Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Srib9mgJsHQZYK_67rOvtX9JFlI.roa
File: Srib9mgJsHQZYK_67rOvtX9JFlI.roa (raw, json)
Hash identifier: 7Q5/UqOF9Tyudxe0lGYxtv5pyqdI2vIYBbL+GZJwZH8=
Subject key identifier: 4A:B8:9B:F6:68:09:B0:74:19:60:AF:FA:EE:B3:AF:B5:7F:49:16:52
Certificate issuer: /CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Certificate serial: 01932EB4532F6DE027AAD40158E64EF978EF
Authority key identifier: 35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Srib9mgJsHQZYK_67rOvtX9JFlI.roa
Signing time: Fri 15 Nov 2024 07:23:09 +0000
ROA not before: Fri 15 Nov 2024 07:23:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47223
IP address blocks: 91.106.24.0/23 maxlen: 23
91.106.26.0/23 maxlen: 23
91.106.30.0/23 maxlen: 23
94.240.0.0/24 maxlen: 24
94.240.1.0/24 maxlen: 24
94.240.2.0/24 maxlen: 24
94.240.3.0/24 maxlen: 24
94.240.7.0/24 maxlen: 24
94.240.23.0/24 maxlen: 24
94.240.32.0/21 maxlen: 21
94.240.34.0/24 maxlen: 24
94.240.40.0/24 maxlen: 24
94.240.42.0/24 maxlen: 24
94.240.44.0/22 maxlen: 22
94.240.46.0/24 maxlen: 24
94.240.48.0/22 maxlen: 22
94.240.48.0/24 maxlen: 24
94.240.50.0/24 maxlen: 24
94.240.62.0/23 maxlen: 23
94.240.63.0/24 maxlen: 24
185.139.16.0/22 maxlen: 22
194.152.46.0/23 maxlen: 23
2a01:6e80::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:47:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:2e:b4:53:2f:6d:e0:27:aa:d4:01:58:e6:4e:f9:78:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=351a2fd6f5e5af87d5cea095066fbcc3d3e546a4
Validity
Not Before: Nov 15 07:23:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4ab89bf66809b0741960affaeeb3afb57f491652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:99:7f:d6:e1:30:5a:f7:54:0c:d8:dc:60:16:
8b:fa:05:87:30:6f:7c:8c:7d:30:58:59:17:0e:4d:
ef:e1:83:d1:42:66:38:4a:8b:f4:14:ad:1c:5b:bb:
c9:76:f7:3e:cc:ab:48:a1:f5:81:a9:2d:94:63:4d:
9e:de:fe:df:fb:7d:ef:84:b1:c0:52:c7:be:9b:3a:
96:5e:a8:ef:93:01:dd:89:1f:f1:b6:91:bb:70:de:
67:09:07:58:6f:fe:58:83:92:fe:68:7d:61:c2:b9:
e2:2e:2e:cc:b6:a8:ed:1a:aa:78:eb:f0:34:a9:c9:
68:fe:9e:65:64:13:0e:e8:ac:52:25:53:14:9c:3f:
24:0b:ea:36:f0:26:73:62:34:84:79:9b:6b:69:06:
d5:8c:51:d7:fd:9f:92:3c:af:fc:7c:4a:7b:9a:11:
84:f2:a4:e3:37:09:e6:ae:3a:27:d1:d7:15:92:91:
d1:5d:1d:c8:70:e2:e8:53:e0:6f:c8:f0:80:9e:f0:
30:cd:da:8f:f7:95:a7:42:94:61:d1:68:e3:d2:b1:
4b:f0:48:4a:92:1e:03:57:b9:3f:30:c5:4f:d9:bb:
e2:b1:c0:54:52:12:19:aa:9b:f1:21:f8:41:4d:a1:
fa:d9:30:a5:c4:93:b1:6a:7f:5d:3a:d1:55:09:6f:
e8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B8:9B:F6:68:09:B0:74:19:60:AF:FA:EE:B3:AF:B5:7F:49:16:52
X509v3 Authority Key Identifier:
keyid:35:1A:2F:D6:F5:E5:AF:87:D5:CE:A0:95:06:6F:BC:C3:D3:E5:46:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRov1vXlr4fVzqCVBm-8w9PlRqQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/Srib9mgJsHQZYK_67rOvtX9JFlI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/cdddd5-817a-4113-8b82-23049e4d2f12/1/NRov1vXlr4fVzqCVBm-8w9PlRqQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.106.24.0/22
91.106.30.0/23
94.240.0.0/22
94.240.7.0/24
94.240.23.0/24
94.240.32.0-94.240.40.255
94.240.42.0/24
94.240.44.0-94.240.51.255
94.240.62.0/23
185.139.16.0/22
194.152.46.0/23
IPv6:
2a01:6e80::/32
Signature Algorithm: sha256WithRSAEncryption
74:69:ec:34:3b:db:03:a3:9f:c9:c8:4b:dd:8d:bc:cf:dc:25:
78:42:b6:41:9c:1f:2c:5a:6b:2f:2b:cd:96:3d:3d:38:89:7b:
fd:b6:28:bf:3c:f9:77:c9:5e:52:c0:9c:3e:03:e4:b4:b2:67:
0b:74:77:26:c6:d6:e8:16:a1:df:aa:5a:34:05:85:5e:81:69:
3a:08:61:5d:64:4f:e8:41:d1:ab:c9:01:14:f5:fa:a8:d6:30:
5d:14:6e:47:78:58:e2:76:40:0a:28:8e:73:95:4c:82:b8:08:
f7:2b:30:b1:35:a6:97:b8:05:c7:5e:11:a0:61:11:2a:92:b4:
fa:e9:ab:19:6a:12:81:dd:45:b5:91:27:fd:1f:6f:78:5c:b8:
cc:32:55:da:66:00:c2:6b:6b:bc:a5:98:29:b9:5c:fd:e4:e2:
f1:dc:4d:2e:50:ef:c8:d8:fe:18:95:a1:8a:36:f0:d7:c6:e0:
4a:94:67:ea:ee:a8:58:c5:80:3a:95:f9:cd:d5:6d:47:4a:34:
cb:c4:9f:21:7f:00:ce:4a:4f:9f:5f:52:9a:80:ff:9c:e6:08:
de:c8:1d:8f:3e:3f:26:5c:9b:39:80:ad:9a:8d:da:2e:65:15:
3c:14:ec:85:af:f0:57:17:8a:86:41:df:12:c0:d0:a9:9b:c3:
28:aa:db:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:50:45 2025 by rpki-client