Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/UFYxnSRwwmURbe-Plby1wR07jIw.roa
File: UFYxnSRwwmURbe-Plby1wR07jIw.roa (raw, json)
Hash identifier: BjXPavvar678xX8QscleRyMhjLyNf4VriPxQ8/PLJIs=
Subject key identifier: 50:56:31:9D:24:70:C2:65:11:6D:EF:8F:95:BC:B5:C1:1D:3B:8C:8C
Certificate issuer: /CN=95e88359b95a3964ae6f9a0cdaae07f579f98c35
Certificate serial: 0194228DE638FE3AC4701733439308FC00F2
Authority key identifier: 95:E8:83:59:B9:5A:39:64:AE:6F:9A:0C:DA:AE:07:F5:79:F9:8C:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/leiDWblaOWSub5oM2q4H9Xn5jDU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/UFYxnSRwwmURbe-Plby1wR07jIw.roa
Signing time: Wed 01 Jan 2025 15:48:32 +0000
ROA not before: Wed 01 Jan 2025 15:48:32 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214684
IP address blocks: 193.18.199.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 14 Jan 2025 15:04:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:e6:38:fe:3a:c4:70:17:33:43:93:08:fc:00:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95e88359b95a3964ae6f9a0cdaae07f579f98c35
Validity
Not Before: Jan 1 15:48:32 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5056319d2470c265116def8f95bcb5c11d3b8c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:76:9c:5e:27:f4:ba:9b:fe:b9:8c:bc:8c:2a:
97:a8:6c:87:18:b6:ae:6a:45:89:2a:8c:d6:ed:82:
00:47:a6:2f:5b:1d:0b:bb:c8:95:c6:23:e6:da:eb:
81:2b:9f:5e:3d:a9:6f:b8:e2:aa:6a:38:85:f9:4e:
2c:17:ac:02:b6:95:17:0b:ef:f1:32:29:42:dd:1c:
1c:99:4a:08:77:1e:1a:42:c2:3e:c7:37:72:cb:74:
10:83:af:c8:52:b5:91:e0:18:01:10:3d:3b:8d:2d:
cc:6f:d9:6f:c8:18:12:2e:39:5a:62:21:8d:20:ce:
f3:73:0e:57:e9:55:38:f1:a0:c7:2f:6a:d9:56:0a:
76:29:61:7e:80:93:85:14:d7:a6:cd:ed:57:05:31:
35:b1:2b:67:ce:05:1c:87:f6:cb:ef:02:0c:69:6a:
e6:18:1c:91:6c:83:f4:6f:5c:23:c4:e3:c6:4d:65:
bf:33:52:8f:8d:16:a1:2b:14:01:32:26:17:98:df:
08:26:fb:4b:5c:fb:e0:26:34:df:af:f1:15:ef:22:
cf:54:d0:93:19:60:62:83:a4:6e:26:36:c8:ee:bf:
30:e4:6d:09:e1:6b:1c:31:3d:92:07:f6:4c:22:4b:
5d:13:a9:0e:72:b6:29:b7:bd:a3:ac:94:22:60:a5:
66:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:56:31:9D:24:70:C2:65:11:6D:EF:8F:95:BC:B5:C1:1D:3B:8C:8C
X509v3 Authority Key Identifier:
keyid:95:E8:83:59:B9:5A:39:64:AE:6F:9A:0C:DA:AE:07:F5:79:F9:8C:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/leiDWblaOWSub5oM2q4H9Xn5jDU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/UFYxnSRwwmURbe-Plby1wR07jIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/264f9a-13ea-4c50-a6a9-712d5e17a6f6/1/leiDWblaOWSub5oM2q4H9Xn5jDU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.18.199.0/24
Signature Algorithm: sha256WithRSAEncryption
07:15:28:c2:aa:cd:65:14:4c:68:5b:43:a7:28:e4:ed:ec:e5:
b3:f5:70:8b:ba:f6:cf:08:2a:78:b2:05:7d:a8:b4:84:ef:50:
e3:db:f0:e8:ce:ff:78:5b:83:ce:0f:25:06:75:5e:9e:7b:09:
f8:0b:ef:1c:ad:2d:92:4d:c6:93:d5:6b:3b:96:b9:e6:af:29:
a2:f2:09:19:b1:ac:a2:4f:f7:d5:f4:b0:db:a5:af:0c:4c:21:
c3:2a:48:f7:0d:bf:f7:fa:62:9c:b7:e6:74:b5:0a:f3:68:25:
c1:f9:78:2e:30:77:2c:b4:d2:ad:2a:f1:eb:f7:26:f4:18:e8:
14:13:c1:e5:99:e1:35:32:fb:0e:76:7c:86:8f:a2:2c:25:5d:
31:28:e5:a0:d9:2c:b6:7a:7e:5d:df:9a:ce:05:0e:b4:7c:0d:
83:cb:86:e0:40:d4:b3:fd:4b:80:92:f1:1a:91:39:f2:1b:51:
51:2c:d5:f3:b1:c9:94:19:17:aa:a9:c3:bf:fe:cf:a2:08:41:
76:97:8d:42:e1:4c:33:d1:a6:3d:cc:14:07:93:3e:b3:99:61:
d9:c6:14:ce:56:12:9f:1c:74:51:fe:ab:df:8c:56:06:c2:09:
a4:23:ae:3f:8e:aa:26:b3:67:b8:3f:9c:61:61:4e:c2:c9:68:
2a:59:a2:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 16:14:49 2025 by rpki-client