Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/9tZ2dnkK2cfXJ4T1fo_bXzH7jmY.roa
File: 9tZ2dnkK2cfXJ4T1fo_bXzH7jmY.roa (raw, json)
Hash identifier: dAWe7hxYv+FcDPaQHJ6MmL6yEVFdAt6BdmtrIteZ57Y=
Subject key identifier: F6:D6:76:76:79:0A:D9:C7:D7:27:84:F5:7E:8F:DB:5F:31:FB:8E:66
Certificate issuer: /CN=b48f063d29e910f033becb656e8b9901f69ec974
Certificate serial: 018CC424D659973E18DDAD09519173B5946F
Authority key identifier: B4:8F:06:3D:29:E9:10:F0:33:BE:CB:65:6E:8B:99:01:F6:9E:C9:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tI8GPSnpEPAzvstlbouZAfaeyXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/9tZ2dnkK2cfXJ4T1fo_bXzH7jmY.roa
Signing time: Mon 01 Jan 2024 08:29:57 +0000
ROA not before: Mon 01 Jan 2024 08:29:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 39120
IP address blocks: 176.126.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 01:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:d6:59:97:3e:18:dd:ad:09:51:91:73:b5:94:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b48f063d29e910f033becb656e8b9901f69ec974
Validity
Not Before: Jan 1 08:29:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f6d67676790ad9c7d72784f57e8fdb5f31fb8e66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b2:c7:e9:3b:0d:9a:2f:5c:93:d8:b4:ed:c4:
9e:e8:01:3e:76:b0:41:89:ca:91:c0:92:6d:f7:be:
b9:34:bb:2d:69:25:a9:88:65:dd:af:1e:e6:8a:6c:
11:65:57:6f:c1:60:fb:50:0b:49:14:c8:f2:35:02:
76:aa:88:55:45:4e:24:e2:f6:fa:52:cb:bc:4a:39:
5b:20:c0:bf:04:b4:36:68:42:18:26:e3:af:21:95:
fb:36:22:a3:fd:a2:4e:f0:a9:9a:f7:e3:82:9a:a0:
ce:1a:3c:fa:79:9f:b4:8b:56:4f:9d:9b:ef:f2:ac:
38:95:32:e0:38:bd:01:fa:07:a0:6a:99:65:54:5c:
d5:15:2a:c9:27:8e:bb:ef:84:17:ce:fb:9a:e4:a1:
37:fc:0f:8e:d7:06:ab:a2:c1:7a:15:5a:9e:08:7c:
41:c1:36:eb:58:6e:e1:59:dc:3a:f4:46:83:65:14:
90:fa:39:4f:b7:62:40:bd:ed:81:f5:e7:b5:f9:4d:
44:58:ee:05:5e:48:fd:31:cf:71:ab:04:87:cf:da:
69:f7:d4:7d:24:bc:5e:7e:5e:03:2d:e4:49:ef:24:
11:39:9b:da:03:06:b0:f6:03:f3:46:ed:db:b0:0a:
35:be:58:4d:60:88:04:71:73:bb:3c:f0:ae:36:68:
41:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:D6:76:76:79:0A:D9:C7:D7:27:84:F5:7E:8F:DB:5F:31:FB:8E:66
X509v3 Authority Key Identifier:
keyid:B4:8F:06:3D:29:E9:10:F0:33:BE:CB:65:6E:8B:99:01:F6:9E:C9:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tI8GPSnpEPAzvstlbouZAfaeyXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/9tZ2dnkK2cfXJ4T1fo_bXzH7jmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/26c7ff-998e-4131-a747-3c43c3d35ef3/1/tI8GPSnpEPAzvstlbouZAfaeyXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.107.0/24
Signature Algorithm: sha256WithRSAEncryption
08:e9:df:80:5e:aa:40:85:b9:60:24:6f:68:24:93:58:ea:b4:
41:08:e6:8e:ee:bd:69:a6:f1:5b:72:c0:1a:f4:81:bc:94:77:
99:57:b1:89:c1:9a:45:11:82:c9:e1:80:2d:9d:3c:db:d0:5c:
22:65:e3:b6:ad:3b:c4:ca:b5:7a:9d:39:d6:da:68:2b:56:2f:
ea:0f:dd:5d:96:34:e6:0d:ef:ed:27:22:44:57:e4:7c:0f:ac:
83:5f:3d:a3:67:21:27:71:a2:00:e2:7f:bb:7f:51:6f:3e:cf:
22:6e:88:74:7c:67:4d:3d:18:14:95:7c:da:40:67:28:26:bb:
28:cd:1b:0b:96:a3:4f:0b:af:13:a7:b1:79:68:fa:3d:ab:97:
d2:ee:e2:02:d0:25:31:1f:25:74:3b:14:ef:f3:e4:25:83:0a:
25:c2:3c:88:ff:5d:f1:19:3b:7c:2c:13:5f:40:25:e4:25:31:
40:f0:f3:fa:06:24:c0:8a:19:88:de:c3:19:b1:5b:5f:d7:b6:
b2:c3:5a:fb:47:e5:89:b6:72:17:9c:6b:13:7f:bd:19:77:68:
86:d3:87:6b:7a:9c:72:31:da:f1:ae:e6:c1:a3:a9:a0:b0:65:
a4:4b:f0:19:36:91:f8:2e:97:cc:72:31:40:d8:14:73:1a:d7:
8e:e0:65:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:38 2025 by rpki-client