Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/RxLkL94N4oAZ_uNuWn-lI_vjVvM.roa
File: RxLkL94N4oAZ_uNuWn-lI_vjVvM.roa (raw, json)
Hash identifier: BPSTBmbkZVL9OPtjFeLZ//sBLb2PWfIBrc1JxouFtqI=
Subject key identifier: 47:12:E4:2F:DE:0D:E2:80:19:FE:E3:6E:5A:7F:A5:23:FB:E3:56:F3
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 0192FDD66DC46B1D0C1B88C7B9FD160075CD
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/RxLkL94N4oAZ_uNuWn-lI_vjVvM.roa
Signing time: Tue 05 Nov 2024 19:39:01 +0000
ROA not before: Tue 05 Nov 2024 19:39:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 150.241.121.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fd:d6:6d:c4:6b:1d:0c:1b:88:c7:b9:fd:16:00:75:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Nov 5 19:39:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4712e42fde0de28019fee36e5a7fa523fbe356f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:9a:3f:20:c6:55:ae:08:c5:2d:1c:22:e0:a4:
06:ec:45:88:c8:5c:36:7a:fb:86:37:36:a7:f4:a8:
00:c1:0f:e5:35:0f:5a:fa:36:a2:e1:bd:40:35:de:
e3:61:2e:74:db:f2:ad:be:73:8b:4d:83:7d:df:ed:
3f:f8:32:82:34:82:bc:2b:7b:eb:c6:cf:6d:a1:76:
60:b7:bb:b0:d0:b7:a6:27:9a:19:af:e4:47:9d:70:
5a:0d:d2:e7:06:3a:31:22:ce:14:21:9c:86:bc:fd:
60:b0:bf:b3:aa:22:34:f5:c2:a4:c9:48:82:5e:55:
c9:51:7d:c8:20:9d:e4:f2:2f:70:63:19:ad:9b:d4:
c1:c5:d7:db:9a:06:dd:50:68:dd:25:d5:cc:91:29:
ac:2f:87:ef:55:8b:7d:24:b1:19:4b:ce:10:90:4a:
2c:ff:37:7a:35:33:c9:d0:79:fc:1b:69:d8:46:a4:
6d:93:7a:3e:ef:58:d7:0e:c1:b5:89:83:9a:ab:bd:
2c:42:64:f7:90:d7:30:c3:84:e0:9a:f9:27:44:78:
59:01:09:b1:b4:ed:d5:df:c1:e9:74:0d:13:11:5b:
f4:39:8e:ba:4c:83:c4:ee:40:e5:5a:75:b0:c0:14:
9b:2b:40:5c:48:1d:24:8b:7b:ad:ac:30:66:99:61:
8c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:12:E4:2F:DE:0D:E2:80:19:FE:E3:6E:5A:7F:A5:23:FB:E3:56:F3
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/RxLkL94N4oAZ_uNuWn-lI_vjVvM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.121.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:20:59:ed:79:f9:2a:f2:15:79:4b:12:4b:34:06:8e:0e:5e:
26:2e:e7:f5:e7:b8:a2:01:1e:a5:17:7c:96:60:3b:58:36:72:
b4:10:ed:b4:ef:99:ab:6d:ea:ee:e1:f8:9c:19:f7:91:d4:aa:
17:c2:4a:39:17:06:19:29:6b:ee:dd:91:12:c5:16:bc:7a:2a:
79:a6:cf:19:cb:05:1b:d0:5f:36:94:a0:9a:31:ba:d7:d9:98:
b6:d0:9d:4b:d8:0b:d4:6b:6e:b9:97:bf:2a:4e:7c:f6:4c:57:
5d:22:1a:a0:53:84:24:19:d0:12:18:91:84:76:92:c9:d0:b6:
fc:49:11:88:17:fe:82:1b:f9:d7:5b:3e:d8:30:83:5e:02:a2:
ca:50:42:4e:98:b3:87:5e:8f:d2:cd:f0:37:ed:cd:ff:d9:2a:
84:38:36:43:4e:cd:65:db:6d:5b:91:15:06:d9:ca:6f:1f:10:
2e:ba:64:3f:01:21:2d:fc:3f:da:27:44:f4:93:ab:32:e0:2e:
07:a1:5f:c3:12:c5:b1:b0:a0:6f:7a:a4:02:f0:45:10:ec:ad:
c7:c9:53:3c:32:d5:f3:8c:d0:4a:3b:58:fe:7a:3b:31:f1:bc:
1e:8f:e7:f6:ed:03:40:95:88:09:b3:37:97:4f:6c:37:0a:8e:
bd:54:29:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:18:04 2025 by rpki-client