Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/1-U9IfT4vnm2S1ipIZA6fw_XV6-s.roa
File: 1-U9IfT4vnm2S1ipIZA6fw_XV6-s.roa (raw, json)
Hash identifier: bjC1h97+yU57Zs3w4zZ8PUCDI4lx+Mu3B53TdvNrZE8=
Subject key identifier: F9:4F:48:7D:3E:2F:9E:6D:92:D6:2A:48:64:0E:9F:C3:F5:D5:EB:EB
Certificate issuer: /CN=8966861be57d36d5f6d9d9f8ebf62817616a21f5
Certificate serial: 018CC425162B5B6C9A945C9221A3594F85A4
Authority key identifier: 89:66:86:1B:E5:7D:36:D5:F6:D9:D9:F8:EB:F6:28:17:61:6A:21:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iWaGG-V9NtX22dn46_YoF2FqIfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/1-U9IfT4vnm2S1ipIZA6fw_XV6-s.roa
Signing time: Mon 01 Jan 2024 08:30:13 +0000
ROA not before: Mon 01 Jan 2024 08:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 35044
IP address blocks: 193.189.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Wed 01 Jan 2025 15:47:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:16:2b:5b:6c:9a:94:5c:92:21:a3:59:4f:85:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8966861be57d36d5f6d9d9f8ebf62817616a21f5
Validity
Not Before: Jan 1 08:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f94f487d3e2f9e6d92d62a48640e9fc3f5d5ebeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:dc:16:39:fa:3e:75:ec:98:c2:f8:3d:83:6f:
75:84:87:e9:93:b2:f9:ad:7d:de:82:77:10:95:6c:
0b:8b:5b:de:75:19:35:fb:1f:a4:17:84:0f:da:e6:
6f:d0:5b:75:27:92:28:da:ce:e7:b9:de:fa:0e:78:
a9:86:35:75:10:24:26:0e:d2:56:ce:6c:2d:ab:61:
37:c8:eb:3d:52:b6:5c:a4:53:67:ad:8a:eb:37:c4:
71:3e:ca:28:47:8c:2d:d5:20:5c:ff:54:b4:0c:08:
fa:3c:b4:c8:7a:7a:91:b1:e8:43:e9:a4:86:c0:b8:
0e:d5:f3:38:f3:33:6e:9f:20:7d:96:c8:3e:08:a6:
d9:73:51:26:3a:d6:de:5b:79:c8:35:ed:c5:c9:39:
e1:3c:41:88:cf:f6:ff:40:e0:16:c9:b7:c5:ac:b8:
9f:0d:16:27:57:9c:c8:9b:ba:a8:89:35:aa:8c:a9:
2f:6f:0a:f9:fb:fe:8f:a3:7b:70:e5:38:f4:3d:c1:
76:9a:81:73:26:b1:9c:d4:d9:49:35:f8:b0:6b:b3:
27:17:32:9d:bb:bb:d9:9a:2c:40:e3:55:d0:7c:13:
3b:8f:09:a8:d6:17:17:bc:2a:5b:73:20:aa:02:ad:
f6:bc:7e:b5:3c:5b:63:41:ef:b7:fe:d7:02:c1:5a:
45:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:4F:48:7D:3E:2F:9E:6D:92:D6:2A:48:64:0E:9F:C3:F5:D5:EB:EB
X509v3 Authority Key Identifier:
keyid:89:66:86:1B:E5:7D:36:D5:F6:D9:D9:F8:EB:F6:28:17:61:6A:21:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iWaGG-V9NtX22dn46_YoF2FqIfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/1-U9IfT4vnm2S1ipIZA6fw_XV6-s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/f562a4-2f04-46dd-b1c1-356cdebeb84f/1/iWaGG-V9NtX22dn46_YoF2FqIfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.189.108.0/23
Signature Algorithm: sha256WithRSAEncryption
18:19:20:78:f1:d3:41:ab:6e:ab:cd:fa:bb:d9:cc:b7:34:39:
62:41:5a:ae:45:a2:1f:85:d8:65:91:6d:ae:8b:d7:0c:61:c0:
a3:f7:52:3d:2b:fd:d6:bd:f6:31:84:f8:d9:2a:d7:ef:56:da:
1c:d0:e9:e5:35:fb:3b:a1:60:f3:aa:1a:61:17:5c:d4:db:a7:
43:65:fa:4e:60:0e:b5:2d:6e:90:0a:23:22:17:ea:a0:c2:d4:
be:b3:1d:d3:7e:76:82:7b:f2:9c:e1:2e:e2:ff:1a:3c:01:0e:
8a:e8:16:a2:40:ca:c3:44:91:b7:39:92:af:79:71:24:31:5d:
96:12:bb:d3:43:e2:31:82:7d:4e:52:b2:ac:3a:6c:68:12:61:
24:60:2e:a9:45:b6:25:64:58:09:9d:1b:69:b0:1b:ef:70:fa:
0a:b4:4d:70:81:0f:ca:dd:5f:33:48:2a:f5:bd:bc:c8:8e:df:
d4:5b:bf:ff:08:d4:ae:77:f3:6e:73:99:67:ac:14:da:bd:9a:
16:f0:4d:14:c7:14:32:e7:bd:66:32:00:33:af:19:0c:90:b7:
4a:cd:64:2b:a9:ab:b8:63:0a:91:70:2d:a7:4d:da:b2:e5:3f:
54:f2:33:58:dd:61:ed:74:09:03:62:92:94:b7:d0:a2:ea:44:
87:d1:fd:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:37 2025 by rpki-client