Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/717221-1d03-4d13-9049-401bda4477b5/1/k0cl4HzBz2P4OkrXUVRzYE2-oxE.roa
File: k0cl4HzBz2P4OkrXUVRzYE2-oxE.roa (raw, json)
Hash identifier: t0QTsTC+0gkZbKqLdGsKjmaFkSH7+hLFcXJP2UH21CA=
Subject key identifier: 93:47:25:E0:7C:C1:CF:63:F8:3A:4A:D7:51:54:73:60:4D:BE:A3:11
Certificate issuer: /CN=97024ffc4927bfe35289435d9d0280420b8ecdcb
Certificate serial: 0192BF77E2FF47BDE1C3FB8A1E3E2AA9E762
Authority key identifier: 97:02:4F:FC:49:27:BF:E3:52:89:43:5D:9D:02:80:42:0B:8E:CD:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lwJP_Eknv-NSiUNdnQKAQguOzcs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/717221-1d03-4d13-9049-401bda4477b5/1/k0cl4HzBz2P4OkrXUVRzYE2-oxE.roa
Signing time: Thu 24 Oct 2024 16:59:18 +0000
ROA not before: Thu 24 Oct 2024 16:59:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210186
IP address blocks: 194.53.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:bf:77:e2:ff:47:bd:e1:c3:fb:8a:1e:3e:2a:a9:e7:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97024ffc4927bfe35289435d9d0280420b8ecdcb
Validity
Not Before: Oct 24 16:59:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=934725e07cc1cf63f83a4ad7515473604dbea311
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fb:e1:76:74:3b:51:2c:a0:1f:5c:bb:3f:65:
19:28:53:90:3e:41:12:0b:c3:7c:dd:13:e3:fb:54:
cd:87:d2:60:15:ef:78:e2:d0:aa:f7:1a:aa:65:ad:
55:4d:6c:fe:3e:d1:53:04:4f:02:6c:18:86:05:12:
eb:e0:ed:a0:0d:9b:a5:b3:68:88:17:6e:97:a1:ec:
81:cc:61:aa:57:c7:aa:43:6a:4e:a5:bb:15:82:33:
d0:25:d4:91:c9:e2:8e:b9:bc:03:78:5f:c3:99:80:
df:a1:f0:1c:ea:7e:97:e3:4d:6c:02:fd:42:1d:41:
4d:8f:cc:00:ec:56:a3:9b:3d:57:35:75:78:f5:10:
3f:6b:a6:83:4b:59:6e:9a:76:ea:85:52:af:82:f7:
85:d1:87:51:ef:92:c8:31:18:e1:2b:91:bc:82:85:
e9:64:b6:84:04:9f:67:79:18:aa:e3:1e:ff:4f:aa:
fb:a9:ec:30:d8:40:8c:fd:40:a4:ba:3e:61:20:0f:
c5:4b:88:b3:28:c3:f7:7d:99:cc:20:b1:de:ef:94:
0d:ac:22:d7:52:02:84:16:77:12:0e:8e:51:1a:25:
3e:16:c9:99:a4:04:cd:a5:03:ab:8b:76:49:82:24:
3f:6e:d1:3f:d3:1a:5f:96:42:4c:9a:c1:36:10:7f:
38:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:47:25:E0:7C:C1:CF:63:F8:3A:4A:D7:51:54:73:60:4D:BE:A3:11
X509v3 Authority Key Identifier:
keyid:97:02:4F:FC:49:27:BF:E3:52:89:43:5D:9D:02:80:42:0B:8E:CD:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lwJP_Eknv-NSiUNdnQKAQguOzcs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/717221-1d03-4d13-9049-401bda4477b5/1/k0cl4HzBz2P4OkrXUVRzYE2-oxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/717221-1d03-4d13-9049-401bda4477b5/1/lwJP_Eknv-NSiUNdnQKAQguOzcs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.53.196.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:65:53:de:3a:bb:0f:8f:98:e6:37:54:ca:d9:bb:c7:7b:1d:
09:6e:75:70:86:10:1b:31:4b:30:c1:c9:3d:8c:f8:ab:d8:f0:
70:5f:83:74:35:d3:2e:77:b3:f6:ac:95:17:d1:1b:fc:44:01:
d5:26:98:ef:7d:c8:d3:30:57:6d:6d:35:8c:7a:0b:59:1b:75:
c1:a0:9e:ca:4a:13:4f:cc:f2:2b:bc:ca:43:fa:f7:2c:b1:fc:
3a:9d:f2:fe:84:e3:a5:da:ca:cb:87:de:6d:e2:fc:63:f2:15:
8c:a2:e9:69:23:80:7e:38:06:da:eb:e7:8e:ef:12:d8:4e:6c:
84:c0:65:0a:b4:74:34:be:73:ca:13:71:23:b2:19:12:c0:1b:
9f:9c:fd:54:0f:fa:fb:a0:9d:7a:57:ec:8f:d6:80:13:9c:44:
2f:c1:01:7f:37:22:9e:d6:90:66:7b:53:12:b3:b0:44:a8:be:
27:ec:3e:91:28:c9:9d:70:a6:40:06:bc:8c:c2:0f:c7:47:ab:
bb:d1:20:1c:d4:c2:b1:f3:8e:73:cc:58:6e:38:83:7d:60:60:
88:cd:6c:10:56:b0:bc:de:32:af:1d:a0:fd:c5:f4:73:a4:63:
35:31:02:76:14:45:50:03:72:e7:72:41:3e:81:e3:bb:ae:be:
1a:09:1e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:19 2025 by rpki-client