Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TPgjIjIolrvMQUmyL9Mo32JHKxo.roa
File: TPgjIjIolrvMQUmyL9Mo32JHKxo.roa (raw, json)
Hash identifier: 4fz+WmsmeOzuakEtBzI6Qv8UmOZoYT2PRYiaO+BRG5w=
Subject key identifier: 4C:F8:23:22:32:28:96:BB:CC:41:49:B2:2F:D3:28:DF:62:47:2B:1A
Certificate issuer: /CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Certificate serial: 0195279B4836058FCA1439B3196467376714
Authority key identifier: 7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TPgjIjIolrvMQUmyL9Mo32JHKxo.roa
Signing time: Fri 21 Feb 2025 08:24:02 +0000
ROA not before: Fri 21 Feb 2025 08:24:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20326
IP address blocks: 193.5.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 23 Feb 2025 10:46:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:27:9b:48:36:05:8f:ca:14:39:b3:19:64:67:37:67:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d559aafbfc0931242e1d637298cf1dd223e4c26
Validity
Not Before: Feb 21 08:24:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4cf82322322896bbcc4149b22fd328df62472b1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f2:7a:f0:52:b8:12:3b:25:b8:69:ac:70:0a:
a6:96:0f:15:4b:5d:19:80:08:24:74:4b:11:9d:bd:
b4:96:54:23:17:be:14:30:10:3b:0e:87:5d:2e:9c:
e1:6d:83:94:0a:d5:a8:53:17:cb:93:21:bb:01:b8:
e2:09:9a:ec:94:d8:3a:5f:fb:bc:17:35:a5:75:6d:
73:c6:54:ca:fe:b9:37:74:b5:66:bb:1f:a0:7a:b0:
c7:30:b9:04:f4:f7:47:0a:c9:79:28:c0:96:47:b7:
19:d8:fa:0b:5e:a4:be:4a:8e:6a:52:d8:ad:2d:34:
1a:57:84:ee:eb:14:af:d5:7a:c6:01:c5:35:33:82:
04:3e:41:d1:cd:fc:f0:ce:a9:c8:0b:21:3e:4c:69:
7e:33:e3:06:66:17:7e:cb:e2:3c:48:9d:69:fa:7d:
74:6d:e8:bc:9a:2b:d3:48:e2:b9:17:98:53:f3:4d:
12:19:e1:bf:5a:10:1a:fe:9a:3d:eb:89:a1:c3:bb:
7a:04:70:ba:59:4a:a6:53:d4:c0:72:cf:6b:61:25:
80:66:40:a7:7e:e4:61:2b:52:20:82:01:ca:e1:dc:
4a:32:b0:b7:84:b9:c8:aa:5f:f9:97:0e:f5:28:49:
7c:15:0d:29:c0:6e:75:26:1f:93:46:0b:4b:33:9f:
c0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:F8:23:22:32:28:96:BB:CC:41:49:B2:2F:D3:28:DF:62:47:2B:1A
X509v3 Authority Key Identifier:
keyid:7D:55:9A:AF:BF:C0:93:12:42:E1:D6:37:29:8C:F1:DD:22:3E:4C:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVWar7_AkxJC4dY3KYzx3SI-TCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/TPgjIjIolrvMQUmyL9Mo32JHKxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/49adc6-ba89-403f-ada9-8c5007c2a4b6/1/fVWar7_AkxJC4dY3KYzx3SI-TCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.5.251.0/24
Signature Algorithm: sha256WithRSAEncryption
57:78:46:2d:b1:db:74:69:bf:14:38:c3:1a:9e:2a:7e:ea:a2:
60:99:fe:e0:03:94:06:97:bc:8f:55:e3:e0:e2:de:dd:4b:03:
0b:f1:a7:08:eb:11:c4:b8:40:33:41:cc:f8:3a:6a:7c:58:1a:
97:22:74:37:e4:95:47:8f:b7:b2:ba:67:44:a3:ee:64:fc:9d:
6b:30:b3:da:50:24:e2:b0:f1:f4:48:4f:68:b7:33:11:1e:13:
31:a3:16:99:a2:a6:31:8d:e5:94:36:44:c5:3f:d0:ed:96:4a:
e0:23:86:68:17:0e:10:06:9d:59:0f:14:c3:59:32:08:9e:56:
47:5c:2d:74:fe:0c:56:99:2f:be:b6:57:60:5e:24:c9:12:c2:
36:fc:8f:9b:9c:ef:bb:dd:38:62:26:db:09:2a:d9:16:41:0f:
62:bf:5f:9d:10:5f:42:06:49:b5:88:2b:79:a9:97:09:07:f1:
48:fa:fe:cd:0b:01:d7:3a:62:6c:df:67:f5:6f:00:b0:57:e8:
35:2b:0e:c5:2d:4b:96:f4:80:dc:bd:65:96:f6:bd:dd:ba:a8:
87:de:b6:cd:a1:0f:44:f2:51:df:65:5f:9b:68:0f:10:54:24:
6a:ca:61:88:a6:35:1c:de:21:87:f8:45:c2:d3:18:f8:7c:25:
22:ca:c1:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:42:08 2025 by rpki-client