Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ayknDxlTyT87XI89Txx5f5jQh8w.roa
File: ayknDxlTyT87XI89Txx5f5jQh8w.roa (raw, json)
Hash identifier: Nv9qf8zeiVrJkogWlB+S76btLwZzfTIrRYSne2MYz8Y=
Subject key identifier: 6B:29:27:0F:19:53:C9:3F:3B:5C:8F:3D:4F:1C:79:7F:98:D0:87:CC
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 0192B23E404CB29A911AC75EA671781A862C
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ayknDxlTyT87XI89Txx5f5jQh8w.roa
Signing time: Tue 22 Oct 2024 03:21:17 +0000
ROA not before: Tue 22 Oct 2024 03:21:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214046
IP address blocks: 150.241.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 09 Nov 2024 17:22:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b2:3e:40:4c:b2:9a:91:1a:c7:5e:a6:71:78:1a:86:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Oct 22 03:21:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b29270f1953c93f3b5c8f3d4f1c797f98d087cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a3:5b:54:86:a6:b6:fa:5c:d4:01:59:a6:ba:
08:43:30:71:6c:76:2e:e8:e1:2d:31:64:cd:13:12:
7e:d2:60:68:60:e4:73:91:d3:63:d9:19:66:c1:79:
61:eb:78:7d:ee:bc:16:15:b0:20:b6:80:36:fe:90:
c0:d2:a7:81:bc:97:17:07:b9:f9:34:87:db:87:50:
b1:d2:59:77:08:4c:3d:ba:2f:e7:19:6c:93:87:3a:
75:79:05:34:a0:ed:84:2e:11:df:6b:12:7f:01:b4:
d8:03:66:c6:f3:4d:c9:ce:ab:4e:d4:13:b9:89:8d:
c7:c3:95:9e:25:c6:99:64:d5:1c:13:fc:a1:99:78:
c1:5b:fb:3b:39:c4:5a:32:d4:c7:1f:d6:0f:79:04:
5d:48:18:0b:35:17:bd:8d:e6:3e:cc:cc:c9:90:b4:
85:1f:ee:00:4d:69:8a:53:93:1a:3f:d2:73:aa:1e:
15:9f:bb:08:76:56:1a:ec:6d:ca:fc:95:f1:e9:93:
c8:57:ee:5b:e9:07:82:a4:43:ad:ce:fb:9f:00:41:
59:2d:12:b7:61:91:16:fc:3d:a5:1f:d6:27:3e:94:
e4:78:f5:de:0a:1e:5f:1a:e0:43:3b:1b:90:82:39:
96:4d:ab:7c:75:c7:29:10:ec:10:b3:37:9e:37:70:
dd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:29:27:0F:19:53:C9:3F:3B:5C:8F:3D:4F:1C:79:7F:98:D0:87:CC
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/ayknDxlTyT87XI89Txx5f5jQh8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.105.0/24
Signature Algorithm: sha256WithRSAEncryption
31:93:7f:e6:0a:68:86:40:5c:b5:10:92:3b:93:86:86:6f:44:
30:1d:d5:96:ee:bd:00:bc:cd:fe:72:77:da:88:fa:e9:10:04:
67:ec:4b:fd:d5:b1:0e:3e:1e:e6:14:df:71:21:9a:b1:f0:ad:
fd:5a:b0:50:6c:6e:1d:ca:36:f4:77:54:41:7f:4f:fd:de:db:
8b:32:97:51:e6:e2:5d:d8:a2:ec:d6:93:3e:9a:47:d3:15:70:
1d:b2:4f:29:04:43:56:f6:07:5b:9c:6c:74:2c:41:eb:61:67:
0f:f8:6f:cb:3c:dd:6f:3d:0b:5f:6c:3d:b8:a3:8d:cb:a4:68:
70:fa:45:51:78:80:89:a6:87:bc:e2:22:56:02:44:97:79:4a:
87:8d:d3:53:f5:45:74:06:3c:8b:f0:84:8d:57:6e:64:d0:31:
17:ac:72:d3:93:60:91:76:13:00:65:59:c9:2a:7c:eb:2d:fa:
97:6d:4d:44:fc:f6:34:fd:bb:9b:3d:0b:50:e2:a2:b4:db:2e:
ad:c3:68:6c:e6:4b:d4:06:fb:dc:6a:3f:b2:f3:19:71:d3:a1:
70:81:81:ed:f2:69:6e:bd:03:e8:6f:6e:31:c9:89:5a:77:6a:
bc:ef:46:7f:fc:5c:3d:7f:fd:d8:a0:30:25:39:bd:82:25:9e:
2e:c3:f5:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:18:57 2025 by rpki-client