Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/79c741-6fea-4d3c-a840-5623f0c564bf/1/_sH8Y25bHhV5RHS1qNIWYYR6L5U.roa
File: _sH8Y25bHhV5RHS1qNIWYYR6L5U.roa (raw, json)
Hash identifier: z7pB+DrWuJO0EAm3ZU3up/udG9QBcdYNo1aArx9v3E4=
Subject key identifier: FE:C1:FC:63:6E:5B:1E:15:79:44:74:B5:A8:D2:16:61:84:7A:2F:95
Certificate issuer: /CN=b8793a83b062c4de969042f09c1728066636fdc3
Certificate serial: 018DA315596B04D91CFF27B5807C6E8BFBE2
Authority key identifier: B8:79:3A:83:B0:62:C4:DE:96:90:42:F0:9C:17:28:06:66:36:FD:C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uHk6g7BixN6WkELwnBcoBmY2_cM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/79c741-6fea-4d3c-a840-5623f0c564bf/1/_sH8Y25bHhV5RHS1qNIWYYR6L5U.roa
Signing time: Tue 13 Feb 2024 15:28:21 +0000
ROA not before: Tue 13 Feb 2024 15:28:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205481
IP address blocks: 194.60.81.0/24 maxlen: 29
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:a3:15:59:6b:04:d9:1c:ff:27:b5:80:7c:6e:8b:fb:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b8793a83b062c4de969042f09c1728066636fdc3
Validity
Not Before: Feb 13 15:28:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fec1fc636e5b1e15794474b5a8d21661847a2f95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:c5:11:3c:ee:6e:11:53:57:71:62:f4:f2:21:
39:8f:1f:08:b3:3d:86:08:35:a2:6a:2e:41:a4:fd:
d1:e7:99:29:c2:77:7e:eb:de:a0:87:b5:98:7c:d0:
7d:19:0a:08:8b:97:a7:a5:d0:07:c2:1a:7d:92:1c:
3a:fd:f3:f8:7c:86:bf:e8:db:0c:da:bd:b3:fd:16:
4f:37:30:4b:c5:af:6c:ef:ce:19:e2:01:1b:cd:82:
85:24:b2:98:0e:c9:c3:95:83:09:5e:ba:6c:80:f5:
65:90:6c:e4:af:71:c0:d6:15:b1:43:b4:75:3b:cd:
e8:b4:e7:06:5a:05:08:8d:9e:3e:1b:32:77:d8:22:
f0:87:78:70:b9:e5:b4:b0:47:04:ea:a9:c6:8e:0f:
6e:70:8b:de:42:80:89:ba:fa:03:5f:c3:3d:b2:9a:
6b:1d:ce:2f:46:18:f6:64:e8:17:9e:72:9f:a3:37:
4b:88:ed:21:b1:4b:f6:a6:07:1e:0f:b6:18:de:4e:
d8:a5:81:90:7d:62:c7:00:e5:36:43:ca:38:a6:be:
9e:71:92:d8:20:69:8c:46:31:33:4c:a3:45:66:73:
82:53:30:f4:de:53:2b:cd:3f:b8:c7:f9:91:e2:af:
23:b8:ab:20:45:78:a8:24:85:1d:8f:dd:ef:48:40:
2a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:C1:FC:63:6E:5B:1E:15:79:44:74:B5:A8:D2:16:61:84:7A:2F:95
X509v3 Authority Key Identifier:
keyid:B8:79:3A:83:B0:62:C4:DE:96:90:42:F0:9C:17:28:06:66:36:FD:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uHk6g7BixN6WkELwnBcoBmY2_cM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/79c741-6fea-4d3c-a840-5623f0c564bf/1/_sH8Y25bHhV5RHS1qNIWYYR6L5U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/79c741-6fea-4d3c-a840-5623f0c564bf/1/uHk6g7BixN6WkELwnBcoBmY2_cM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.60.81.0/24
Signature Algorithm: sha256WithRSAEncryption
86:fc:5f:9a:6f:d4:cf:9e:95:dc:1d:dc:6e:fc:47:04:e5:46:
07:cd:72:8b:1a:3d:12:98:58:9d:66:8b:22:45:33:79:fc:8e:
79:2d:d5:d4:e4:3d:22:e2:e2:30:30:64:ff:8c:c2:83:61:b0:
9a:5b:aa:86:fe:f1:c8:1e:91:40:70:04:84:c4:de:24:08:6b:
2a:b7:fd:bf:a8:77:6c:72:4c:8d:19:03:21:95:9e:bc:a0:88:
e4:56:e2:7e:dc:d0:4b:8d:7f:15:c5:b2:50:6b:e1:00:34:77:
9e:28:35:94:03:43:94:76:e6:4f:d4:45:bc:be:99:e5:6b:a1:
19:f8:7e:41:73:7a:a2:6c:46:86:c8:ba:d2:69:ea:65:9e:c0:
58:4c:d5:12:00:78:6c:a4:36:78:ee:21:99:e3:94:67:50:07:
9a:2a:ea:17:91:bd:be:16:07:b9:dc:22:71:39:b3:87:31:4c:
6c:10:73:fc:3a:cd:15:27:39:4b:5b:22:59:a0:ec:e1:78:37:
3a:21:e8:d5:7a:0a:6a:3a:0c:5f:a7:94:f8:c8:b9:91:df:ab:
c5:3b:cf:4d:a3:5d:ac:9e:8e:c2:22:a2:bf:71:ab:ec:ba:41:
c1:18:9e:0a:e6:9f:b1:7d:7d:80:9f:bd:49:dd:58:42:39:ab:
30:2c:1a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:47:09 2025 by rpki-client