Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/atjdJYkz3bUpbHruKvIhFKZanjo.roa
File: atjdJYkz3bUpbHruKvIhFKZanjo.roa (raw, json)
Hash identifier: abpSPi2ZdgzW4fyJiVwaxIAQq5A7OYHGIpuu6BqK6a8=
Subject key identifier: 6A:D8:DD:25:89:33:DD:B5:29:6C:7A:EE:2A:F2:21:14:A6:5A:9E:3A
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 019200F721519C6FDF6981F2224263191A52
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/atjdJYkz3bUpbHruKvIhFKZanjo.roa
Signing time: Tue 17 Sep 2024 17:10:48 +0000
ROA not before: Tue 17 Sep 2024 17:10:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11798
IP address blocks: 150.241.64.0/18 maxlen: 18
185.176.94.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 20 Sep 2024 14:57:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:00:f7:21:51:9c:6f:df:69:81:f2:22:42:63:19:1a:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Sep 17 17:10:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6ad8dd258933ddb5296c7aee2af22114a65a9e3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:34:ae:44:91:59:8f:5b:02:75:89:c6:c8:4a:
1a:61:d2:55:a2:85:27:c1:d6:0a:1e:77:4c:90:ca:
25:2f:10:43:2d:e3:16:1c:b3:c0:7a:d5:ef:7f:fe:
2d:e1:7c:81:65:d2:19:95:2a:f2:df:05:02:59:97:
84:c1:f0:b7:0a:28:53:1c:0a:9c:19:ad:68:ec:65:
a4:f5:a8:8b:0c:13:f0:30:e9:50:7a:af:1d:a7:01:
f3:a9:5c:32:21:39:8b:80:71:48:fb:b8:ad:ee:43:
73:e0:72:25:59:93:03:70:a8:2d:37:af:13:8e:4f:
89:e1:f2:b1:0f:e3:64:aa:35:67:94:d0:d1:09:3c:
b5:35:fc:99:ae:ba:87:16:1a:3e:22:8b:2e:86:12:
69:da:10:8a:83:35:8e:b2:07:11:eb:3b:7d:25:83:
2a:77:aa:11:23:be:60:d5:a0:74:8a:2a:44:d8:f0:
01:2f:95:06:66:fa:1d:31:10:5f:39:9c:be:2e:6f:
d0:61:11:f2:53:3a:53:c4:69:fc:da:c2:2a:e9:2e:
1e:e0:e4:ea:0f:7d:35:7b:74:6f:af:73:b2:11:44:
0b:c6:cf:51:1c:95:21:a5:86:5a:88:cf:b1:a6:7c:
6d:46:9e:5a:ee:1f:5f:78:cf:0a:9e:52:27:33:ae:
16:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D8:DD:25:89:33:DD:B5:29:6C:7A:EE:2A:F2:21:14:A6:5A:9E:3A
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/atjdJYkz3bUpbHruKvIhFKZanjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.64.0/18
185.176.94.0/24
Signature Algorithm: sha256WithRSAEncryption
37:68:c0:c2:58:ab:2e:1b:3a:21:37:bf:50:11:c3:fe:0a:e0:
9d:6e:a9:24:64:ea:85:c5:df:5c:b4:b6:99:92:37:c7:ae:3d:
5b:85:5c:1e:f6:99:1d:0b:d8:6d:e3:23:17:75:5d:47:0d:bf:
41:6f:5b:32:5d:2a:7b:75:33:c2:fc:19:92:91:f8:70:7b:e2:
04:17:70:03:63:15:63:41:15:75:5b:6f:cd:c7:2c:85:a1:72:
f9:ba:5d:17:3e:31:1e:8b:99:7b:94:f7:9d:54:1e:d4:15:a6:
c4:3f:a3:e7:41:04:b6:b7:90:4d:52:3f:bd:91:f2:85:23:95:
4a:84:d6:23:23:e9:c6:d1:b3:67:05:6b:23:0d:e9:e9:59:d0:
4d:60:19:74:a5:3d:97:65:b6:78:5c:98:17:6a:a9:da:73:1e:
f5:a3:78:59:e7:f1:76:40:34:c1:97:67:6c:34:a1:24:77:ab:
4c:7a:58:36:8c:93:90:57:76:d3:e3:00:35:1e:e3:eb:19:b0:
92:82:df:7b:cf:2c:81:3c:1c:4e:01:ad:85:39:3c:ff:19:ec:
ed:fb:e8:2f:69:6b:c8:37:f3:07:81:69:87:69:17:9c:dd:7d:
2d:29:55:9d:02:d9:87:34:21:bd:b6:12:59:fa:24:f8:53:ea:
60:b1:fc:e7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAZIA9yFRnG/faYHyIkJjGRpSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjOTYzZTNkMjI4NDdkNDY2YzI2MmMyMDg3OGMyNzgwZDg4
NDAwMDMwHhcNMjQwOTE3MTcxMDQ4WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2YWQ4ZGQyNTg5MzNkZGI1Mjk2YzdhZWUyYWYyMjExNGE2NWE5ZTNhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTSuRJFZj1sCdYnGyEoaYdJVooUn
wdYKHndMkMolLxBDLeMWHLPAetXvf/4t4XyBZdIZlSry3wUCWZeEwfC3CihTHAqc
Ga1o7GWk9aiLDBPwMOlQeq8dpwHzqVwyITmLgHFI+7it7kNz4HIlWZMDcKgtN68T
jk+J4fKxD+NkqjVnlNDRCTy1NfyZrrqHFho+IosuhhJp2hCKgzWOsgcR6zt9JYMq
d6oRI75g1aB0iipE2PABL5UGZvodMRBfOZy+Lm/QYRHyUzpTxGn82sIq6S4e4OTq
D301e3Rvr3OyEUQLxs9RHJUhpYZaiM+xpnxtRp5a7h9feM8KnlInM64WMQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFGrY3SWJM921KWx67iryIRSmWp46MB8GA1UdIwQY
MBaAFByWPj0ihH1GbCYsIIeMJ4DYhAADMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQt
MTQzOTY3YThmZTA4LzEvYXRqZEpZa3ozYlVwYkhydUt2SWhGS1phbmpvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMy8zOGYxMjgtZWE4Mi00NTU1LWI1MTQtMTQzOTY3YThmZTA4
LzEvSEpZLVBTS0VmVVpzSml3Z2g0d25nTmlFQUFNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQGlvFAAwQA
ubBeMA0GCSqGSIb3DQEBCwUAA4IBAQA3aMDCWKsuGzohN79QEcP+CuCdbqkkZOqF
xd9ctLaZkjfHrj1bhVwe9pkdC9ht4yMXdV1HDb9Bb1syXSp7dTPC/BmSkfhwe+IE
F3ADYxVjQRV1W2/NxyyFoXL5ul0XPjEei5l7lPedVB7UFabEP6PnQQS2t5BNUj+9
kfKFI5VKhNYjI+nG0bNnBWsjDenpWdBNYBl0pT2XZbZ4XJgXaqnacx71o3hZ5/F2
QDTBl2dsNKEkd6tMelg2jJOQV3bT4wA1HuPrGbCSgt97zyyBPBxOAa2FOTz/Gezt
++gvaWvIN/MHgWmHaRec3X0tKVWdAtmHNCG9thJZ+iT4U+pgsfzn
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:16:30 2025 by rpki-client