Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/12u8x8vGMDut6WgDoJrI_AYGx04.roa
File: 12u8x8vGMDut6WgDoJrI_AYGx04.roa (raw, json)
Hash identifier: c2dgG8q+P7F/wcg44F6shoIpqRUMO0QPGPCSxZ3X3SM=
Subject key identifier: D7:6B:BC:C7:CB:C6:30:3B:AD:E9:68:03:A0:9A:C8:FC:06:06:C7:4E
Certificate issuer: /CN=d92cad11f12d86d18951cbd751ee5124f718951f
Certificate serial: 018CC4938F3C9133D41A1446BFB703AC172D
Authority key identifier: D9:2C:AD:11:F1:2D:86:D1:89:51:CB:D7:51:EE:51:24:F7:18:95:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2SytEfEthtGJUcvXUe5RJPcYlR8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/12u8x8vGMDut6WgDoJrI_AYGx04.roa
Signing time: Mon 01 Jan 2024 10:30:53 +0000
ROA not before: Mon 01 Jan 2024 10:30:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47277
IP address blocks: 193.3.128.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:8f:3c:91:33:d4:1a:14:46:bf:b7:03:ac:17:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d92cad11f12d86d18951cbd751ee5124f718951f
Validity
Not Before: Jan 1 10:30:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d76bbcc7cbc6303bade96803a09ac8fc0606c74e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ae:5d:d3:3b:cd:7a:76:38:5c:54:89:4d:88:
10:47:fc:e0:42:a1:40:28:c2:77:56:1b:f9:e7:b7:
7e:db:8e:02:80:48:fc:a1:a8:c3:e9:27:fe:c4:b0:
43:a4:e3:fe:2d:e4:59:d0:8c:0e:b3:0b:55:58:7c:
0e:d0:b2:79:32:88:fc:85:90:29:dd:e9:cc:3d:39:
00:16:9b:84:94:c3:b5:1f:5b:e9:af:71:2f:f5:9a:
b6:d8:9d:08:cb:60:01:c8:70:4c:fe:93:19:d6:f5:
80:fd:19:32:d7:40:4e:15:02:ea:b4:db:10:bc:cd:
87:8b:e4:5d:b7:86:b7:81:a6:b7:6a:0e:2d:03:51:
c8:a1:8b:56:6b:d7:a2:56:6e:89:8c:d3:7a:03:32:
4a:85:ea:d2:d0:e7:98:e9:8b:81:c8:6a:28:a3:63:
0a:fd:a2:b2:d7:8e:e7:5d:5e:bb:4b:1c:13:27:73:
9f:c4:49:ef:9e:ba:bf:45:72:4c:e2:b0:08:66:49:
11:9f:8d:22:21:92:73:f4:fa:a8:ec:5f:28:db:35:
65:1c:88:e2:08:35:79:aa:48:0a:fe:22:e7:d5:8f:
7a:61:03:b6:8e:35:d3:1d:d1:d0:7e:43:21:8d:e6:
d6:bb:db:48:12:ab:fd:d8:19:3b:c0:82:53:de:d4:
ee:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:6B:BC:C7:CB:C6:30:3B:AD:E9:68:03:A0:9A:C8:FC:06:06:C7:4E
X509v3 Authority Key Identifier:
keyid:D9:2C:AD:11:F1:2D:86:D1:89:51:CB:D7:51:EE:51:24:F7:18:95:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2SytEfEthtGJUcvXUe5RJPcYlR8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/12u8x8vGMDut6WgDoJrI_AYGx04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/09bd91-5e18-4213-8053-1b03fdba0a24/1/2SytEfEthtGJUcvXUe5RJPcYlR8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.3.128.0/24
Signature Algorithm: sha256WithRSAEncryption
63:2e:fe:56:a1:a0:52:49:0d:bb:02:69:dd:ac:14:6c:a9:28:
dd:68:f4:52:6e:18:55:81:a6:cb:cd:51:70:ef:de:b6:3b:dc:
e4:18:5a:d3:c9:50:f7:90:7a:bf:54:2f:54:1a:aa:f0:7a:4b:
93:da:a6:6f:29:bb:f7:24:6d:44:4c:5a:51:a3:81:df:c6:05:
6a:75:98:15:20:aa:62:84:65:b4:65:7a:61:b8:60:6f:d7:fa:
6a:ab:e1:60:a7:8c:a3:65:0c:85:4a:69:04:5f:5a:bd:c8:c4:
5a:ac:b3:11:34:e6:cb:3a:2a:78:7a:53:0c:79:a8:a6:80:26:
11:2d:99:cf:a5:e3:35:85:1d:30:3f:1a:a2:8c:5c:37:8e:1f:
92:41:f5:79:83:4b:80:56:e3:cb:0e:64:1a:ae:3d:43:82:a3:
d7:20:7b:dd:3a:5a:64:57:d7:22:b2:0f:42:6d:02:11:c2:f0:
6a:3d:76:3d:b8:0c:de:c9:3c:8e:1a:31:4e:9c:3e:5c:ea:99:
34:9a:11:bc:d4:1f:dd:ea:4e:11:ae:29:8b:b4:a2:d3:d1:32:
e4:07:85:1b:e9:75:db:ea:79:da:94:41:6e:99:04:4a:35:e5:
a4:fe:f6:64:03:eb:d0:50:14:db:1e:42:6d:91:af:e2:2d:51:
1a:10:96:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:49 2025 by rpki-client