Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/iUq9juTqHB37kuA_VJWzTNeSW1o.roa
File: iUq9juTqHB37kuA_VJWzTNeSW1o.roa (raw, json)
Hash identifier: guEudjHgkT++qelM863tcN+nCn64m/BlmAoFEI9ndjo=
Subject key identifier: 89:4A:BD:8E:E4:EA:1C:1D:FB:92:E0:3F:54:95:B3:4C:D7:92:5B:5A
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 01928CB73DA13943AFD540804BBEE2E023D1
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/iUq9juTqHB37kuA_VJWzTNeSW1o.roa
Signing time: Mon 14 Oct 2024 20:27:51 +0000
ROA not before: Mon 14 Oct 2024 20:27:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 11798
IP address blocks: 150.241.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Tue 15 Oct 2024 20:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:8c:b7:3d:a1:39:43:af:d5:40:80:4b:be:e2:e0:23:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Oct 14 20:27:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=894abd8ee4ea1c1dfb92e03f5495b34cd7925b5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c3:d5:fe:34:2e:52:ca:3c:ec:af:bc:21:16:
05:46:3f:5e:f6:b6:1a:7e:aa:42:82:dd:db:e0:f2:
e5:5a:00:c8:78:35:61:b8:9c:0b:2f:79:94:aa:d7:
23:d7:77:b6:ea:43:6a:41:ae:f9:78:0a:16:c0:1f:
20:ec:fd:f5:f1:b2:84:55:bb:d9:66:be:1c:c4:94:
54:2c:ac:77:af:44:8c:ae:26:57:b5:e9:8b:50:2a:
2b:45:1f:75:2e:ec:4f:ed:2e:0d:70:33:d4:e9:88:
74:c6:39:e0:76:c4:d3:c0:ae:5f:7c:41:5f:df:7f:
1e:3e:d3:70:44:91:bf:4e:36:d3:fc:a7:19:7a:c7:
0d:27:0a:42:7c:68:80:aa:36:70:6a:51:78:a7:e8:
f9:8b:7f:46:fb:d8:83:14:c3:74:59:e9:f9:02:6c:
ed:86:63:7b:c5:ac:0d:16:ae:c8:fb:a3:8e:19:5c:
4e:81:e4:02:72:3c:05:2e:04:2e:35:42:33:f7:b0:
78:1b:67:49:0e:73:0d:58:25:15:33:51:3c:a2:11:
50:ad:92:5f:34:97:4c:be:e2:54:9c:0a:04:33:5f:
45:2f:fb:85:38:a3:62:e3:60:df:3a:9d:17:f1:ee:
84:05:4d:07:cd:06:b9:3b:7f:b2:9a:0b:1d:1b:14:
c8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:4A:BD:8E:E4:EA:1C:1D:FB:92:E0:3F:54:95:B3:4C:D7:92:5B:5A
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/iUq9juTqHB37kuA_VJWzTNeSW1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.64.0/18
Signature Algorithm: sha256WithRSAEncryption
1a:c1:35:fd:7c:47:2b:23:35:9c:0c:eb:19:a6:e3:03:50:82:
e7:49:20:87:1d:a6:2d:4c:d5:5c:81:71:8e:62:ea:34:30:ee:
8e:ea:f5:09:bc:80:c9:e9:0c:d1:12:87:57:a3:6f:42:fd:95:
46:6a:5d:77:63:dc:46:84:02:7c:9e:31:c0:2c:d4:fc:58:1e:
50:65:2e:3e:e0:39:3a:b5:55:59:af:15:79:39:77:c0:15:71:
0e:8e:52:93:66:58:95:10:a3:b5:04:50:8c:77:bc:1f:8d:50:
8e:f4:20:7d:0f:dd:b5:e5:57:11:45:0c:d8:fd:c9:c4:04:6e:
39:fb:50:22:05:59:7d:a4:a0:93:fb:9e:d9:c3:ce:f8:ab:6e:
4f:7d:ec:04:9f:59:40:dd:d0:8e:50:fd:a3:ae:dd:a2:8e:23:
fe:04:a7:cd:39:a7:61:7e:f3:e3:9f:ed:18:42:46:24:1f:d3:
36:74:1d:b2:95:1d:c5:f4:49:5c:e8:f8:c4:b3:b9:d1:40:1b:
89:74:65:cd:ae:6c:09:06:78:ad:02:30:1a:39:08:5c:e8:ed:
72:85:95:9d:a9:65:93:a3:fc:27:e2:7e:72:78:d2:5e:6b:b4:
4e:23:01:2d:0a:e1:33:5c:23:d5:e6:23:31:89:54:e5:61:0e:
92:35:01:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:23 2025 by rpki-client