Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/b9A-ySkF9oskLb7b5m70OZBpxcI.roa
File: b9A-ySkF9oskLb7b5m70OZBpxcI.roa (raw, json)
Hash identifier: fluwsN5NPrRRkF+T8NbxOF+15uJ4JTK6JjCyFkl9Fek=
Subject key identifier: 6F:D0:3E:C9:29:05:F6:8B:24:2D:BE:DB:E6:6E:F4:39:90:69:C5:C2
Certificate issuer: /CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099
Certificate serial: 0194C70DEE2B250D554E57D710A5E41A7CD7
Authority key identifier: 55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/b9A-ySkF9oskLb7b5m70OZBpxcI.roa
Signing time: Sun 02 Feb 2025 14:26:06 +0000
ROA not before: Sun 02 Feb 2025 14:26:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214967
IP address blocks: 193.104.245.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 04 Mar 2025 21:28:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c7:0d:ee:2b:25:0d:55:4e:57:d7:10:a5:e4:1a:7c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5524b2e26dd3afcc5c1eac01f90263d201fbe099
Validity
Not Before: Feb 2 14:26:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6fd03ec92905f68b242dbedbe66ef4399069c5c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:7b:1e:a6:a4:97:e3:75:b8:04:43:d2:4f:6b:
cf:1d:32:f7:26:ef:dd:fe:93:11:18:63:ae:fe:7e:
e7:76:20:cd:4f:c9:13:78:dc:bc:8f:5f:c1:4b:c8:
17:7c:3b:ff:62:0d:e6:7f:4a:9b:39:b3:dd:5c:42:
80:88:c2:24:51:e9:c7:f3:bc:82:a1:1b:30:d8:38:
7e:1a:54:f3:21:af:e6:88:fa:29:78:95:85:f0:22:
16:fb:2a:55:19:22:21:00:c8:0f:08:29:7f:1d:6f:
56:18:60:8b:8b:86:26:18:26:46:b6:bc:f1:21:f5:
82:1a:f4:1b:1e:f4:c8:18:e9:2b:56:1a:ba:ec:64:
1b:bc:0e:dc:1c:ae:f4:59:d6:31:f7:8b:54:d4:cd:
2e:ab:93:7c:8e:74:52:af:7b:36:42:90:42:00:59:
6f:19:05:ba:9d:5d:a3:fc:23:4c:fb:2a:78:63:fb:
a5:7e:b5:da:8f:98:12:c7:2d:08:9d:3a:7e:ec:6c:
5c:87:aa:8f:ce:af:40:b0:fa:8e:d4:5c:da:c3:0b:
32:1c:88:c0:c6:43:be:d7:da:1e:a2:e8:05:02:c5:
6c:1c:e9:56:fb:f7:f3:db:58:4a:21:8a:63:84:89:
66:32:08:c2:cb:e8:41:ab:1f:0b:1a:b8:c2:3c:5c:
0b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:D0:3E:C9:29:05:F6:8B:24:2D:BE:DB:E6:6E:F4:39:90:69:C5:C2
X509v3 Authority Key Identifier:
keyid:55:24:B2:E2:6D:D3:AF:CC:5C:1E:AC:01:F9:02:63:D2:01:FB:E0:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/b9A-ySkF9oskLb7b5m70OZBpxcI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/143392-d868-4a26-8543-3aa2227badfe/1/VSSy4m3Tr8xcHqwB-QJj0gH74Jk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.104.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:1a:d0:94:af:3f:a0:82:fe:79:30:04:6c:34:d3:dc:7e:ae:
7a:95:40:6f:1d:20:3c:40:4e:07:ea:27:8e:89:dd:7a:17:77:
18:03:9c:92:a4:c4:b4:6a:d3:8d:86:4a:0a:f6:3d:21:83:c7:
c5:8b:02:ff:76:bd:ae:9a:08:12:a4:02:41:34:86:6f:78:77:
4a:de:23:39:68:e6:6b:f3:2f:1e:a6:b6:94:82:02:61:0f:ac:
2b:c6:c4:30:1b:5a:6a:07:dc:4e:a6:1c:91:a5:80:c6:4b:41:
7d:73:5c:3d:7c:98:aa:2c:92:90:39:44:d0:5c:01:11:98:ec:
da:af:82:8c:0d:3b:ce:6a:40:93:7e:f9:8c:1b:22:ba:69:67:
d9:d3:cc:79:5f:01:e2:3d:81:cf:5a:3b:47:5a:20:85:8b:96:
6d:92:7c:d8:2a:eb:d8:ef:d3:99:1b:0d:ec:61:1b:13:ff:71:
5e:71:b8:0e:9b:01:08:88:86:f1:43:d1:c3:26:fc:5a:a0:b7:
98:42:14:4e:d0:27:6f:a3:84:6c:3f:6d:57:f8:33:be:b9:cb:
a9:cd:d6:10:f5:80:c3:f3:ca:74:d2:bc:ba:10:68:2b:32:ce:
e8:de:4f:5f:a8:28:5f:e6:fa:bd:57:55:83:bc:b0:ae:33:b7:
0d:44:0a:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 14:56:38 2025 by rpki-client