Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/td2VW0pPtGqMEh7KSbG2Zwc4xRU.roa
File: td2VW0pPtGqMEh7KSbG2Zwc4xRU.roa (raw, json)
Hash identifier: IeZuLiY6IfMwrfBE7DM6qnZIY25gxlcw25w1cIpNNyU=
Subject key identifier: B5:DD:95:5B:4A:4F:B4:6A:8C:12:1E:CA:49:B1:B6:67:07:38:C5:15
Certificate issuer: /CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Certificate serial: 0193DDA42B98C7B8457B3544BAB6BF72A2C6
Authority key identifier: 0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/td2VW0pPtGqMEh7KSbG2Zwc4xRU.roa
Signing time: Thu 19 Dec 2024 06:39:03 +0000
ROA not before: Thu 19 Dec 2024 06:39:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.99.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 21 Dec 2024 13:47:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:dd:a4:2b:98:c7:b8:45:7b:35:44:ba:b6:bf:72:a2:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0b5f8c9447d614b86182763d9333250e2d9412e2
Validity
Not Before: Dec 19 06:39:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5dd955b4a4fb46a8c121eca49b1b6670738c515
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0d:c4:dc:ca:2d:ec:75:84:a5:cd:10:6d:30:
2d:9c:7d:e9:b7:6f:1c:f9:be:b0:5a:16:61:9b:da:
41:0c:6d:9e:af:9f:bb:43:4d:0d:66:75:48:38:b2:
05:61:52:c3:e0:95:c1:82:e3:22:2e:39:9e:aa:b5:
5a:14:09:00:a6:01:a1:ec:bd:e0:bb:0d:dd:5c:9d:
2e:ee:33:4b:e7:fc:f8:e1:ec:af:5d:5d:13:19:c2:
e6:8f:0d:94:ff:14:14:da:1a:e0:e9:81:e7:cc:bc:
29:fb:17:21:ec:ec:e7:21:14:5f:dd:97:3f:64:a8:
db:13:9e:da:56:5f:94:8e:bf:be:a9:c9:8c:30:c0:
01:11:fd:c6:b2:bf:cc:42:e2:e0:15:af:3c:3a:63:
53:e3:53:05:b7:02:bf:14:fb:9b:c3:b8:fd:7c:1b:
e6:79:e2:be:1d:b5:02:a6:b3:65:09:e8:34:b5:f7:
33:30:05:d5:c2:f6:6b:ba:f7:c8:48:5f:8b:f0:d5:
b5:94:54:8c:53:d3:fb:ca:e3:bf:7d:6c:86:da:d4:
32:36:9a:22:d0:88:59:51:1f:8b:f6:a4:0a:56:e1:
26:af:22:03:86:b0:1f:06:d7:c9:f3:57:25:fa:2d:
62:8a:6f:14:6c:65:5b:09:05:86:dd:99:ae:ed:34:
d9:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:DD:95:5B:4A:4F:B4:6A:8C:12:1E:CA:49:B1:B6:67:07:38:C5:15
X509v3 Authority Key Identifier:
keyid:0B:5F:8C:94:47:D6:14:B8:61:82:76:3D:93:33:25:0E:2D:94:12:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C1-MlEfWFLhhgnY9kzMlDi2UEuI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/td2VW0pPtGqMEh7KSbG2Zwc4xRU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f7f6c0-09d0-492c-92e6-8a95e6377332/1/C1-MlEfWFLhhgnY9kzMlDi2UEuI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.99.156.0/24
Signature Algorithm: sha256WithRSAEncryption
84:a5:04:bf:a6:73:ce:ac:e7:83:a1:21:66:29:9c:ea:23:f8:
44:d0:8e:f6:1e:4c:d5:8f:b6:89:59:b9:36:d5:d6:40:e1:6a:
d5:ed:f3:bf:97:08:e8:56:bf:02:05:a6:43:3a:7f:5e:29:74:
d7:eb:2d:bc:bf:08:23:55:cd:8f:e2:da:ec:cd:2b:29:f0:13:
a4:54:9a:2a:d4:15:54:c9:e8:c1:47:2d:a5:e4:1f:84:dc:af:
d6:ff:ef:2d:e2:53:b8:a3:cc:d9:03:53:48:91:38:8c:2f:ba:
c8:df:ce:e4:38:b1:d1:47:20:e4:1c:bd:03:a6:0d:7d:59:0c:
16:8d:0a:79:14:56:28:0f:36:9e:19:a8:5c:c0:35:31:a6:bb:
4a:d1:72:41:52:f1:84:da:e6:dc:04:a1:48:c4:53:ac:f5:8c:
da:00:30:41:33:3d:c1:55:0f:27:90:b3:2c:4b:68:c2:7c:4e:
dd:b0:a4:66:ca:aa:a0:db:17:e6:30:7a:94:25:b9:02:47:d8:
87:0e:08:43:99:86:d1:62:05:af:b8:43:54:24:62:77:10:1a:
90:f4:d9:e7:1b:9c:d8:75:4c:da:f6:b1:b7:ba:ce:0f:45:83:
de:33:9a:60:20:e4:d6:eb:01:e7:c7:2b:cb:d8:7d:68:56:93:
25:4a:2b:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 00:28:58 2025 by rpki-client