Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/fXast75ukZxIG3MoCUhnQkdl1k8.roa
File: fXast75ukZxIG3MoCUhnQkdl1k8.roa (raw, json)
Hash identifier: 1b1YPyy+51NhEm2rU/5vFFBjt4CH6BXQftw72EVLBfk=
Subject key identifier: 7D:76:AC:B7:BE:6E:91:9C:48:1B:73:28:09:48:67:42:47:65:D6:4F
Certificate issuer: /CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Certificate serial: 01921370BDC1C9056DBAA4CBE062ED881418
Authority key identifier: 17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/fXast75ukZxIG3MoCUhnQkdl1k8.roa
Signing time: Sat 21 Sep 2024 07:16:48 +0000
ROA not before: Sat 21 Sep 2024 07:16:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6762
IP address blocks: 193.163.200.0/24 maxlen: 24
194.9.181.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:13:70:bd:c1:c9:05:6d:ba:a4:cb:e0:62:ed:88:14:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17b5042fc20d9bab1676e09af7ff1ba5bfadae75
Validity
Not Before: Sep 21 07:16:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7d76acb7be6e919c481b7328094867424765d64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:12:f8:14:87:81:b9:8a:05:26:6b:06:13:86:
f3:aa:ce:52:a0:a2:a4:f6:0a:38:63:ca:1d:fc:31:
9c:05:0a:cb:84:4e:48:4a:c2:fe:92:8e:7e:a6:22:
af:64:f7:ff:22:6f:33:b2:60:e7:2c:2a:ce:11:19:
68:23:f9:0d:13:02:aa:fb:83:ca:28:06:5e:73:47:
11:32:ca:60:4f:d6:09:b8:3d:94:59:a4:ff:80:1f:
65:63:82:a9:f2:73:95:cc:81:be:75:41:a4:51:36:
72:20:3f:6a:04:12:29:0d:33:f6:14:94:6f:2f:4b:
b0:57:99:bb:ad:7d:42:aa:e8:e0:7e:19:4a:61:e9:
62:6e:4b:9d:f0:fb:75:6b:57:24:82:28:d5:2f:76:
8b:9e:ab:57:d0:a1:9c:43:86:6d:8a:9c:7a:e3:97:
39:4c:13:15:ef:a8:8c:5c:e0:d9:27:36:12:6d:ed:
66:9e:52:d9:ae:a8:79:b2:be:b6:2c:9d:97:a5:80:
b7:b4:5b:48:94:cc:8a:5e:4e:5d:a6:12:dc:10:5a:
01:ab:86:17:db:f1:4e:54:a1:c2:0c:32:e4:7d:31:
c6:f2:d8:ce:90:d2:0b:1e:4a:61:51:ec:b8:58:92:
46:63:96:46:57:82:92:f8:5c:58:36:c3:7d:e9:81:
37:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:76:AC:B7:BE:6E:91:9C:48:1B:73:28:09:48:67:42:47:65:D6:4F
X509v3 Authority Key Identifier:
keyid:17:B5:04:2F:C2:0D:9B:AB:16:76:E0:9A:F7:FF:1B:A5:BF:AD:AE:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F7UEL8INm6sWduCa9_8bpb-trnU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/fXast75ukZxIG3MoCUhnQkdl1k8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/65e543-7e7a-4aab-ac74-bc6794e95e5a/1/F7UEL8INm6sWduCa9_8bpb-trnU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.163.200.0/24
194.9.181.0/24
Signature Algorithm: sha256WithRSAEncryption
