Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/4ogeX_BwG0hQP2tJkBYqdRQC7ts.roa
File: 4ogeX_BwG0hQP2tJkBYqdRQC7ts.roa (raw, json)
Hash identifier: afm0OsbR6V3w2R35JFvOCfHaSRw9MWCh7/kH5NBybM0=
Subject key identifier: E2:88:1E:5F:F0:70:1B:48:50:3F:6B:49:90:16:2A:75:14:02:EE:DB
Certificate issuer: /CN=3026806a6b8dac68c2a32b65849229524fc33da7
Certificate serial: 01934BA3DB7A18A0EB539A77C9AA75BD0257
Authority key identifier: 30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/4ogeX_BwG0hQP2tJkBYqdRQC7ts.roa
Signing time: Wed 20 Nov 2024 22:14:09 +0000
ROA not before: Wed 20 Nov 2024 22:14:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47536
IP address blocks: 193.105.29.0/24 maxlen: 24
2001:678:964::/48 maxlen: 48
2001:678:a00::/48 maxlen: 48
2a12:79c0:100::/48 maxlen: 48
2a12:79c2::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 24 Nov 2024 17:07:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:4b:a3:db:7a:18:a0:eb:53:9a:77:c9:aa:75:bd:02:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3026806a6b8dac68c2a32b65849229524fc33da7
Validity
Not Before: Nov 20 22:14:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e2881e5ff0701b48503f6b4990162a751402eedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:71:d0:37:4e:f7:94:5d:ca:ec:b0:69:2c:1b:
f2:ec:88:bb:c0:6c:8f:f8:7b:47:dc:69:78:15:1c:
1a:be:f9:b0:ee:0f:a8:e8:dc:c6:c3:e0:6c:c6:dd:
8a:2d:28:f2:76:0c:d5:5e:e9:0a:27:db:9b:88:15:
f3:e7:94:8c:0d:94:f8:34:e7:e0:eb:af:77:01:a0:
b3:95:a0:43:20:23:92:1e:6c:4e:0a:27:90:32:9e:
98:84:d9:39:8f:08:f7:33:af:ed:9b:30:2e:e1:e6:
1f:22:d4:40:60:d7:40:73:c3:ba:a2:a3:ae:ce:ef:
02:5b:a4:7c:df:ad:4e:a1:ce:2f:dc:56:2d:31:6d:
c4:1b:fb:79:da:b2:66:4f:13:1f:7c:97:6b:44:08:
d1:ec:7c:6d:2e:7c:94:b6:19:e8:3c:64:d8:b6:cc:
fb:da:12:78:37:fa:a3:02:f6:71:1e:c8:bd:6f:9e:
d6:71:32:eb:ad:0e:0b:c3:e6:ee:46:5b:77:cf:20:
8b:22:3b:49:bd:79:27:60:a5:42:f6:1b:b4:e3:b4:
16:43:47:2c:67:c3:ae:09:00:1b:46:ed:1f:ea:67:
b7:cb:b7:04:63:50:3f:0f:e2:ad:1c:85:b5:9f:c0:
35:77:a7:f8:03:8c:07:bf:3e:79:27:3e:c6:b8:20:
0d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:88:1E:5F:F0:70:1B:48:50:3F:6B:49:90:16:2A:75:14:02:EE:DB
X509v3 Authority Key Identifier:
keyid:30:26:80:6A:6B:8D:AC:68:C2:A3:2B:65:84:92:29:52:4F:C3:3D:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MCaAamuNrGjCoytlhJIpUk_DPac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/4ogeX_BwG0hQP2tJkBYqdRQC7ts.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9dca0e-a41b-4972-bbb5-08e2b1017927/1/MCaAamuNrGjCoytlhJIpUk_DPac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.105.29.0/24
IPv6:
2001:678:964::/48
2001:678:a00::/48
2a12:79c0:100::/48
2a12:79c2::/32
Signature Algorithm: sha256WithRSAEncryption
5d:a1:ea:37:56:9b:3d:17:78:b9:05:a4:32:ef:55:63:b4:de:
f7:59:ad:f2:57:1c:e1:27:d4:41:71:35:5a:7c:3d:a6:b8:f1:
84:1e:2e:e4:46:d7:dd:38:5b:da:ac:a3:00:c6:45:ff:74:e0:
a6:e9:f8:78:d6:9a:46:4a:f7:be:f6:80:f1:b5:c3:9f:b1:26:
6d:83:70:ca:a0:43:8a:0f:e8:1a:24:d9:1e:7a:8a:5c:53:09:
f5:8a:07:72:5b:c1:73:86:1a:79:75:22:fc:e4:db:a1:b0:88:
15:c1:c5:8b:05:19:5e:10:f4:33:d6:d7:64:5e:5e:ac:4f:4e:
36:81:9b:10:7d:14:17:96:32:47:6f:11:9a:a5:0f:78:3c:88:
cb:64:73:47:83:3a:92:d4:f1:f7:a5:80:8e:45:68:88:23:48:
66:05:f8:d2:d1:02:f2:d6:36:3e:21:74:b8:73:45:8f:9b:ae:
1f:ba:67:b8:4c:69:05:48:9a:6e:dd:64:79:a8:71:e3:60:a8:
78:23:16:34:37:93:57:1b:78:86:54:5a:d0:69:67:bd:be:66:
40:d0:79:fd:d1:87:a4:85:e2:94:48:7b:25:f9:11:83:fd:67:
05:e5:5c:bf:cc:b8:51:17:bf:5e:2f:88:73:27:29:c8:f7:d1:
f5:59:a6:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:18:19 2025 by rpki-client