Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/tVtouXMg0r8ziElTsWQ4HnXiTtk.roa
File: tVtouXMg0r8ziElTsWQ4HnXiTtk.roa (raw, json)
Hash identifier: 3FYBmYJcfjbtX8wMPw175ODjHs3Wq6jiYMCj4OVbmAo=
Subject key identifier: B5:5B:68:B9:73:20:D2:BF:33:88:49:53:B1:64:38:1E:75:E2:4E:D9
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 018FC45DF490BB9D7F7D4815DC3997270E02
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/tVtouXMg0r8ziElTsWQ4HnXiTtk.roa
Signing time: Wed 29 May 2024 12:40:42 +0000
ROA not before: Wed 29 May 2024 12:40:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212238
IP address blocks: 93.152.230.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 12:23:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:c4:5d:f4:90:bb:9d:7f:7d:48:15:dc:39:97:27:0e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 29 12:40:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b55b68b97320d2bf33884953b164381e75e24ed9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a4:2d:e3:2f:2c:1d:bb:96:04:c6:9e:7f:6b:
8e:d4:9e:e1:66:29:3d:a5:98:11:68:4f:56:6c:64:
2a:a6:f8:5b:bb:7d:4e:99:e3:ae:1f:36:99:04:29:
dd:bb:a5:1f:58:cd:88:9b:06:f0:c1:36:66:07:e3:
ab:47:90:08:33:53:6c:dc:56:67:8d:6c:f4:48:39:
f7:b4:c4:e6:7d:99:6d:8c:d0:df:f4:0e:60:79:67:
4a:e6:66:e0:45:a1:98:f8:87:56:f2:b8:e6:85:28:
16:bb:41:e9:a9:be:e0:30:b6:ca:62:10:c6:b1:f6:
ac:ff:a9:83:7f:89:77:8f:60:53:2e:8f:f0:d7:0a:
f7:26:7e:c6:a2:c3:e4:02:8b:b3:42:18:7f:7d:e7:
8a:bd:0d:24:6b:0c:12:d1:48:ec:54:3e:03:66:0c:
ac:6f:8f:f6:f1:ae:94:1b:ba:74:a0:3e:79:2c:49:
e8:60:03:6d:a3:fe:31:4a:85:d5:f9:ba:31:fc:97:
9f:f9:97:1e:51:ee:72:71:17:21:83:98:45:b0:7f:
ca:be:22:c5:2d:e7:e4:68:ca:f2:d1:ae:18:d6:f1:
e8:1e:fc:b3:d1:37:4d:00:c0:f2:cf:f3:66:55:5b:
bc:49:66:08:a5:d3:57:e8:2b:45:67:e5:32:33:4a:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:5B:68:B9:73:20:D2:BF:33:88:49:53:B1:64:38:1E:75:E2:4E:D9
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/tVtouXMg0r8ziElTsWQ4HnXiTtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.152.230.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:dc:bb:ad:f4:b9:72:27:e2:97:15:27:3b:f9:d8:34:1c:ee:
b3:c2:46:0e:6d:54:3f:e9:c8:c3:69:3a:18:e5:75:58:63:a6:
f3:64:0b:13:7e:87:fe:de:76:d2:20:6e:10:9e:05:a2:e5:15:
a4:f9:db:3f:a2:74:db:ec:fb:4c:64:71:53:9a:88:de:bf:ea:
2c:82:68:e3:ca:60:b0:98:db:2c:b7:0d:54:f7:1b:03:a5:c6:
a8:10:f8:30:dc:8f:85:19:11:7c:ca:1e:4d:ba:6e:c4:6f:0a:
a3:10:ba:08:36:23:06:bf:5f:07:4d:44:60:b1:eb:4e:f8:ab:
75:0f:8f:c7:02:85:d4:95:1b:f8:90:f6:be:f1:7e:68:c6:ad:
23:91:34:00:3d:61:23:4b:ef:e6:7c:a7:cd:48:bf:a1:47:ee:
b3:1d:2e:2c:9a:fb:22:c8:05:7a:d9:1b:e8:f1:44:7b:c3:8d:
c6:4d:ed:1d:1f:46:1d:2d:7c:ea:43:46:02:d4:3f:86:6a:b8:
cd:a0:1f:2f:b4:37:80:35:9c:29:88:e9:35:5a:5d:b0:5d:33:
88:61:1c:53:12:77:9b:fa:b5:2a:8c:8b:9b:ef:03:d1:c0:81:
a6:2e:cf:75:64:1e:d3:14:cf:38:94:19:7e:5d:cf:f3:6a:e9:
02:52:e8:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 23:46:27 2025 by rpki-client