Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/jUa_qMLGKgMt-RV7xtX-o5z6qpk.roa
File: jUa_qMLGKgMt-RV7xtX-o5z6qpk.roa (raw, json)
Hash identifier: ZZlH1QbBIQY0SpXv5bpVRfohNoKIS1+tA2A9VeXvMDk=
Subject key identifier: 8D:46:BF:A8:C2:C6:2A:03:2D:F9:15:7B:C6:D5:FE:A3:9C:FA:AA:99
Certificate issuer: /CN=19e3d11f72ddbed8361285b499b932191203b756
Certificate serial: 018EBD42AC7218F9249CB7ED72067BD89B65
Authority key identifier: 19:E3:D1:1F:72:DD:BE:D8:36:12:85:B4:99:B9:32:19:12:03:B7:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GePRH3Ldvtg2EoW0mbkyGRIDt1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/jUa_qMLGKgMt-RV7xtX-o5z6qpk.roa
Signing time: Mon 08 Apr 2024 10:30:47 +0000
ROA not before: Mon 08 Apr 2024 10:30:47 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199760
IP address blocks: 193.109.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 13 May 2024 17:38:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:bd:42:ac:72:18:f9:24:9c:b7:ed:72:06:7b:d8:9b:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e3d11f72ddbed8361285b499b932191203b756
Validity
Not Before: Apr 8 10:30:47 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8d46bfa8c2c62a032df9157bc6d5fea39cfaaa99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:70:5b:87:76:53:fe:60:80:d8:f5:8e:15:84:
06:ce:05:13:85:4d:e9:d3:12:5d:e9:d9:c5:06:0b:
88:93:92:8c:45:6f:05:84:0e:11:1f:94:48:16:2e:
47:68:06:34:b4:bc:02:ad:12:90:db:b4:40:58:40:
bb:b9:2e:0f:13:7e:12:32:c6:5b:78:63:6e:b9:20:
95:e7:e2:49:1e:71:b1:f3:f2:89:23:9a:87:5b:56:
45:93:d2:4d:aa:9e:d5:eb:ef:26:15:bf:00:a7:cd:
a4:f7:b8:5b:84:08:f4:11:59:74:65:82:57:74:04:
0e:a2:05:d5:34:21:f1:36:52:dc:32:96:8b:86:84:
5f:39:95:71:ca:b2:b0:de:38:e0:4c:71:cc:f7:7d:
2b:81:bd:43:8f:dc:c1:fd:ce:b4:9a:cb:a4:01:03:
c5:be:65:09:20:8e:e2:8d:28:e4:10:22:fb:b3:31:
5a:18:88:f8:5a:37:c3:e7:e5:b6:ba:5c:cc:d4:da:
e3:c6:84:4e:b2:11:06:f2:ec:63:65:7d:2b:5d:8d:
18:3f:d7:f1:ea:a4:6c:15:b8:ed:81:01:e5:7c:cd:
a2:06:d1:f1:c1:37:1d:e8:8a:71:2e:98:dc:88:08:
67:ab:8c:af:be:16:e9:3f:44:de:23:c2:7a:14:7d:
01:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:46:BF:A8:C2:C6:2A:03:2D:F9:15:7B:C6:D5:FE:A3:9C:FA:AA:99
X509v3 Authority Key Identifier:
keyid:19:E3:D1:1F:72:DD:BE:D8:36:12:85:B4:99:B9:32:19:12:03:B7:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GePRH3Ldvtg2EoW0mbkyGRIDt1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/jUa_qMLGKgMt-RV7xtX-o5z6qpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c5f7b8-d2c1-46de-9db4-069bfaf2bce4/1/GePRH3Ldvtg2EoW0mbkyGRIDt1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.252.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:59:20:38:f7:57:24:af:37:9d:18:bb:e6:dc:06:91:00:1d:
ee:c8:64:d0:52:3d:f2:6b:6a:04:69:ec:fd:2c:86:c8:f6:5c:
dc:6c:5b:fe:c8:dc:38:2b:d5:74:ff:8b:51:1a:28:f5:13:16:
de:d5:1e:9e:40:3c:60:a5:61:4d:0d:07:4e:a2:e6:a4:9e:2b:
a4:1b:01:b8:59:62:80:ca:1e:73:3f:3a:83:93:72:0c:23:79:
fb:38:54:3a:c0:96:89:94:92:90:f7:b6:7b:ab:4b:45:de:b1:
6b:e9:e3:29:7d:4b:7c:f9:ea:c2:3c:2d:7a:ae:1b:46:19:1c:
9f:62:0e:5e:3c:71:8b:a0:e6:63:9c:a8:db:27:70:65:97:e0:
62:6d:39:be:88:e5:30:96:aa:91:b7:da:97:7b:e3:2b:07:9a:
e4:7f:ac:59:37:18:79:03:b1:ac:b0:99:79:eb:79:5c:29:8b:
57:5a:6d:dd:e8:0b:05:d3:bf:0d:8c:24:14:d3:b4:ff:e6:36:
84:d7:d4:02:ff:56:41:0b:5a:4a:ab:9a:cb:ef:9b:32:29:88:
8f:95:9f:4a:35:ab:e2:0b:df:ea:30:3a:70:d9:ec:72:f8:97:
7d:eb:f2:5f:7e:75:f8:4c:f8:f0:37:e8:2d:4c:c0:1e:c6:d1:
be:b1:3f:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:31:51 2025 by rpki-client