31:5a:ae:c9:c5:45:ef:2f:5e:c0:4a:62:1a:78:fe:eb:15:f6:
ea:7d:28:3d:4b:c7:54:b8:76:b9:c1:83:5e:6c:86:92:72:4e:
83:cf:ab:a9:92:94:cf:50:bf:58:dd:56:d4:fe:fb:9a:41:6d:
d5:b9:1b:40:6e:99:ac:dc:ac:e3:f2:24:45:ea:e0:04:84:75:
87:1e:da:24:63:a4:9c:74:ab:f9:16:61:81:53:29:22:79:e2:
23:02:b9:e6:fc:7a:25:ca:e2:50:f8:92:38:7e:f6:ef:21:a6:
b3:b0:ff:10:fd:87:b4:ac:5e:51:fe:22:24:a1:91:f9:a2:4c:
78:b1:29:a9:cd:db:39:b2:77:02:c0:2b:28:38:89:49:a5:52:
67:0a:ec:e3:cc:62:73:53:84:ef:64:09:33:d9:53:fe:76:f2:
2b:fa:5d:c4:36:8f:98:da:80:ce:b3:bc:26:c5:50:c0:21:6c:
1b:8e:0c:d1:d2:15:3c:7f:da:9e:5f:3b:c0:c7:a6:fe:64:4a:
2d:a2:0e:04:74:ff:0a:51:88:60:8d:5a:05:d8:e0:8d:c3:84:
76:a8:73:60:85:e4:73:61:bd:91:41:ef:ec:48:6e:9e:a2:a0:
a2:0e:f7:96:9f:63:9c:37:05:a3:77:9d:b9:88:6c:ef:1a:cd:
4e:8b:92:49
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZITcL3ByQVtuqTL4GLtiBQYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE3YjUwNDJmYzIwZDliYWIxNjc2ZTA5YWY3ZmYxYmE1YmZh
ZGFlNzUwHhcNMjQwOTIxMDcxNjQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3ZDc2YWNiN2JlNmU5MTljNDgxYjczMjgwOTQ4Njc0MjQ3NjVkNjRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhL4FIeBuYoFJmsGE4bzqs5SoKKk
9go4Y8od/DGcBQrLhE5ISsL+ko5+piKvZPf/Im8zsmDnLCrOERloI/kNEwKq+4PK
KAZec0cRMspgT9YJuD2UWaT/gB9lY4Kp8nOVzIG+dUGkUTZyID9qBBIpDTP2FJRv
L0uwV5m7rX1CqujgfhlKYelibkud8Pt1a1ckgijVL3aLnqtX0KGcQ4Ztipx645c5
TBMV76iMXODZJzYSbe1mnlLZrqh5sr62LJ2XpYC3tFtIlMyKXk5dphLcEFoBq4YX
2/FOVKHCDDLkfTHG8tjOkNILHkphUey4WJJGY5ZGV4KS+FxYNsN96YE3iQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFH12rLe+bpGcSBtzKAlIZ0JHZdZPMB8GA1UdIwQY
MBaAFBe1BC/CDZurFnbgmvf/G6W/ra51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRjdVRUw4SU5tNnNXZHVDYTlfOGJwYi10cm5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMS82NWU1NDMtN2U3YS00YWFiLWFjNzQt
YmM2Nzk0ZTk1ZTVhLzEvZlhhc3Q3NXVrWnhJRzNNb0NVaG5Ra2RsMWs4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMS82NWU1NDMtN2U3YS00YWFiLWFjNzQtYmM2Nzk0ZTk1ZTVh
LzEvRjdVRUw4SU5tNnNXZHVDYTlfOGJwYi10cm5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQAwaPIAwQA
wgm1MA0GCSqGSIb3DQEBCwUAA4IBAQAxWq7JxUXvL17ASmIaeP7rFfbqfSg9S8dU
uHa5wYNebIaSck6Dz6upkpTPUL9Y3VbU/vuaQW3VuRtAbpms3Kzj8iRF6uAEhHWH
HtokY6ScdKv5FmGBUykieeIjArnm/HolyuJQ+JI4fvbvIaazsP8Q/Ye0rF5R/iIk
oZH5okx4sSmpzds5sncCwCsoOIlJpVJnCuzjzGJzU4TvZAkz2VP+dvIr+l3ENo+Y
2oDOs7wmxVDAIWwbjgzR0hU8f9qeXzvAx6b+ZEotog4EdP8KUYhgjVoF2OCNw4R2
qHNgheRzYb2RQe/sSG6eoqCiDveWn2OcNwWjd525iGzvGs1Oi5JJ
-----END CERTIFICATE-----
Generated at Sun Feb 16 15:07:22 2025 by rpki-client