Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/_LSBzt5yyBEjh4C8cmNN_YFsSo0.roa
File: _LSBzt5yyBEjh4C8cmNN_YFsSo0.roa (raw, json)
Hash identifier: m9hLFIMugCU39WFTJZHMaY8jJ0YR5Sd4dm3Q5GkxofY=
Subject key identifier: FC:B4:81:CE:DE:72:C8:11:23:87:80:BC:72:63:4D:FD:81:6C:4A:8D
Certificate issuer: /CN=a85db8c9b56308cf089021b516cae4c55fd64fe4
Certificate serial: 0191B217B0FF4C5DB60BF2E132173647ABE3
Authority key identifier: A8:5D:B8:C9:B5:63:08:CF:08:90:21:B5:16:CA:E4:C5:5F:D6:4F:E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qF24ybVjCM8IkCG1FsrkxV_WT-Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/_LSBzt5yyBEjh4C8cmNN_YFsSo0.roa
Signing time: Mon 02 Sep 2024 09:36:22 +0000
ROA not before: Mon 02 Sep 2024 09:36:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197177
IP address blocks: 193.23.227.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:17:b0:ff:4c:5d:b6:0b:f2:e1:32:17:36:47:ab:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a85db8c9b56308cf089021b516cae4c55fd64fe4
Validity
Not Before: Sep 2 09:36:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=fcb481cede72c811238780bc72634dfd816c4a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:92:a9:2f:79:a3:91:28:49:7d:e8:9d:89:bc:
b4:8f:d9:4e:12:bc:3d:c4:1d:f4:da:08:f0:6c:8a:
a2:c8:af:d1:7c:84:56:12:e1:5d:54:93:40:30:f9:
fe:12:b8:3c:0f:bd:0b:c6:d5:7d:c0:60:94:27:eb:
59:aa:9a:fc:ae:2e:3a:68:9f:5c:3c:99:b3:03:a3:
c7:98:f9:6f:c7:2d:00:a3:99:b0:3b:c0:46:2f:eb:
b5:b8:33:58:06:b7:d5:17:75:67:cf:e8:e4:d5:51:
bd:c4:3c:9e:e3:83:4a:6d:3d:4e:4b:87:a2:2b:45:
33:a4:e8:40:7a:4b:91:e5:97:fe:c0:b5:04:dd:01:
31:60:9f:a6:5b:a2:9b:16:ed:96:c1:2f:c8:9d:8a:
b8:cb:3e:d7:31:60:a2:5f:85:d6:a2:88:19:1a:b9:
fa:fc:17:9d:5f:ac:4d:ba:91:33:df:25:90:d6:03:
cb:ea:69:86:12:79:00:9f:c3:cf:b1:5e:f1:68:d5:
6f:59:a4:7b:fc:e9:ee:64:59:4e:dc:6e:67:41:69:
e6:8b:32:ab:b6:a6:55:dc:2f:90:f6:3f:30:41:56:
78:17:25:d3:e4:cf:5e:e7:cd:42:79:20:84:56:9e:
92:f3:18:a6:6c:4b:ea:c1:9f:33:5f:70:e2:68:39:
43:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:B4:81:CE:DE:72:C8:11:23:87:80:BC:72:63:4D:FD:81:6C:4A:8D
X509v3 Authority Key Identifier:
keyid:A8:5D:B8:C9:B5:63:08:CF:08:90:21:B5:16:CA:E4:C5:5F:D6:4F:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qF24ybVjCM8IkCG1FsrkxV_WT-Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/_LSBzt5yyBEjh4C8cmNN_YFsSo0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/638109-b320-45a1-906e-60f49d123173/1/qF24ybVjCM8IkCG1FsrkxV_WT-Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.23.227.0/24
Signature Algorithm: sha256WithRSAEncryption
50:f7:4c:01:15:36:5b:28:b9:82:93:63:46:e8:15:5c:3c:21:
b4:e9:73:82:e0:63:4a:23:da:eb:f0:ed:f1:af:13:0f:2b:9c:
8e:03:9e:62:94:ae:0b:b0:f5:bc:4a:17:cb:cf:20:d1:e2:21:
c9:9a:5a:3d:b3:c9:3f:53:2c:56:b0:37:1a:43:b9:14:3a:66:
99:8a:6b:6a:c1:1c:79:6b:81:61:37:11:c9:a6:8b:7b:9e:b5:
fd:ee:73:6d:4d:10:97:c3:59:5a:cb:0b:ec:d4:2d:6b:96:a3:
7b:57:20:0c:65:f0:ea:72:6a:cc:32:d7:64:b8:bf:02:25:64:
36:a3:63:b4:ff:bd:c2:27:2f:af:36:07:1f:95:ff:a8:3f:8e:
5b:98:8e:1b:d4:0e:7c:5d:ef:f4:5c:51:01:45:fd:fc:2e:f2:
e1:89:bb:1f:7d:fc:2f:5f:0e:fc:15:d4:f8:0b:d0:16:c0:cf:
e9:fc:29:d2:12:7f:7d:b6:40:6e:32:e2:93:21:73:04:d7:f7:
24:d3:79:dc:6d:4c:05:c9:5f:33:e7:9f:59:02:48:c2:dc:9b:
77:81:33:65:57:bf:e8:a7:38:7e:5d:90:91:fc:33:61:aa:c4:
bf:d9:3b:9a:de:43:c9:b4:21:53:9e:1e:9a:38:a2:fc:28:10:
d8:04:c3:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 07:39:30 2025 by rpki-client