Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/x8WZjxrjOko239eDqRqBR4fmX_w.roa
File: x8WZjxrjOko239eDqRqBR4fmX_w.roa (raw, json)
Hash identifier: QD/PjfyV0N08rcGUDdYEs5Rlx8XgvsF1LlphXeXOTHo=
Subject key identifier: C7:C5:99:8F:1A:E3:3A:4A:36:DF:D7:83:A9:1A:81:47:87:E6:5F:FC
Certificate issuer: /CN=f89e229f860b058d23fd28a2926161b8786330c6
Certificate serial: 01920AA83681CA77E1FE1EDE1A4E5D69E077
Authority key identifier: F8:9E:22:9F:86:0B:05:8D:23:FD:28:A2:92:61:61:B8:78:63:30:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-J4in4YLBY0j_SiikmFhuHhjMMY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/x8WZjxrjOko239eDqRqBR4fmX_w.roa
Signing time: Thu 19 Sep 2024 14:20:48 +0000
ROA not before: Thu 19 Sep 2024 14:20:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58092
IP address blocks: 193.102.79.0/24 maxlen: 24
194.62.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0a:a8:36:81:ca:77:e1:fe:1e:de:1a:4e:5d:69:e0:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f89e229f860b058d23fd28a2926161b8786330c6
Validity
Not Before: Sep 19 14:20:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c7c5998f1ae33a4a36dfd783a91a814787e65ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ad:88:a7:5d:ca:fe:96:50:13:9c:be:de:80:
8e:00:94:03:89:3d:37:02:cd:20:4d:c2:58:bb:ec:
49:fe:1b:3f:56:9b:ca:ec:75:d4:5d:4e:b4:09:da:
4b:1c:a0:2e:7c:fd:60:78:ef:d6:cb:25:ce:26:b7:
7e:0b:df:f6:91:a6:99:a8:6f:54:dd:70:bb:a6:7a:
38:cb:dc:a7:a1:48:05:55:53:f9:aa:89:3c:77:d7:
73:2e:cb:2f:e8:7a:3d:6e:61:71:c4:00:47:aa:08:
dd:5b:c0:ff:40:d3:ef:21:eb:c6:a1:f8:5a:3b:fc:
9f:60:b7:c4:1e:9c:2b:e6:99:03:06:4a:9d:f1:ec:
bd:a7:c2:25:99:c7:21:37:d1:4a:3c:e8:92:eb:51:
23:d6:36:fe:36:b8:ad:6c:4d:ef:ef:99:07:75:7d:
8b:33:c2:b8:d4:2a:78:e7:34:42:d0:60:c6:1a:ef:
89:95:5c:20:b8:44:47:69:2a:48:5a:5b:d0:bd:f1:
13:04:cd:2b:a3:22:85:a6:a9:00:f1:11:48:99:b8:
b9:4d:8a:dc:aa:38:c5:78:d1:c3:a7:6b:e0:1a:2b:
ed:75:f7:86:ea:65:fa:25:0e:f2:85:c2:f1:eb:7e:
8e:46:91:a5:7f:6f:e1:69:10:19:56:a4:cb:b5:73:
b3:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:C5:99:8F:1A:E3:3A:4A:36:DF:D7:83:A9:1A:81:47:87:E6:5F:FC
X509v3 Authority Key Identifier:
keyid:F8:9E:22:9F:86:0B:05:8D:23:FD:28:A2:92:61:61:B8:78:63:30:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-J4in4YLBY0j_SiikmFhuHhjMMY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/x8WZjxrjOko239eDqRqBR4fmX_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/8cca33-c2b1-4541-9ef2-aa0eb53e90b9/1/1-J4in4YLBY0j_SiikmFhuHhjMMY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.102.79.0/24
194.62.20.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:60:0f:88:e3:7b:7f:f0:a5:01:07:ab:3e:37:67:63:ae:36:
5b:32:46:33:57:4c:bb:cd:ec:cd:97:5d:34:a4:5c:eb:cf:71:
a5:86:cc:f8:8b:8a:8d:26:9b:6a:f9:48:82:5d:e1:10:4a:a7:
38:a9:db:ba:0b:3e:50:dd:f3:7e:42:7b:af:3b:3f:f4:91:62:
4d:5c:d6:cd:bc:d5:01:4c:9a:cb:4f:62:c8:a7:2f:ec:a7:20:
40:5d:39:d3:9b:56:4c:64:e6:0d:38:73:42:be:10:a1:0d:88:
a8:0a:92:c6:37:76:05:b0:19:f2:b1:d2:15:12:5f:cd:c2:1f:
3d:88:37:24:d3:83:55:3c:c7:39:40:82:31:79:23:04:29:ba:
0a:80:50:f8:fd:45:1e:40:f6:31:73:7d:ea:ab:24:ca:54:43:
88:22:37:05:a2:1b:3a:55:7c:7e:4a:d8:2f:7b:80:1a:5d:8f:
a2:81:84:82:b9:fe:ef:90:36:cc:71:42:f3:b7:ee:33:0c:69:
e7:ee:c7:a1:a9:6d:3b:c5:db:b1:0b:93:87:c7:03:10:0b:a6:
1a:c7:df:70:ce:d3:70:2e:f8:f0:e8:61:d4:cd:31:c3:7c:67:
f8:80:41:f8:4b:2e:e3:7d:76:ce:04:8b:36:ec:dc:ad:00:a5:
9a:26:62:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:33:19 2025 by rpki-client