Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/8PnEGe0r0pROkULpj_Lqk1o4Nwg.roa
File: 8PnEGe0r0pROkULpj_Lqk1o4Nwg.roa (raw, json)
Hash identifier: DhoZx1wcq4ouZc9WxOwrJ/yA6NibpNGFH5cu7yMm6RU=
Subject key identifier: F0:F9:C4:19:ED:2B:D2:94:4E:91:42:E9:8F:F2:EA:93:5A:38:37:08
Certificate issuer: /CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Certificate serial: 01936D2AED85A0B9C40A0340C42A68964038
Authority key identifier: 06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/8PnEGe0r0pROkULpj_Lqk1o4Nwg.roa
Signing time: Wed 27 Nov 2024 10:29:09 +0000
ROA not before: Wed 27 Nov 2024 10:29:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 23470
IP address blocks: 194.143.205.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 26 Dec 2024 07:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6d:2a:ed:85:a0:b9:c4:0a:03:40:c4:2a:68:96:40:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0671dcc7a9ac7351c71e0bc2278cf45fd020ae2e
Validity
Not Before: Nov 27 10:29:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0f9c419ed2bd2944e9142e98ff2ea935a383708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:ed:94:f6:d2:30:18:ce:6d:93:31:72:f9:71:
df:94:4c:ae:05:0e:a5:99:bf:ea:49:65:af:56:13:
c5:ee:fe:45:33:03:c5:40:9c:83:7a:ac:1c:18:94:
cf:d6:b0:9d:f9:a5:3c:a0:23:0b:fb:7f:52:12:89:
51:2f:41:9f:65:ff:56:c5:e9:6b:84:a0:f4:d5:bc:
30:51:71:dc:6b:a8:d3:41:7d:fa:e7:3e:94:46:be:
22:1a:ee:5b:86:12:01:33:f2:47:5c:78:3f:5d:cd:
17:22:da:44:5c:27:d7:e8:d7:14:1a:64:bb:33:44:
14:b9:b9:9a:68:f2:1e:84:73:0b:38:4f:ac:c1:70:
1e:62:a7:e2:95:55:bf:a2:fb:14:c6:a4:2b:e5:20:
c1:ed:ff:e4:f5:53:52:70:b7:c4:d1:42:4d:43:b7:
03:69:f7:c2:88:96:3d:6b:cf:85:75:c2:13:c1:34:
77:8e:06:a7:f6:82:48:5a:be:50:70:07:40:04:4b:
f8:ef:a2:2e:4f:bc:e9:95:a6:d3:98:71:8a:26:d3:
55:de:f9:c4:9e:ba:ad:93:6d:95:9a:07:7f:62:e7:
97:70:61:97:3f:4c:88:10:49:f4:68:20:81:40:c2:
c6:f2:85:5d:77:be:c0:fc:59:e7:1d:21:28:4c:73:
28:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F9:C4:19:ED:2B:D2:94:4E:91:42:E9:8F:F2:EA:93:5A:38:37:08
X509v3 Authority Key Identifier:
keyid:06:71:DC:C7:A9:AC:73:51:C7:1E:0B:C2:27:8C:F4:5F:D0:20:AE:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BnHcx6msc1HHHgvCJ4z0X9Agri4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/8PnEGe0r0pROkULpj_Lqk1o4Nwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/1f9493-d468-4a7c-8c4b-1ddec4cce24c/1/BnHcx6msc1HHHgvCJ4z0X9Agri4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.143.205.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:a4:a0:6c:4f:8e:3e:a9:f1:42:d2:2f:3a:3b:5a:ac:05:90:
