Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/3VsnemKJGQMvlBnVP60AZamqGdQ.roa
File: 3VsnemKJGQMvlBnVP60AZamqGdQ.roa (raw, json)
Hash identifier: 8RUZaTanAi7aEe6IAlvzKZnxn8TyBHljS+R8a0ngl14=
Subject key identifier: DD:5B:27:7A:62:89:19:03:2F:94:19:D5:3F:AD:00:65:A9:AA:19:D4
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 019065A7DE6500CD3A29C241B49271470D8D
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/3VsnemKJGQMvlBnVP60AZamqGdQ.roa
Signing time: Sat 29 Jun 2024 20:20:18 +0000
ROA not before: Sat 29 Jun 2024 20:20:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 92.53.160.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Dec 2024 11:03:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:65:a7:de:65:00:cd:3a:29:c2:41:b4:92:71:47:0d:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: Jun 29 20:20:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dd5b277a628919032f9419d53fad0065a9aa19d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bb:06:f8:78:34:56:2f:78:df:ca:c5:06:6c:
f8:38:2c:bd:e5:d4:f5:0b:cb:08:84:ca:6c:d5:03:
cf:3a:2e:51:02:61:16:91:ec:61:cd:13:d0:b1:a5:
5b:f7:4b:53:80:d1:38:8b:69:84:02:85:79:f5:d8:
0b:88:13:b5:16:a1:e8:39:08:66:60:34:64:bd:12:
ee:00:16:8f:27:6c:46:c2:50:f8:99:ae:bd:67:98:
f5:ae:8e:32:c2:d4:bf:2e:3d:36:f8:4a:b3:09:92:
39:30:52:95:c7:4b:a1:68:50:e7:34:fd:78:32:af:
b7:19:70:e7:9a:e3:6d:9a:24:49:3e:7b:a0:ca:6c:
6e:7a:30:81:60:45:e9:ae:7b:be:fe:91:1d:c7:3f:
3f:a0:c4:c9:5c:fb:e4:16:5f:10:2d:4d:97:12:f3:
ab:fd:93:6f:06:24:e1:eb:d2:8e:4e:f5:63:92:d3:
50:05:eb:41:19:7e:ff:1e:e6:d8:89:20:00:3d:66:
0b:cf:fd:cb:d4:06:9f:6c:a7:9a:43:8c:23:a5:d8:
94:50:b1:8d:c4:f2:79:a0:61:01:10:90:72:6e:01:
70:2c:de:a2:52:25:05:37:8d:3d:f9:40:46:a7:33:
8e:06:5c:73:e8:96:6b:2b:a3:7a:90:64:97:02:ba:
6a:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:5B:27:7A:62:89:19:03:2F:94:19:D5:3F:AD:00:65:A9:AA:19:D4
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/3VsnemKJGQMvlBnVP60AZamqGdQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.160.0/20
Signature Algorithm: sha256WithRSAEncryption
7f:ad:74:45:6a:1f:30:91:95:15:d2:0c:fd:c0:52:e7:44:27:
e2:35:5f:de:15:cf:6a:b8:e1:96:64:6a:fd:cb:eb:a6:51:2f:
ca:16:fc:85:bc:a6:32:37:46:73:11:32:82:ae:e7:40:d8:8b:
b0:96:da:30:2e:cb:1c:65:19:9d:bb:7d:3a:31:74:36:44:22:
35:db:c2:8a:5a:7c:e7:48:d4:ce:88:93:7f:42:cb:c4:b2:7e:
ee:a4:fd:9f:9c:ed:c0:e8:33:ee:66:ee:b9:79:94:bf:52:bf:
6c:9b:7f:00:80:53:ef:c3:e4:29:9c:10:e4:74:b3:88:28:a1:
9b:04:1d:41:fe:89:ab:a9:b6:51:1d:d5:89:ab:22:a9:c5:e9:
04:43:d6:26:7b:eb:76:4c:78:a8:64:e4:a3:75:f4:73:72:9f:
ea:01:9d:f3:a7:64:47:9c:20:c4:a8:a4:d8:d0:97:80:0e:a1:
42:87:f0:79:90:0c:e5:d6:f7:1b:4a:83:a5:0f:74:8d:cb:1b:
69:d1:17:22:28:63:6e:19:63:06:b2:b6:62:22:60:df:9f:f5:
9b:48:81:91:f9:65:26:41:fa:a1:c7:3a:42:43:1e:0f:d1:8f:
68:71:d6:5b:16:eb:21:9a:eb:ac:e5:8c:41:53:2e:7d:54:86:
5d:04:91:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:55:47 2025 by rpki-client