Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vlyjXjuDgTNe2AiZkoeZthpXw6U.roa
File: vlyjXjuDgTNe2AiZkoeZthpXw6U.roa (raw, json)
Hash identifier: bjRq1r1KJSTUDn0L+B+sD93a3jLb+7ZWxQjxAptj0sA=
Subject key identifier: BE:5C:A3:5E:3B:83:81:33:5E:D8:08:99:92:87:99:B6:1A:57:C3:A5
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0193D535A4897FA8C6FD18D75A63A101B770
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vlyjXjuDgTNe2AiZkoeZthpXw6U.roa
Signing time: Tue 17 Dec 2024 15:21:22 +0000
ROA not before: Tue 17 Dec 2024 15:21:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15440
IP address blocks: 194.124.69.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d5:35:a4:89:7f:a8:c6:fd:18:d7:5a:63:a1:01:b7:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Dec 17 15:21:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=be5ca35e3b8381335ed80899928799b61a57c3a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f2:29:d7:1b:81:7f:04:89:80:65:aa:15:1f:
69:de:80:2c:78:e4:8e:f5:7e:a2:28:82:17:a1:c7:
47:d9:6e:23:3b:e7:47:41:cd:f2:52:9d:1d:d6:7d:
13:c1:ac:42:fa:04:30:45:e0:64:ca:50:22:f4:51:
27:28:00:1a:ef:e3:aa:74:17:63:4d:39:87:26:a6:
de:56:81:14:3c:7a:e7:96:b3:ec:48:9f:72:db:6e:
61:c9:4f:66:7f:cd:b4:d6:46:01:be:23:97:d8:cd:
e8:ac:e1:e2:25:e5:0e:16:32:37:83:74:3a:a9:3d:
20:ef:87:bd:59:00:45:c2:a4:7f:4e:8b:3f:78:0d:
86:dc:66:19:e5:f6:d6:e3:b0:93:fe:82:8a:b0:75:
f1:ca:bd:d3:fa:8d:84:a5:fe:a3:24:71:38:52:47:
6e:26:65:72:ac:53:00:76:e1:d1:1c:7d:d4:2a:42:
c4:15:20:34:95:d5:b7:1b:36:8f:86:f1:fa:82:20:
7c:b9:07:ab:10:e5:3e:e2:1b:9c:08:49:bd:40:da:
74:94:5e:a8:76:4f:a4:31:e9:31:1c:41:25:5f:04:
40:de:73:15:ce:c6:bc:8e:35:c7:40:66:ee:91:79:
3f:b7:b4:ed:01:2e:e1:0b:86:cf:c6:41:16:0a:b9:
51:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:5C:A3:5E:3B:83:81:33:5E:D8:08:99:92:87:99:B6:1A:57:C3:A5
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/vlyjXjuDgTNe2AiZkoeZthpXw6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.124.69.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:8d:d1:bf:ca:00:57:70:29:b6:d6:8b:c4:3f:73:fd:41:84:
ff:ee:89:ee:9e:ab:f4:50:a1:d3:17:50:f5:44:ae:dd:c8:21:
a5:5d:4d:e5:2e:e1:cf:79:3a:38:84:82:37:45:60:4d:6f:19:
01:56:86:b5:22:81:f5:de:5d:4a:bd:ef:1a:de:14:b2:27:0f:
e5:ab:12:61:fc:1b:33:ba:16:e3:94:1a:11:27:ae:02:23:ab:
2d:aa:fc:0c:c3:e8:62:16:27:16:c1:66:60:36:03:de:c1:ca:
e0:30:d6:bf:17:6e:87:82:33:8a:f5:fb:b2:a3:fe:2f:62:2b:
7e:5e:c0:16:86:f5:60:7d:90:d8:ad:d7:79:8c:01:5c:52:3e:
16:8d:dd:29:f0:16:c4:24:12:4f:0f:53:72:82:7f:a1:35:b2:
d2:f4:5e:6e:41:15:a9:bf:bb:b2:e3:a1:da:50:3c:90:4e:9e:
27:74:96:e9:4e:b9:d1:44:d1:d1:53:ae:2c:e6:b7:27:e3:46:
95:a3:4a:aa:b2:0a:e8:ec:44:f1:95:fc:c3:0d:53:a5:e1:a8:
d2:77:90:6d:1e:1e:74:b4:25:cb:14:c1:47:88:27:43:71:54:
7e:0b:e3:88:22:dc:13:78:f8:72:ba:19:45:b6:75:80:17:22:
77:2e:58:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 23:36:42 2025 by rpki-client