Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/V226l57bjqpSEo7ifV6ysOLg3WQ.roa
File: V226l57bjqpSEo7ifV6ysOLg3WQ.roa (raw, json)
Hash identifier: AuaXOpmsz83FQFV8/n8Gk0gR41mDYf3HcGcPCJpSakU=
Subject key identifier: 57:6D:BA:97:9E:DB:8E:AA:52:12:8E:E2:7D:5E:B2:B0:E2:E0:DD:64
Certificate issuer: /CN=baaad08f36cfbc00053a5ee3d5abb7a3117c3f8a
Certificate serial: 018CC4244A410AE9551633A2EE8C99299109
Authority key identifier: BA:AA:D0:8F:36:CF:BC:00:05:3A:5E:E3:D5:AB:B7:A3:11:7C:3F:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqrQjzbPvAAFOl7j1au3oxF8P4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/V226l57bjqpSEo7ifV6ysOLg3WQ.roa
Signing time: Mon 01 Jan 2024 08:29:21 +0000
ROA not before: Mon 01 Jan 2024 08:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8220
IP address blocks: 195.78.50.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:4a:41:0a:e9:55:16:33:a2:ee:8c:99:29:91:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaad08f36cfbc00053a5ee3d5abb7a3117c3f8a
Validity
Not Before: Jan 1 08:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=576dba979edb8eaa52128ee27d5eb2b0e2e0dd64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:73:39:c5:4d:6f:77:a2:df:f5:bf:83:29:86:
1a:1a:ed:eb:26:e9:56:0a:c3:f4:b5:88:67:c2:43:
45:ab:30:e0:d7:a0:93:62:e9:03:21:9f:ac:f8:e5:
76:68:78:f2:ce:74:6a:5c:3e:3c:bf:1b:74:4a:ea:
99:c1:ee:b0:b9:1f:85:4a:3a:98:f7:b4:2a:38:dc:
0f:ba:77:ae:5f:22:21:fd:91:c6:21:6f:59:ce:6f:
6f:9a:04:df:ae:41:4c:e9:ac:a1:70:8d:37:df:ed:
76:4c:c2:69:a1:d8:f8:08:0f:78:75:3a:bb:1c:cf:
b7:d2:f0:9c:6d:d7:8c:57:92:f9:6c:c3:1d:4d:ff:
8b:f4:bb:48:68:40:79:97:d8:04:d6:e5:1a:6b:bd:
4d:09:e6:b5:7e:bb:51:63:c1:31:43:40:71:35:8a:
da:cb:f8:05:0b:ea:ff:3d:f4:35:31:69:48:50:71:
d4:a8:ef:0a:bf:c3:d3:fa:39:7c:7e:bb:9a:fa:e0:
c6:f1:39:fc:45:49:0c:0e:0c:6a:76:87:56:55:ce:
32:0f:dc:a8:b5:b3:dc:5b:ab:b6:68:e6:65:56:9d:
01:c7:c7:cc:eb:b4:a8:79:40:73:45:77:dd:c5:68:
0d:72:5d:8d:47:6d:34:e3:0e:7e:67:b2:59:a0:4b:
12:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:6D:BA:97:9E:DB:8E:AA:52:12:8E:E2:7D:5E:B2:B0:E2:E0:DD:64
X509v3 Authority Key Identifier:
keyid:BA:AA:D0:8F:36:CF:BC:00:05:3A:5E:E3:D5:AB:B7:A3:11:7C:3F:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqrQjzbPvAAFOl7j1au3oxF8P4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/V226l57bjqpSEo7ifV6ysOLg3WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/4edbe9-c5d2-41da-9c60-3d48da9b06a2/1/uqrQjzbPvAAFOl7j1au3oxF8P4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.78.50.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:fb:12:ce:12:31:d3:24:9e:42:7a:2a:d0:9e:7a:e2:53:b8:
43:e9:75:4d:57:73:57:af:74:d1:ef:9b:f6:68:97:65:18:c9:
fe:77:0e:16:79:47:24:6a:53:e3:4f:41:9d:d5:67:72:ab:8d:
1b:5a:4d:7a:28:25:d8:dc:a4:20:21:27:b8:e1:20:a6:0d:94:
aa:4d:a9:d9:dc:6a:bc:45:b2:b2:14:40:54:4c:f3:cd:51:a1:
34:83:f1:06:25:99:ea:c2:ab:0e:90:99:6e:ea:3c:8b:f1:d2:
7f:a6:75:bd:9e:c5:33:90:af:7b:76:58:40:12:8a:2f:4e:b5:
4c:97:be:36:f4:f7:8e:4a:e4:84:09:14:92:92:67:a6:ac:69:
fe:ee:5d:8c:6f:e5:9c:a6:cc:5f:d2:47:46:fc:45:f1:f4:bb:
bd:77:31:17:37:9d:d5:2d:ca:b3:fc:72:88:c3:eb:ee:b6:de:
7e:1c:8a:f5:22:5d:d5:28:14:3b:6e:54:34:3d:08:ea:61:86:
41:f2:14:b2:a3:e6:e4:26:06:28:10:34:a4:75:30:b0:0d:12:
8e:4c:92:2c:86:f1:f0:85:05:ca:8f:cd:af:de:c2:20:a5:43:
05:ca:c2:41:91:e0:ff:c1:57:4b:d1:21:22:65:0b:10:ab:e1:
7e:39:31:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:00:35 2025 by rpki-client