Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/vKOrdxQFVD8Fv5XTcccJP0B6pEU.roa
File: vKOrdxQFVD8Fv5XTcccJP0B6pEU.roa (raw, json)
Hash identifier: YPXKbpq2o70sbPC0WKYgqVtXVxaC5QDYU+ty+GKgxgE=
Subject key identifier: BC:A3:AB:77:14:05:54:3F:05:BF:95:D3:71:C7:09:3F:40:7A:A4:45
Certificate issuer: /CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Certificate serial: 019392AC0FD9E00FD6A6F02196799B159F20
Authority key identifier: 1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/vKOrdxQFVD8Fv5XTcccJP0B6pEU.roa
Signing time: Wed 04 Dec 2024 17:16:10 +0000
ROA not before: Wed 04 Dec 2024 17:16:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 135391
IP address blocks: 194.59.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:48:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:92:ac:0f:d9:e0:0f:d6:a6:f0:21:96:79:9b:15:9f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c7ad7754795ddd605f28838bb7cc359df7a266a
Validity
Not Before: Dec 4 17:16:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bca3ab771405543f05bf95d371c7093f407aa445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4d:6f:3c:c8:6e:6c:fa:9f:5e:68:7a:d3:67:
c3:20:d2:2f:83:09:c4:6c:76:20:5e:e6:7c:62:90:
1b:6b:88:0f:70:7b:9f:f0:c1:7a:6c:ff:ee:b7:cd:
39:b9:6c:83:b0:ce:b0:f5:50:ab:eb:58:29:ff:f4:
af:fa:04:e3:40:47:61:49:d7:a8:e4:4e:1d:8c:88:
a1:84:04:5c:0f:9d:1d:20:b5:be:b7:27:03:b5:47:
92:4d:4b:a4:07:c7:14:16:4c:ee:c8:29:32:d0:33:
f6:a1:fa:74:f7:a5:29:3a:47:02:cd:5a:b7:57:be:
57:79:0b:4c:1d:40:ce:e1:df:c4:72:49:dc:27:66:
90:73:35:2a:f6:b3:b0:55:9b:f0:9d:24:ce:82:1c:
1d:e2:c9:c1:dc:33:e0:d8:c2:aa:4e:0e:6f:56:07:
99:a2:03:39:16:5a:82:24:58:21:38:cc:2a:f8:a3:
ad:80:bf:56:30:f8:17:ae:f3:b7:db:70:50:7b:4c:
c7:4f:b8:26:1e:c2:20:87:f7:0a:cf:c0:83:71:ef:
9e:25:1a:7b:e5:ea:f7:ba:b3:45:8c:73:19:46:fd:
2a:13:c6:32:92:3f:12:ce:64:bb:a9:c5:eb:16:7d:
d5:d9:c9:b2:22:31:7d:8a:7c:37:a9:3d:e3:ac:74:
f7:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:A3:AB:77:14:05:54:3F:05:BF:95:D3:71:C7:09:3F:40:7A:A4:45
X509v3 Authority Key Identifier:
keyid:1C:7A:D7:75:47:95:DD:D6:05:F2:88:38:BB:7C:C3:59:DF:7A:26:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HHrXdUeV3dYF8og4u3zDWd96Jmo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/vKOrdxQFVD8Fv5XTcccJP0B6pEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/c5a9e3-6722-4b6a-be58-ada5c20e3f7b/1/HHrXdUeV3dYF8og4u3zDWd96Jmo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.6.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c1:3b:f3:5f:cc:4f:58:f1:c2:34:45:9a:ca:d0:5e:59:76:
ee:f8:76:92:97:e5:d8:52:72:4e:3d:e8:17:7c:0d:e9:f0:f5:
d8:31:2e:67:e3:06:b9:a2:62:eb:33:14:89:16:af:7e:f6:f3:
1c:c8:26:20:9f:86:14:61:e8:f8:04:99:7a:c0:e4:0b:70:fe:
32:ea:01:fe:d0:a4:17:e3:e8:ba:84:ae:88:f5:49:56:cd:80:
cc:d9:8f:4d:e1:da:f7:ff:27:40:ec:6f:41:ce:0f:28:89:2f:
04:e3:ba:3a:11:96:5a:55:74:09:26:cc:36:c7:5b:d4:08:fc:
e2:04:7d:d2:7f:ab:64:ae:54:ca:5b:45:b7:c1:f0:75:fc:bc:
c7:c1:7a:0f:66:3e:30:13:a2:ad:3c:27:1a:61:d4:d6:63:0b:
1a:32:ac:02:53:41:de:5e:fa:e3:ab:78:6c:f9:93:80:c8:e5:
14:4f:a5:4b:b5:9c:24:bf:62:15:1f:c7:11:db:40:90:d0:b7:
c6:a8:50:14:cb:aa:74:21:ab:80:fa:6a:7e:c5:ae:ac:5f:d6:
de:4c:ae:31:1e:ee:44:9d:e3:a8:60:3d:f0:62:f4:5f:47:f6:
6d:dd:d8:52:61:ed:54:b0:61:b5:f9:f7:47:82:1f:89:10:d5:
d8:eb:a6:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:22 2025 by rpki-client