Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/9PUVN7B3uvRSqKJYTj29JwQZcmM.roa
File: 9PUVN7B3uvRSqKJYTj29JwQZcmM.roa (raw, json)
Hash identifier: mK9o75UkoRdTphE3hnCxJUaPHDNNNFhpoiBOzdsSw6s=
Subject key identifier: F4:F5:15:37:B0:77:BA:F4:52:A8:A2:58:4E:3D:BD:27:04:19:72:63
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 018EC19D8FED920854AC80A21B27F9243D84
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/9PUVN7B3uvRSqKJYTj29JwQZcmM.roa
Signing time: Tue 09 Apr 2024 06:48:32 +0000
ROA not before: Tue 09 Apr 2024 06:48:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56603
IP address blocks: 192.145.96.0/24 maxlen: 24
195.128.133.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 25 Apr 2024 03:34:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:c1:9d:8f:ed:92:08:54:ac:80:a2:1b:27:f9:24:3d:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Apr 9 06:48:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f4f51537b077baf452a8a2584e3dbd2704197263
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:de:05:1a:aa:c9:61:cd:1b:3f:08:2b:7b:8f:
4d:8e:d2:b8:bb:c3:ce:c0:c7:68:79:f7:9a:96:b4:
cd:21:40:6f:3a:4b:14:6e:2a:08:57:8b:68:4f:f3:
d0:b8:ca:34:b8:c9:69:21:90:9f:1d:41:17:59:05:
39:c2:16:98:e2:96:3e:0a:51:6b:7f:28:6e:00:32:
b9:8e:11:4c:96:ea:3a:a5:89:d3:5f:aa:07:22:42:
37:62:91:cd:40:2b:55:b1:1e:41:2b:e6:2b:ea:30:
da:cc:b4:a1:c8:9d:b5:b8:4e:92:d0:a0:02:54:5d:
25:a7:5c:96:b1:ae:65:04:16:57:ce:32:72:58:31:
d9:eb:e7:83:fe:e4:2a:43:a8:cf:d2:ef:76:1f:7d:
d7:db:f2:63:ef:a8:13:62:39:78:01:e4:48:b4:22:
4a:d0:0d:88:cb:29:13:5d:7e:45:bd:fb:ed:f9:43:
13:66:90:14:e4:06:f6:fa:0d:b0:d7:e5:d6:5e:f7:
24:1c:92:3c:30:b4:d1:f2:a3:f0:6f:c5:5d:9c:18:
17:bb:06:3e:8a:97:70:ca:20:ec:3d:54:3b:87:69:
f1:bd:da:dd:d6:55:c0:2b:5f:be:f5:b9:fc:fa:f9:
f5:53:7c:ae:32:f8:88:90:73:cc:4e:5d:d2:fd:58:
b2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:F5:15:37:B0:77:BA:F4:52:A8:A2:58:4E:3D:BD:27:04:19:72:63
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/9PUVN7B3uvRSqKJYTj29JwQZcmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.96.0/24
195.128.133.0/24
Signature Algorithm: sha256WithRSAEncryption
46:fa:d9:62:b1:b9:4f:88:6a:31:a4:71:08:3e:31:ff:e8:f4:
ee:9c:4c:3a:a8:18:24:99:cf:14:1a:7a:e6:b4:eb:46:f7:98:
c1:41:5f:b0:18:4a:db:d2:b9:71:90:08:95:70:de:26:eb:5a:
17:21:82:fc:2e:2f:b0:ff:de:ea:15:1c:c7:20:1e:e0:f0:b9:
4b:1b:40:e8:0c:73:1a:44:90:24:bb:b7:9b:7f:e7:dd:84:28:
2e:95:0f:d5:4a:75:0b:78:2f:5c:6f:9d:30:e8:97:c5:2c:22:
a3:46:f8:d0:55:9d:58:bb:41:fe:b0:4b:ce:0b:4c:98:94:a4:
39:09:54:8b:eb:4c:60:7d:f1:29:34:cb:5c:b7:2a:b5:3b:8b:
88:1c:37:9a:00:86:ab:f7:4b:dd:e8:06:2a:63:14:f6:39:c1:
00:fe:2a:40:14:bb:51:56:eb:94:4e:bc:3e:00:6c:93:39:e4:
62:62:a0:5b:f4:39:64:12:bf:f3:41:5f:1b:97:18:27:32:8f:
15:1f:d3:f5:a1:f4:37:6b:e1:0a:11:54:32:3d:3f:c0:d0:3f:
28:9e:c0:46:a5:d5:00:bd:d9:98:58:0f:41:bd:a0:a9:3a:82:
ac:61:90:d1:af:7b:58:53:a9:36:bb:c3:20:c7:78:53:84:29:
d3:61:2a:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:37:00 2025 by rpki-client