Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/c8cf56-c48c-4e62-98ee-b8db15b531a2/1/fsbFVxAvTWqg9a2p0x5Kv_QAAho.roa
File: fsbFVxAvTWqg9a2p0x5Kv_QAAho.roa (raw, json)
Hash identifier: hv95dESOyuPS+vylM/Bz96ETnKrSegxwEV/exwvxbGM=
Subject key identifier: 7E:C6:C5:57:10:2F:4D:6A:A0:F5:AD:A9:D3:1E:4A:BF:F4:00:02:1A
Certificate issuer: /CN=5e46bf1ff816be0ba4c621712342330a9fad8bda
Certificate serial: 019222BC73EFC7D28AA740997052521AB026
Authority key identifier: 5E:46:BF:1F:F8:16:BE:0B:A4:C6:21:71:23:42:33:0A:9F:AD:8B:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xka_H_gWvgukxiFxI0IzCp-ti9o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/c8cf56-c48c-4e62-98ee-b8db15b531a2/1/fsbFVxAvTWqg9a2p0x5Kv_QAAho.roa
Signing time: Tue 24 Sep 2024 06:33:48 +0000
ROA not before: Tue 24 Sep 2024 06:33:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 19905
IP address blocks: 94.128.1.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:22:bc:73:ef:c7:d2:8a:a7:40:99:70:52:52:1a:b0:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e46bf1ff816be0ba4c621712342330a9fad8bda
Validity
Not Before: Sep 24 06:33:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7ec6c557102f4d6aa0f5ada9d31e4abff400021a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:79:5a:f7:27:51:05:a3:7d:e2:63:ac:15:c6:
04:cb:fe:15:26:5f:db:52:29:0a:0c:33:45:0a:8c:
05:cd:13:b0:5b:8f:f5:3c:f1:80:9b:48:5e:2a:49:
36:61:aa:69:81:9a:0d:58:2c:bf:6a:37:8e:89:ec:
67:84:17:58:76:d1:86:3b:53:c7:32:61:8c:9b:17:
4c:2f:53:67:e3:7c:8d:af:20:e2:49:3d:b4:30:5d:
b9:18:e0:8a:41:9a:32:34:05:43:e4:96:7a:78:3c:
d5:ff:b2:d7:3f:58:cd:21:c6:3b:9c:99:85:34:5f:
cd:ed:31:c5:40:13:7e:7a:50:94:a4:5d:2d:70:8c:
18:d7:a4:9c:c4:5e:4f:f0:8d:4b:95:6e:79:4c:96:
90:b7:2b:58:11:da:a8:5c:52:33:81:f3:4e:f6:de:
52:e3:64:38:8b:b9:2e:70:36:fa:7d:db:26:6b:72:
7d:58:e6:bb:8f:39:3b:e3:87:18:8f:04:c7:07:cf:
95:08:80:6d:bc:ae:5e:2f:51:a1:1c:c8:fb:2c:34:
a7:09:06:da:05:0b:2b:2f:63:d1:6b:62:5e:d1:b8:
24:68:a6:89:24:49:3a:27:ca:c5:75:06:dd:0e:0b:
41:7f:5f:ca:73:a6:07:a1:76:4d:af:ad:40:86:2f:
58:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:C6:C5:57:10:2F:4D:6A:A0:F5:AD:A9:D3:1E:4A:BF:F4:00:02:1A
X509v3 Authority Key Identifier:
keyid:5E:46:BF:1F:F8:16:BE:0B:A4:C6:21:71:23:42:33:0A:9F:AD:8B:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xka_H_gWvgukxiFxI0IzCp-ti9o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c8cf56-c48c-4e62-98ee-b8db15b531a2/1/fsbFVxAvTWqg9a2p0x5Kv_QAAho.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/c8cf56-c48c-4e62-98ee-b8db15b531a2/1/Xka_H_gWvgukxiFxI0IzCp-ti9o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.128.1.0/24
Signature Algorithm: sha256WithRSAEncryption
17:d6:5d:56:7b:8e:ed:1a:cb:b5:32:85:79:87:b1:98:cb:b7:
93:9c:f7:c9:d6:09:64:e7:3d:cc:fd:c7:d7:08:89:61:a8:74:
19:6f:0f:55:8a:82:ef:e8:da:b6:72:af:56:cc:57:cc:04:65:
07:c9:fa:f0:84:3c:48:cf:96:77:15:e5:32:42:6b:5d:da:1f:
a7:82:7d:5a:3a:28:86:ea:60:d6:6e:53:a9:c0:a6:08:c7:8f:
f3:c5:38:65:6c:5d:ee:c2:b6:2e:c0:46:46:44:4d:5a:82:67:
a0:c2:c1:b5:60:01:c4:70:a4:f3:28:11:a0:4d:a4:52:71:88:
1e:18:fc:af:31:3c:e0:a8:01:51:9d:9a:ee:0a:27:c2:85:93:
c9:bb:d0:94:93:17:52:c1:07:40:ec:6c:15:3c:6c:2c:98:82:
0c:fc:59:2c:ea:91:cf:c4:fd:b7:b4:7d:e1:bf:70:35:c1:c7:
74:d6:07:70:ab:4d:20:32:9e:90:f8:24:d2:f5:a1:f2:0a:68:
33:93:57:b1:dc:ad:eb:5a:3e:1c:a9:c4:50:6d:57:99:81:80:
5c:01:1e:05:40:c0:7e:ae:51:f9:79:97:af:f4:9e:09:75:a2:
0f:89:ee:c8:cb:ab:df:97:22:74:4a:9d:a8:95:e1:7f:4f:91:
42:2a:db:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:07:01 2025 by rpki-client