Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/wzrEb9tXV8dCC9KJF4-bYluirJg.roa
File: wzrEb9tXV8dCC9KJF4-bYluirJg.roa (raw, json)
Hash identifier: +NXo0MCMWSNKXaxBTA93Bz/fUzqSnyWERexLVfSaozQ=
Subject key identifier: C3:3A:C4:6F:DB:57:57:C7:42:0B:D2:89:17:8F:9B:62:5B:A2:AC:98
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 019297AB7FCAA45CE27A9FCC7D8A6D26D22F
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/wzrEb9tXV8dCC9KJF4-bYluirJg.roa
Signing time: Wed 16 Oct 2024 23:30:51 +0000
ROA not before: Wed 16 Oct 2024 23:30:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8881
IP address blocks: 150.241.104.0/24 maxlen: 24
150.241.109.0/24 maxlen: 24
150.241.110.0/24 maxlen: 24
150.241.111.0/24 maxlen: 24
150.241.112.0/24 maxlen: 24
150.241.117.0/24 maxlen: 24
150.241.118.0/24 maxlen: 24
150.241.119.0/24 maxlen: 24
150.241.120.0/24 maxlen: 24
150.241.125.0/24 maxlen: 24
150.241.126.0/24 maxlen: 24
150.241.127.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:49:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:97:ab:7f:ca:a4:5c:e2:7a:9f:cc:7d:8a:6d:26:d2:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Oct 16 23:30:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c33ac46fdb5757c7420bd289178f9b625ba2ac98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:86:a8:28:ea:8b:df:78:13:43:d9:67:9d:32:
13:08:0f:c1:87:0d:49:d2:3a:bf:76:e0:9e:12:12:
b4:8f:40:bb:61:99:18:95:68:39:51:e5:23:ca:db:
10:84:30:fe:73:aa:d8:c6:36:b3:95:52:4a:3f:d2:
26:34:3f:45:fe:10:87:50:2b:48:aa:63:5c:34:25:
27:eb:17:b4:e1:ca:02:31:2c:3a:73:28:c2:c1:34:
6e:5c:25:fe:aa:60:7c:7f:e9:e4:07:c9:17:10:d2:
12:44:da:ad:8d:64:90:ce:f4:be:61:f7:d3:31:db:
df:db:98:9a:e5:bb:b3:0a:b0:c6:a4:5e:74:e3:57:
f9:93:31:21:b5:fe:5b:b1:e5:71:f6:db:de:19:4d:
73:a3:c9:64:21:e9:d5:4f:59:77:8d:e9:70:73:aa:
9f:7e:f3:53:03:db:34:36:5a:4c:4c:b3:e5:e6:96:
61:3e:74:b3:7a:59:de:f3:6a:40:61:65:7f:37:b8:
24:18:56:9f:f1:4b:58:a5:4c:ee:cc:1d:35:2c:ec:
95:35:e5:65:a7:25:ef:84:93:52:c5:21:47:ea:b3:
14:4d:86:2e:8e:69:55:ae:56:f5:f7:86:9d:49:3e:
ca:17:d2:9e:2f:a0:ee:a9:d5:bd:83:46:5d:3e:45:
5f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:3A:C4:6F:DB:57:57:C7:42:0B:D2:89:17:8F:9B:62:5B:A2:AC:98
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/wzrEb9tXV8dCC9KJF4-bYluirJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.241.104.0/24
150.241.109.0-150.241.112.255
150.241.117.0-150.241.120.255
150.241.125.0-150.241.127.255
Signature Algorithm: sha256WithRSAEncryption
4b:a5:0c:6f:8e:fd:27:66:5a:a2:7b:d1:aa:e4:ef:e8:54:7c:
4a:20:54:68:3d:27:99:8a:20:94:bc:00:b5:e6:a2:8c:c8:23:
6f:96:b5:68:df:94:da:27:68:49:78:43:0f:59:f2:9e:3e:0e:
a7:6b:d7:7d:cb:17:19:ce:d2:20:88:b9:f3:ef:96:cd:0e:fb:
ae:49:4f:0e:75:48:4d:90:8f:77:d1:91:66:f9:e1:22:73:98:
38:af:44:b8:08:5e:02:b8:18:38:cd:b3:15:d4:f3:26:77:91:
ba:ea:44:ba:34:1a:cf:ee:43:22:8d:d9:ff:5a:64:3b:fd:28:
31:e7:08:92:35:bb:34:b7:96:30:79:f9:d5:41:6c:cc:24:35:
b3:fd:2e:02:f1:a1:c2:be:8b:ac:28:50:a6:97:17:9a:81:0e:
4a:cb:6e:98:af:6b:9f:55:62:88:f2:69:6a:e4:e6:f8:a3:2f:
03:96:bf:f3:02:e2:19:48:78:bc:2e:ef:03:c5:d9:d1:be:41:
8f:5e:50:41:e2:5c:e1:a7:01:cc:b4:74:d0:5c:fa:64:18:98:
65:bf:bb:62:49:0f:75:c8:f1:14:e1:1e:1c:09:04:a1:ab:7a:
94:08:f8:99:e0:64:8d:6a:cc:0f:e0:63:23:3f:b8:23:46:7d:
13:b1:34:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:27 2025 by rpki-client