Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/JaYDKC0dRXOg2bZiPFERRqMHIHQ.roa
File: JaYDKC0dRXOg2bZiPFERRqMHIHQ.roa (raw, json)
Hash identifier: BkBUYBCOK04IA2Sy5Wy21otuQVSND7f2cC7MC6ORyGQ=
Subject key identifier: 25:A6:03:28:2D:1D:45:73:A0:D9:B6:62:3C:51:11:46:A3:07:20:74
Certificate issuer: /CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9
Certificate serial: 0192A6C0A91D838709CCE61126F7E59529CF
Authority key identifier: 51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/JaYDKC0dRXOg2bZiPFERRqMHIHQ.roa
Signing time: Sat 19 Oct 2024 21:48:16 +0000
ROA not before: Sat 19 Oct 2024 21:48:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62443
IP address blocks: 194.39.255.0/24 maxlen: 24
2a13:cc80::/32 maxlen: 32
2a13:cc81::/32 maxlen: 32
Validation: Failed, certificate revoked on Sun 27 Oct 2024 23:25:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:a6:c0:a9:1d:83:87:09:cc:e6:11:26:f7:e5:95:29:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=517a0c96842bafc9f630ba14b83ea79bd12a53b9
Validity
Not Before: Oct 19 21:48:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=25a603282d1d4573a0d9b6623c511146a3072074
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:68:c3:51:f6:f2:a6:21:16:90:27:1c:23:78:
04:8d:ee:20:a4:01:48:18:f0:17:d2:99:78:38:78:
a9:a5:09:33:5f:b3:4f:fa:c9:ac:c9:65:4b:a9:85:
81:ba:60:50:b2:56:fa:9c:1f:fa:99:67:b0:09:51:
1e:33:d6:89:f2:77:8d:93:9e:79:1b:2b:8c:72:06:
b9:37:f8:e0:57:d2:34:2f:3d:6b:39:19:1a:80:37:
d2:17:96:fb:ce:4d:1d:e9:f4:b0:69:04:6e:c2:4b:
4f:77:10:bf:a1:fa:19:ee:ca:25:8f:36:2d:ae:c4:
b9:f4:a9:af:39:2b:c9:87:e4:26:5d:51:5c:23:8d:
86:88:56:22:33:28:b9:bd:01:07:91:2d:fa:d7:35:
e4:a6:3b:68:90:d9:ef:66:50:38:e0:e3:85:87:26:
0c:61:4b:57:94:66:3a:58:75:74:d9:af:d3:2d:6b:
9c:bd:59:43:83:4c:ee:f7:5f:bd:b5:da:80:b1:e6:
33:87:6d:aa:ab:36:45:e5:e7:06:cb:f3:5a:12:46:
4f:25:6f:4e:fb:c8:92:02:d2:b5:78:c0:e8:9a:2a:
0f:42:1c:4f:b3:d8:2e:09:06:8b:89:53:43:b0:3a:
13:12:8c:e7:b0:a2:b7:33:86:d3:24:48:69:da:81:
4b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A6:03:28:2D:1D:45:73:A0:D9:B6:62:3C:51:11:46:A3:07:20:74
X509v3 Authority Key Identifier:
keyid:51:7A:0C:96:84:2B:AF:C9:F6:30:BA:14:B8:3E:A7:9B:D1:2A:53:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UXoMloQrr8n2MLoUuD6nm9EqU7k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/JaYDKC0dRXOg2bZiPFERRqMHIHQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/14e492-8525-4eec-84bc-b0eb6715e0af/1/UXoMloQrr8n2MLoUuD6nm9EqU7k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.255.0/24
IPv6:
2a13:cc80::/31
Signature Algorithm: sha256WithRSAEncryption
9d:01:84:3d:68:0d:ca:7e:95:c7:79:79:45:74:fe:66:7f:4d:
2a:7c:9e:30:47:c0:8b:27:98:35:0f:b6:13:6b:03:4e:ad:78:
60:39:4c:2d:e9:80:d1:42:b2:4c:38:01:98:94:f4:85:cf:05:
16:6a:48:49:81:d0:c7:b0:e6:bf:06:d8:ea:06:80:f9:16:04:
00:10:cf:91:4a:aa:48:3e:f6:34:07:00:a3:be:5a:0e:fc:c8:
a0:40:d7:49:29:b5:5a:f1:e0:42:e1:82:fa:33:f2:d5:4d:04:
63:df:61:c1:52:37:80:6b:16:f8:d0:c0:43:5b:a5:ce:10:96:
55:22:39:34:d0:2d:a4:b9:9b:f3:3e:98:4e:54:29:f9:43:37:
67:dc:82:a0:da:11:b0:f1:a8:ed:0c:4a:79:c8:36:c0:ae:db:
c5:22:82:d7:42:8b:92:c6:34:b0:11:48:6a:4e:ce:39:3e:25:
23:57:c1:1b:81:22:dd:6b:15:79:32:20:2b:f6:88:37:e4:71:
01:90:5f:ce:eb:c5:97:a3:32:1b:f7:e5:ee:31:53:97:18:76:
c8:05:75:71:a5:d4:6b:3a:ed:d5:21:1d:8c:95:f8:03:c8:71:
e9:0c:69:34:9e:bd:a8:d7:42:d6:55:ad:c4:57:34:16:d4:0f:
24:53:cb:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 00:02:35 2025 by rpki-client