Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/0dAoYhtKQ0wAuyU-5CvI3zsLrmM.roa
File: 0dAoYhtKQ0wAuyU-5CvI3zsLrmM.roa (raw, json)
Hash identifier: EMK0YYmQbA1Yx9IM6LWo0A8/0eMZ9SbjD9VbI2hJMgY=
Subject key identifier: D1:D0:28:62:1B:4A:43:4C:00:BB:25:3E:E4:2B:C8:DF:3B:0B:AE:63
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 01927D6CC11B56CA2312B0B246AE24C0519C
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/0dAoYhtKQ0wAuyU-5CvI3zsLrmM.roa
Signing time: Fri 11 Oct 2024 21:12:12 +0000
ROA not before: Fri 11 Oct 2024 21:12:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11798
IP address blocks: 150.241.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Mon 14 Oct 2024 20:25:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:7d:6c:c1:1b:56:ca:23:12:b0:b2:46:ae:24:c0:51:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Oct 11 21:12:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1d028621b4a434c00bb253ee42bc8df3b0bae63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:9c:18:57:d4:33:81:aa:2c:66:6b:df:d4:e2:
39:10:a1:ae:1b:46:e8:1a:c1:6a:72:4c:73:76:5c:
73:df:1f:4f:cc:bf:c0:03:21:d5:45:32:44:f4:74:
3a:e3:c4:d3:de:1a:e4:93:7f:39:2b:f9:da:a2:70:
96:11:fe:57:06:b9:6b:53:56:d1:8d:05:be:92:3a:
c0:16:ec:ca:4a:bd:48:11:7d:81:6d:dc:11:cf:88:
99:63:a8:03:32:68:36:2e:ee:84:1c:11:64:79:5d:
3c:57:5a:8d:06:01:f4:36:22:aa:f7:9e:5c:4f:85:
6b:2d:60:36:77:ed:cc:ce:fe:3e:f3:a8:07:2c:ac:
d0:a8:60:43:8a:2b:ec:a6:57:6c:ca:a3:be:8a:1d:
8c:af:85:cf:2a:42:8f:20:84:8e:c4:35:61:53:ab:
f4:1a:4e:f9:77:1c:b4:88:02:31:51:7d:92:bb:4f:
8b:21:40:1a:0d:76:aa:57:98:39:da:9c:4a:cc:ac:
05:bf:b5:22:1c:6e:68:18:fb:97:67:a2:34:87:1c:
3b:c3:5f:6c:a1:93:ab:35:3c:1a:0a:e7:f2:b1:da:
f5:05:0a:38:66:7a:3f:98:3e:57:ad:92:3c:e1:f2:
11:55:09:2a:fc:ca:d9:49:08:1e:2d:03:93:10:80:
e8:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D0:28:62:1B:4A:43:4C:00:BB:25:3E:E4:2B:C8:DF:3B:0B:AE:63
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/0dAoYhtKQ0wAuyU-5CvI3zsLrmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.64.0/18
Signature Algorithm: sha256WithRSAEncryption
5f:59:33:2c:60:e8:27:cd:36:6e:8a:de:ad:d2:4b:6c:7d:8d:
52:83:95:4f:b5:ec:25:0a:82:67:63:95:8e:f3:85:26:75:cf:
ba:84:b0:68:76:39:4c:7c:78:e8:c9:65:f6:96:3a:65:dd:fe:
53:24:83:4a:da:7b:95:b6:f5:54:80:02:7a:8e:f7:bb:66:aa:
59:cc:0a:cf:5a:86:07:1f:66:25:32:ea:1b:95:c1:a8:2c:4b:
22:2f:25:a1:44:ab:33:93:60:8b:f1:03:33:1a:d5:7f:88:8b:
3f:b6:e4:64:c7:1b:21:2b:73:e1:5a:1a:02:6c:d6:49:c0:5d:
6b:40:11:96:f9:38:77:e6:27:0a:5f:3f:10:1b:ae:ee:8f:f3:
d9:33:f5:bd:db:4f:d1:cf:bc:21:6b:1f:72:2d:40:36:7b:b1:
9d:7b:ab:39:2c:96:d7:34:6d:69:20:0c:28:95:73:bf:2f:2c:
0d:7f:15:60:19:27:b1:c3:2d:70:0b:87:2a:08:08:8c:08:71:
2d:7a:e8:b6:5a:99:73:21:66:8a:7b:d8:58:75:76:cc:b4:68:
85:29:74:bb:6e:94:13:f2:6c:3a:44:bb:60:7b:e1:92:fa:90:
67:c2:c3:25:18:0f:b9:60:11:57:60:0b:17:4e:ba:99:4e:b5:
c9:6f:61:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:41 2025 by rpki-client