49:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zheeiaqi1Z7uS9aFj65bs_2nSWE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/59e9da-9c2c-40cb-9a65-3d7965539bc7/1/vXFrVC5aTrTZ4LyzRt5E1cnFqd0.roa
Signing time: Thu 27 Jun 2024 05:10:18 +0000
ROA not before: Thu 27 Jun 2024 05:10:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206613
IP address blocks: 195.39.239.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 05:48:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:58:1a:04:ab:d9:88:e9:0d:2b:05:99:92:3e:85:c4:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ce179e89aaa2d59eee4bd6858fae5bb3fda74961
Validity
Not Before: Jun 27 05:10:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bd716b542e5a4eb4d9e0bcb346de44d5c9c5a9dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:2e:09:63:a0:ad:c5:00:02:b8:04:b5:c6:62:
6f:09:2f:88:2f:a2:00:0a:0b:75:b9:fd:3f:cb:44:
34:82:ba:23:c0:21:48:18:60:48:e6:ad:09:c0:ca:
7a:7c:71:89:7e:48:9c:63:6d:f1:6c:bf:19:0b:a6:
a1:fb:58:77:8b:a9:f1:4a:e0:bb:35:ff:8d:88:44:
63:f1:ad:eb:bb:ba:e7:96:3a:27:3a:0a:55:35:72:
33:5b:7f:1b:39:86:dc:d4:43:23:76:cf:74:23:e8:
3a:b8:24:5a:0b:ac:1b:28:c1:58:b7:50:11:93:95:
22:ba:e5:38:9e:23:0a:2f:17:b5:aa:12:15:ff:30:
0b:b6:9e:5e:a6:d4:67:a8:3f:4c:6a:a4:02:da:a8:
72:b3:53:3e:d6:41:89:c4:c7:f6:36:15:bc:f7:be:
dd:7b:29:a9:ae:2c:26:3e:66:ec:93:99:35:a6:36:
68:80:49:1f:4c:3c:fd:c6:a4:6f:56:bb:82:b7:a6:
e4:d6:aa:a7:18:ac:bb:0d:a8:1c:60:21:65:d2:4d:
41:d3:47:ef:c3:f9:9d:a6:16:37:3a:cb:8d:76:86:
25:52:81:29:40:60:8e:92:2c:96:ce:ff:85:c5:28:
67:e0:3b:8e:5f:4a:7f:b8:f6:d8:86:2b:a4:03:f6:
0c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:71:6B:54:2E:5A:4E:B4:D9:E0:BC:B3:46:DE:44:D5:C9:C5:A9:DD
X509v3 Authority Key Identifier:
keyid:CE:17:9E:89:AA:A2:D5:9E:EE:4B:D6:85:8F:AE:5B:B3:FD:A7:49:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zheeiaqi1Z7uS9aFj65bs_2nSWE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/59e9da-9c2c-40cb-9a65-3d7965539bc7/1/vXFrVC5aTrTZ4LyzRt5E1cnFqd0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/59e9da-9c2c-40cb-9a65-3d7965539bc7/1/zheeiaqi1Z7uS9aFj65bs_2nSWE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.39.239.0/24
Signature Algorithm: sha256WithRSAEncryption
58:65:58:75:88:0f:12:4e:1e:67:d4:d2:c1:e1:dd:81:6a:a5:
dd:ec:7e:a3:a0:2f:7c:4b:f6:39:ed:4c:91:05:fb:63:0d:13:
12:76:52:0f:cd:85:00:ac:35:ae:af:b1:ee:ac:02:ff:ce:14:
11:94:8f:6a:cc:f6:60:2d:01:14:6a:9c:36:05:86:c8:d5:27:
fb:9a:06:6e:76:9f:f0:6f:48:6a:2b:c8:65:cb:2e:0e:15:0b:
e4:ba:54:49:4c:04:23:85:d3:1a:1e:d1:3d:fe:78:24:2a:62:
80:49:c7:48:f1:df:60:92:0a:83:c9:f4:85:d1:ab:48:73:9c:
4d:fa:d7:06:b0:59:44:e8:90:17:dd:2a:9a:56:05:83:9b:7d:
5e:45:c4:a6:4b:a9:bb:f5:5d:14:8e:9f:6a:3a:a8:6c:8d:9d:
89:f4:e3:55:c7:97:71:2a:2c:ee:bd:79:4a:8d:f9:75:e2:03:
47:1c:68:7d:f5:17:4f:6f:a9:7f:58:7f:90:29:80:3d:5c:2d:
86:bb:0f:66:e5:34:94:f6:e5:aa:45:92:9f:16:b6:c3:6c:49:
ac:97:8a:04:a8:1a:39:be:36:b1:3b:85:31:5f:b8:30:9c:69:
5a:fb:b3:3c:79:94:ee:ef:49:73:00:61:b9:7a:4b:3f:c8:86:
0b:7b:ec:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:25:07 2025 by rpki-client