Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/VEdtdCNNJakpGAhlMr_A-z6csCc.roa
File: VEdtdCNNJakpGAhlMr_A-z6csCc.roa (raw, json)
Hash identifier: qyFpzZ/QjZxhSsqJPen1ra9efC1FjNfBknnxFFpQpp8=
Subject key identifier: 54:47:6D:74:23:4D:25:A9:29:18:08:65:32:BF:C0:FB:3E:9C:B0:27
Certificate issuer: /CN=7e1167886da81524431bbf2efb0572914b686ebc
Certificate serial: 01932678035A9871A7301E7CF18FDC6EB309
Authority key identifier: 7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/VEdtdCNNJakpGAhlMr_A-z6csCc.roa
Signing time: Wed 13 Nov 2024 17:00:19 +0000
ROA not before: Wed 13 Nov 2024 17:00:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3356
IP address blocks: 195.160.148.0/24 maxlen: 24
195.160.149.0/24 maxlen: 24
212.39.229.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:49:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:26:78:03:5a:98:71:a7:30:1e:7c:f1:8f:dc:6e:b3:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7e1167886da81524431bbf2efb0572914b686ebc
Validity
Not Before: Nov 13 17:00:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54476d74234d25a92918086532bfc0fb3e9cb027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:05:41:51:51:c4:a3:3d:9c:6a:e2:33:f1:cd:
df:95:78:a1:13:5c:a2:b3:15:c6:76:e7:72:33:18:
9d:ca:2b:31:a1:65:27:ff:17:fb:bd:c4:15:ed:2e:
6d:24:37:cf:34:22:48:d7:0e:c5:c3:b9:bb:e8:7f:
dd:32:5e:28:b0:11:75:aa:8e:4f:54:b0:8f:41:b7:
52:0f:96:6d:fc:ea:db:bc:52:c6:63:a7:5e:24:71:
e9:58:21:08:69:c2:90:87:68:dc:0f:2f:90:e3:c9:
e8:87:4a:c2:2f:e4:55:60:4a:11:66:4b:a0:22:66:
8e:ff:95:12:1e:0f:4f:a2:1e:37:88:6b:9a:07:f9:
03:ca:a2:4b:f2:74:cd:30:3a:07:d6:69:59:1c:b2:
67:0d:63:ae:6c:32:a4:98:ce:e1:cf:d7:aa:72:2b:
c4:52:8b:52:f6:6f:e9:ef:cb:82:d2:05:1a:60:af:
e2:8f:20:20:c2:fa:d7:45:b8:c6:8c:5d:33:5d:9a:
3e:e2:10:20:0e:8d:da:e2:be:d1:34:73:0d:9a:bb:
66:2d:8b:c3:5a:85:d8:30:2d:65:67:4a:72:4d:89:
b6:90:60:34:04:76:1e:a7:55:88:9d:6d:28:6e:e4:
07:1d:e7:03:81:c5:16:a6:cf:bd:f0:28:af:d9:94:
85:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:47:6D:74:23:4D:25:A9:29:18:08:65:32:BF:C0:FB:3E:9C:B0:27
X509v3 Authority Key Identifier:
keyid:7E:11:67:88:6D:A8:15:24:43:1B:BF:2E:FB:05:72:91:4B:68:6E:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fhFniG2oFSRDG78u-wVykUtobrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/VEdtdCNNJakpGAhlMr_A-z6csCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/f92cd7-646c-441b-ae46-9b282c643256/1/fhFniG2oFSRDG78u-wVykUtobrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.160.148.0/23
212.39.229.0/24
Signature Algorithm: sha256WithRSAEncryption
75:0f:69:5d:7f:b6:dc:8b:8e:6a:44:63:bc:5c:1f:27:dd:2a:
21:af:c6:bb:46:f7:10:7e:90:ff:bd:d5:ff:68:38:37:31:ba:
ba:a2:ca:07:91:bb:db:9a:f8:f1:ff:8a:8a:c4:a1:fd:3a:3c:
67:ae:14:a3:c8:c8:34:02:66:58:5e:44:f9:6f:4b:18:41:96:
0e:ab:9a:e1:33:29:9e:1f:83:fc:da:64:79:37:92:7a:e4:83:
8d:48:6d:71:1f:2e:c4:15:89:d6:3b:2d:9d:be:6e:b2:7e:bb:
23:60:3f:81:db:2a:57:3a:fc:96:74:63:24:57:38:76:91:f3:
b7:47:a1:9a:a0:97:3f:5d:75:18:c0:b5:ba:46:af:e7:eb:71:
c1:dc:58:8d:02:a3:ae:1c:70:09:e8:08:e1:b0:77:1c:17:3a:
71:10:96:94:45:d4:54:12:99:7a:4f:ea:31:41:a6:ca:03:6b:
d9:52:30:b5:1a:04:fd:d3:06:72:11:79:c9:b1:3b:25:ff:eb:
ce:50:99:9e:d8:cc:e9:19:3b:e6:4d:6f:05:9c:c1:d0:87:67:
62:b9:75:fe:89:6d:8b:e6:c0:46:f4:41:d0:e3:5c:e3:88:43:
5b:12:ad:ae:1b:21:d2:c1:0b:b3:dc:14:75:97:de:2e:d8:f0:
f8:a0:af:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:39:36 2025 by rpki-client