64:98:5a:1f:fe:ab:bc:a0:9b:94:93:7c:15:f3:82:5a:22:2c:
7f:ec:e1:a6:c7:33:fd:09:1e:ad:2e:46:6c:72:b9:c6:3d:4d:
76:63:1a:b5:7b:59:e6:83:5e:f4:17:18:1b:b9:e3:4f:a3:fd:
cd:74:92:d8:d2:e9:71:fe:34:9f:11:1e:e5:c4:cb:90:df:1e:
00:fc:e5:35:00:14:fd:ed:35:e4:b3:25:22:4a:e6:8c:31:11:
65:e1:43:e1:5c:db:28:52:c4:61:6f:0d:6c:54:46:34:97:be:
3c:73:e7:44:fb:5d:53:a9:2e:cc:f5:9e:a7:fe:3f:e2:bf:35:
da:48:74:ae:ee:67:03:7a:38:48:78:79:b7:d9:37:6c:d0:df:
5a:4f:4b:b8:c9:c5:c6:35:de:af:97:fe:84:71:b0:a7:ca:e8:
77:47:93:82:bb:b6:bc:24:58:92:5a:06:6d:6d:8b:85:95:a1:
29:4c:54:8e:28:30:5a:f9:b5:4b:44:07:59:b7:b5:77:e2:66:
49:97:08:e9:06:29:00:71:34:13:11:01:0c:36:a2:ef:00:25:
ab:bd:58:2a:61:ed:78:4d:6c:3b:d3:19:e3:02:07:38:19:55:
68:7a:ed:e0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZNtKu2FoLnECgNAxCpolkA4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NzFkY2M3YTlhYzczNTFjNzFlMGJjMjI3OGNmNDVmZDAy
MGFlMmUwHhcNMjQxMTI3MTAyOTA5WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMGY5YzQxOWVkMmJkMjk0NGU5MTQyZTk4ZmYyZWE5MzVhMzgzNzA4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9u2U9tIwGM5tkzFy+XHflEyuBQ6l
mb/qSWWvVhPF7v5FMwPFQJyDeqwcGJTP1rCd+aU8oCML+39SEolRL0GfZf9Wxelr
hKD01bwwUXHca6jTQX365z6URr4iGu5bhhIBM/JHXHg/Xc0XItpEXCfX6NcUGmS7
M0QUubmaaPIehHMLOE+swXAeYqfilVW/ovsUxqQr5SDB7f/k9VNScLfE0UJNQ7cD
affCiJY9a8+FdcITwTR3jgan9oJIWr5QcAdABEv476IuT7zplabTmHGKJtNV3vnE
nrqtk22Vmgd/YueXcGGXP0yIEEn0aCCBQMLG8oVdd77A/FnnHSEoTHMotwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPD5xBntK9KUTpFC6Y/y6pNaODcIMB8GA1UdIwQY
MBaAFAZx3MeprHNRxx4LwieM9F/QIK4uMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGIt
MWRkZWM0Y2NlMjRjLzEvOFBuRUdlMHIwcFJPa1VMcGpfTHFrMW80TndnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lYS8xZjk0OTMtZDQ2OC00YTdjLThjNGItMWRkZWM0Y2NlMjRj
LzEvQm5IY3g2bXNjMUhISGd2Q0o0ejBYOUFncmk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwo/NMA0G
CSqGSIb3DQEBCwUAA4IBAQCbpKBsT44+qfFC0i86O1qsBZBkmFof/qu8oJuUk3wV
84JaIix/7OGmxzP9CR6tLkZscrnGPU12Yxq1e1nmg170FxgbueNPo/3NdJLY0ulx
/jSfER7lxMuQ3x4A/OU1ABT97TXksyUiSuaMMRFl4UPhXNsoUsRhbw1sVEY0l748
c+dE+11TqS7M9Z6n/j/ivzXaSHSu7mcDejhIeHm32Tds0N9aT0u4ycXGNd6vl/6E
cbCnyuh3R5OCu7a8JFiSWgZtbYuFlaEpTFSOKDBa+bVLRAdZt7V34mZJlwjpBikA
cTQTEQEMNqLvACWrvVgqYe14TWw70xnjAgc4GVVoeu3g
-----END CERTIFICATE-----
Generated at Thu Apr 17 02:27:06 2025 by rpki-client