Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/rWBWIRvcn47awowj08Jxp9sLxuc.roa
File: rWBWIRvcn47awowj08Jxp9sLxuc.roa (raw, json)
Hash identifier: Fzdg7OGsKEaUUiQ9C0FXA85aanaxPvoIFzyxXMh8slw=
Subject key identifier: AD:60:56:21:1B:DC:9F:8E:DA:C2:8C:23:D3:C2:71:A7:DB:0B:C6:E7
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01940DDA9F4531CBE2E87C56EDDB0ADDCB4B
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/rWBWIRvcn47awowj08Jxp9sLxuc.roa
Signing time: Sat 28 Dec 2024 15:20:18 +0000
ROA not before: Sat 28 Dec 2024 15:20:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 88.80.139.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:47:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:0d:da:9f:45:31:cb:e2:e8:7c:56:ed:db:0a:dd:cb:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Dec 28 15:20:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ad6056211bdc9f8edac28c23d3c271a7db0bc6e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:61:d8:ba:4c:59:9b:8c:cf:4a:cd:be:85:56:
ef:a6:23:42:1f:87:2c:2a:25:28:b4:72:77:88:af:
e0:ad:7a:3c:71:82:41:5f:aa:2b:c4:75:60:a0:93:
85:ab:47:34:77:36:89:12:41:ce:a1:05:84:21:a6:
52:f4:51:1b:ec:ae:3e:dc:f9:4a:53:34:e7:fb:ae:
57:a5:8a:87:b8:69:5d:c7:bb:9e:0f:12:f4:0b:76:
f6:b3:c5:3d:cb:15:70:89:2e:9f:fa:81:65:dd:ff:
72:29:cf:95:71:b3:70:2a:b4:e0:4d:d0:9a:d8:df:
39:67:5e:3f:78:b6:2c:7e:a6:e8:98:8e:aa:b6:44:
7e:25:03:77:74:06:5d:16:86:0d:b0:d3:aa:d7:e2:
f3:f2:a2:3d:ee:64:28:74:02:64:8f:35:15:73:a2:
da:96:3a:76:ef:4e:9c:27:90:d9:10:e0:13:b7:db:
e0:92:48:df:c6:78:7a:cc:1a:30:33:92:a9:cd:5d:
29:1d:46:12:b6:2d:db:6e:55:93:8b:98:35:8d:50:
2e:5a:57:7f:ee:ca:68:e3:57:63:d2:d5:fd:47:76:
58:a7:a5:af:c6:d1:1b:17:1e:9e:6d:6e:8f:af:fe:
69:8b:f0:ea:06:a0:cd:9f:53:d2:7b:09:8c:f5:86:
5a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:60:56:21:1B:DC:9F:8E:DA:C2:8C:23:D3:C2:71:A7:DB:0B:C6:E7
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/rWBWIRvcn47awowj08Jxp9sLxuc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.80.139.0/24
Signature Algorithm: sha256WithRSAEncryption
68:0e:69:79:2d:2e:a7:96:2e:f1:13:a8:5b:a2:09:bb:c5:37:
53:75:22:c3:d2:24:b9:4d:c3:db:64:b3:df:df:27:f8:89:f5:
09:0f:29:35:80:b0:07:e8:56:64:89:a3:21:c2:99:04:19:56:
63:2c:12:84:70:51:a2:e7:1b:45:98:c8:14:3e:ac:58:ec:9d:
be:33:68:dd:16:4b:d5:08:b7:5b:e9:85:42:1c:87:78:95:ce:
11:c1:51:e2:32:4e:aa:7e:c3:aa:90:83:23:a8:de:0c:56:8e:
a5:a3:5b:5e:25:b5:e4:be:85:26:bf:2a:54:d0:7a:ab:0b:0b:
a7:02:79:2c:61:3d:ad:e1:53:31:94:68:a7:65:5a:47:50:68:
ed:c6:66:02:6f:df:d2:a1:b5:b9:f8:d7:e5:70:ca:c6:bf:6a:
77:d6:55:f3:7a:1d:53:58:5f:87:fd:54:43:6f:80:42:09:27:
8d:17:15:79:9e:aa:e1:28:41:28:08:6f:be:c1:19:af:83:23:
aa:51:90:de:b2:8c:69:1d:f7:9f:7f:35:5b:9e:2f:68:63:50:
5f:19:3d:aa:8e:b1:db:c8:02:fc:b5:99:21:59:5c:ed:ff:6a:
1f:bb:fb:1d:98:5a:3b:e6:39:91:5b:50:06:f1:cb:5e:a6:72:
39:23:5d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:06:12 2025 by rpki-client