Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/4bp7TSnehUAeTzio2aju7TSzjjY.roa
File: 4bp7TSnehUAeTzio2aju7TSzjjY.roa (raw, json)
Hash identifier: poiWAHF5UQajWZo2SJ38KhCdVmy2FoBa4BkiFR8DzwI=
Subject key identifier: E1:BA:7B:4D:29:DE:85:40:1E:4F:38:A8:D9:A8:EE:ED:34:B3:8E:36
Certificate issuer: /CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Certificate serial: 018FA57C60F3E610A47553E8181B0610E1D5
Authority key identifier: FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/4bp7TSnehUAeTzio2aju7TSzjjY.roa
Signing time: Thu 23 May 2024 12:45:42 +0000
ROA not before: Thu 23 May 2024 12:45:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 92.53.160.0/21 maxlen: 24
92.53.168.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:47:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:a5:7c:60:f3:e6:10:a4:75:53:e8:18:1b:06:10:e1:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe779e56238b6f2ea068ede4e20aef00c904132b
Validity
Not Before: May 23 12:45:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e1ba7b4d29de85401e4f38a8d9a8eeed34b38e36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7b:ea:73:9c:55:60:21:a1:42:e3:20:8d:fa:
44:15:35:6f:61:2a:93:66:61:d2:0b:3d:ad:81:8d:
d9:5f:8c:33:89:0f:cc:e4:81:4d:d0:65:6e:df:07:
c4:11:d5:24:87:14:16:3c:cb:e8:ec:f8:a9:32:24:
1b:1a:d9:6f:af:af:43:01:36:45:d8:f3:f9:e2:52:
cf:ae:c2:7b:bc:3e:1b:ca:00:92:f9:eb:9d:4c:07:
d3:70:a0:1f:5d:1f:a4:fe:84:fe:4c:9d:c4:00:54:
69:7f:4f:5a:fd:60:97:3d:99:4b:a2:83:d3:2a:19:
6c:8b:34:a2:05:59:c5:69:99:8d:14:0b:7b:fe:f3:
57:b4:1a:e6:8f:bf:7d:96:d2:60:e8:42:bf:09:af:
64:90:dc:d1:a7:fb:38:75:51:f4:d9:63:7b:b1:ba:
0c:e0:bf:27:41:b0:03:3f:8c:98:d2:cb:74:d0:cc:
b5:01:6f:18:95:69:3a:6a:ab:57:f7:e7:b4:41:ee:
5c:2c:79:bb:32:49:72:10:7b:a1:d8:a9:48:52:f0:
f5:ec:fc:06:32:42:77:73:7a:47:a9:bd:c5:5b:4d:
7a:e2:ae:0f:f9:ce:06:1b:8d:bc:70:4f:de:bf:c8:
04:a9:a9:eb:a4:a7:77:3b:1d:01:40:b3:7a:9c:43:
91:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:BA:7B:4D:29:DE:85:40:1E:4F:38:A8:D9:A8:EE:ED:34:B3:8E:36
X509v3 Authority Key Identifier:
keyid:FE:77:9E:56:23:8B:6F:2E:A0:68:ED:E4:E2:0A:EF:00:C9:04:13:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_neeViOLby6gaO3k4grvAMkEEys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/4bp7TSnehUAeTzio2aju7TSzjjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/4de598-6b03-4bef-ab14-33894913dcb7/1/_neeViOLby6gaO3k4grvAMkEEys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.53.160.0/20
Signature Algorithm: sha256WithRSAEncryption
8a:e8:91:ea:3b:ec:b1:9f:e4:bd:b1:4e:4e:95:c9:78:0d:02:
41:4a:21:c6:e7:cb:4a:d3:c5:16:98:a7:b7:98:96:65:16:9e:
6d:f9:f2:a9:c8:28:be:3c:29:1f:56:1d:cf:98:69:16:5a:0c:
a9:87:2e:20:fd:81:f1:51:12:12:7b:42:b4:fd:e9:83:7b:ec:
76:ef:b2:7e:c3:48:83:d2:bf:2f:5a:d8:f1:b4:38:30:ab:bd:
b8:75:32:a5:07:96:e4:9e:49:29:6e:f8:7d:2a:e8:5a:2b:56:
1a:f3:37:0d:e3:61:9a:99:63:5b:b6:db:8c:a3:7a:4d:17:d5:
d2:36:d0:0b:1b:c8:94:e6:9a:96:13:51:38:1c:62:72:16:80:
2f:ac:9c:19:8e:a3:91:e3:03:c8:e7:06:d0:a4:83:6a:cc:f3:
da:6e:f8:d3:17:30:7a:20:18:ff:16:7d:4e:21:ed:d8:65:4f:
64:67:45:40:d2:37:40:c3:13:84:2c:b0:f0:bf:53:18:2b:4b:
06:06:e0:e1:9c:98:9e:81:27:b4:8f:33:29:7a:59:2a:08:fe:
51:d6:a8:13:a8:7c:ad:f2:e6:50:77:7d:76:ad:9b:63:ce:05:
bf:86:12:38:58:0d:74:a6:d0:f2:25:13:23:70:1b:89:6b:3f:
bc:4b:39:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:06:20 2025 by rpki-client