Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/V0BAt3vocrWAlPjxeBzVDT1P4Ro.roa
File: V0BAt3vocrWAlPjxeBzVDT1P4Ro.roa (raw, json)
Hash identifier: E04UOzvMB0UpzcQZMaYCIT5QQnMjtiviuGHlhjmmW60=
Subject key identifier: 57:40:40:B7:7B:E8:72:B5:80:94:F8:F1:78:1C:D5:0D:3D:4F:E1:1A
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 0194BC2B137D6B2D5D6B53E23CB481276669
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/V0BAt3vocrWAlPjxeBzVDT1P4Ro.roa
Signing time: Fri 31 Jan 2025 11:42:07 +0000
ROA not before: Fri 31 Jan 2025 11:42:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34950
IP address blocks: 194.68.50.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 13:37:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bc:2b:13:7d:6b:2d:5d:6b:53:e2:3c:b4:81:27:66:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 31 11:42:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=574040b77be872b58094f8f1781cd50d3d4fe11a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:12:a0:51:a0:dd:98:fb:be:0c:9e:9f:2c:d1:
c8:44:49:14:de:53:80:3b:f9:0e:7b:d9:2c:29:6f:
7d:27:8a:fa:3c:b2:f9:7a:01:52:3c:36:2c:25:31:
ab:89:76:a6:ac:e4:d5:7b:5e:3b:fa:c8:43:08:40:
8c:99:a2:1a:5f:6a:f5:74:13:45:19:6e:f8:f0:88:
e4:ab:92:56:21:bc:e7:87:0b:b2:8c:da:0f:5c:03:
d5:20:a8:1c:3c:62:74:5b:11:ad:c5:93:b8:0d:ac:
75:f2:9c:bf:38:a7:63:02:2c:ca:d5:74:06:0d:1b:
cd:e4:29:f0:cb:2c:98:7e:ae:a9:9d:4a:51:f7:f8:
58:e1:2d:a4:a1:a2:d4:aa:89:6e:b4:e4:6c:6f:e5:
62:84:d6:d9:0f:d8:3f:dc:bb:a7:fc:85:54:8b:9a:
5b:b6:e7:19:6d:18:59:99:f2:22:54:dc:c7:42:45:
72:6d:e1:bc:4e:70:7e:60:89:1d:98:81:cf:67:9b:
9a:c6:8d:54:e8:8c:61:6a:86:aa:0c:9e:d6:3a:45:
b0:8f:b9:66:5d:5c:ac:00:a4:f4:60:a1:5a:c0:c6:
06:a4:24:3a:2d:ac:0b:9c:0b:06:5f:26:af:30:58:
ca:c9:8a:0a:4a:6a:0a:1e:34:1a:02:44:e8:16:6b:
d3:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:40:40:B7:7B:E8:72:B5:80:94:F8:F1:78:1C:D5:0D:3D:4F:E1:1A
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/V0BAt3vocrWAlPjxeBzVDT1P4Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.68.50.0/24
Signature Algorithm: sha256WithRSAEncryption
be:75:05:0f:82:3b:9a:8a:c5:9e:39:d3:cb:e5:d9:47:14:8c:
e2:9b:25:5d:8f:d4:f9:0b:b6:6f:e2:65:0d:a4:51:4c:05:ae:
59:f6:8a:0c:55:f8:61:5e:31:02:d9:0a:b4:c4:d3:9e:42:0f:
b4:c6:be:46:e0:5a:f0:44:fd:3c:94:c5:bb:a4:6b:3d:9b:d2:
5b:15:8b:c6:8d:fd:79:3a:95:85:24:ae:98:b4:91:32:a9:3b:
47:3b:6b:e4:9e:f0:89:cb:26:b8:fb:90:d9:5d:bf:6a:97:4d:
77:1d:99:57:21:8f:16:ad:c5:49:5e:db:ec:3b:cb:0c:86:c8:
42:e3:e3:19:41:2f:3a:79:58:99:81:46:80:cd:9e:72:bc:40:
7f:39:c2:ab:9c:ae:5e:b6:93:b6:e9:c3:6e:e8:ba:b9:40:58:
18:23:99:17:bd:fd:13:af:cf:92:70:16:95:25:db:26:68:37:
23:a3:8c:56:a1:e0:ce:6d:a0:3e:f9:9c:b8:2c:e2:4b:13:e0:
96:8f:9f:27:71:0e:b0:ed:1d:8a:ef:f3:a5:62:94:b1:b0:fa:
09:3c:07:b9:ac:a1:fa:e9:fd:14:76:0b:d4:e5:9c:c3:c1:cb:
60:09:a8:a8:53:99:46:a9:3e:ad:66:63:4e:b1:a7:b1:08:82:
2c:08:09:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:15 2025 by rpki-client