Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/y1r7nLRnoGMwCYcUR6davwJjYDY.roa
File: y1r7nLRnoGMwCYcUR6davwJjYDY.roa (raw, json)
Hash identifier: IdtvW3sceYBkxg9BtwIcQE68PGyBEuYjfwvnO4WyPGQ=
Subject key identifier: CB:5A:FB:9C:B4:67:A0:63:30:09:87:14:47:A7:5A:BF:02:63:60:36
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 0193B58E4FB1713A7E489413583F9FC39564
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/y1r7nLRnoGMwCYcUR6davwJjYDY.roa
Signing time: Wed 11 Dec 2024 11:50:22 +0000
ROA not before: Wed 11 Dec 2024 11:50:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 213808
IP address blocks: 195.14.118.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b5:8e:4f:b1:71:3a:7e:48:94:13:58:3f:9f:c3:95:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Dec 11 11:50:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cb5afb9cb467a0633009871447a75abf02636036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:a0:de:86:cf:51:bc:45:b1:14:07:77:ca:f0:
ec:4d:2f:14:1b:fd:fd:b1:8a:05:70:e1:73:33:c6:
22:3d:38:d3:38:ee:b7:bb:20:af:8b:12:d1:69:2f:
73:8d:dc:e3:ff:70:a3:d1:59:97:58:55:8e:ab:59:
79:07:bf:08:c6:57:7e:a9:6f:d8:0a:7a:b9:c2:fe:
12:3c:bf:9d:2b:7d:f9:c2:9d:43:27:99:bf:32:88:
c3:3d:cb:61:d6:55:dc:ca:c9:b1:15:21:9a:40:9c:
47:f0:a6:54:2e:08:e7:3a:81:e8:d1:fd:10:a0:4a:
b1:56:c4:14:02:8c:05:0a:39:f1:5e:c7:91:a8:a6:
73:80:58:c1:49:71:4c:40:f8:f9:54:e0:a4:4c:31:
a6:7d:f6:a3:bf:71:5d:24:c6:7f:cb:bc:ab:6c:1e:
50:84:25:1a:c0:de:b6:05:60:16:fc:a3:b5:af:e4:
32:6d:9c:4d:75:47:97:a2:38:50:c7:41:40:53:68:
7e:2b:6e:5f:69:9f:55:d1:87:da:1d:84:1a:13:0d:
68:0c:f8:79:99:9d:81:07:a3:62:60:2b:4f:cc:6d:
9e:2a:6f:35:9f:0d:48:1f:49:74:a4:6a:2e:05:ff:
c5:90:4a:3d:4e:a3:da:83:d9:a7:09:b1:6f:e0:61:
6e:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:5A:FB:9C:B4:67:A0:63:30:09:87:14:47:A7:5A:BF:02:63:60:36
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/y1r7nLRnoGMwCYcUR6davwJjYDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.14.118.0/24
Signature Algorithm: sha256WithRSAEncryption
48:b7:97:2d:5b:3f:c2:b4:fc:76:56:f6:56:ab:6e:e7:ad:57:
f4:da:91:f2:10:b6:45:55:de:42:ce:f2:29:43:a0:de:8c:30:
c4:8d:78:a2:51:92:94:a9:59:32:6a:18:9e:44:45:d3:f0:c6:
9c:51:10:95:d4:88:16:2e:48:28:02:30:18:fb:d5:01:bd:98:
19:13:27:89:98:31:99:4a:fc:f4:35:79:40:b3:98:8a:95:43:
53:12:ce:79:09:56:da:99:72:e3:8f:c5:db:ef:2a:1a:22:1e:
4d:2a:78:e2:7b:6a:1a:de:e2:63:cb:15:20:8d:b4:56:90:33:
d9:70:58:90:ca:61:2e:e7:b3:2f:9e:a1:31:6a:9d:0e:e2:ba:
c6:8e:6b:d1:01:56:cf:cb:3b:bb:42:50:26:bb:12:04:42:cf:
f2:41:fc:9d:c6:8b:a2:96:c7:96:dc:cf:8e:32:ec:25:78:df:
27:d2:aa:e0:f6:0c:21:08:1c:7f:36:bf:12:4c:ad:73:ab:e8:
28:59:15:bc:cc:15:dc:4e:2f:ab:ab:94:4c:99:0d:19:2d:bf:
95:47:34:79:71:0f:9a:67:b8:aa:c3:36:82:3a:46:ac:53:c5:
28:35:2e:e4:dc:f4:ad:d8:c3:4d:c8:36:3a:f9:3e:3b:28:b9:
b9:38:41:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 21:01:57 2025 by rpki-client