Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/bbb782-39f5-4d24-91d2-3e5ee4a8f388/1/u2-qDBj7s6DqjVo4NJyG-F-u_fY.roa
File: u2-qDBj7s6DqjVo4NJyG-F-u_fY.roa (raw, json)
Hash identifier: Pmw9HdMVOQpSxKRekrdRzvX7HzYOsPAviFuGovmBFSY=
Subject key identifier: BB:6F:AA:0C:18:FB:B3:A0:EA:8D:5A:38:34:9C:86:F8:5F:AE:FD:F6
Certificate issuer: /CN=9daebaf6f97ec9374df6c1492f59d5f13a9dd008
Certificate serial: 0193733C93560307788B3EE6F0648955FBF5
Authority key identifier: 9D:AE:BA:F6:F9:7E:C9:37:4D:F6:C1:49:2F:59:D5:F1:3A:9D:D0:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/na669vl-yTdN9sFJL1nV8Tqd0Ag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/bbb782-39f5-4d24-91d2-3e5ee4a8f388/1/u2-qDBj7s6DqjVo4NJyG-F-u_fY.roa
Signing time: Thu 28 Nov 2024 14:46:09 +0000
ROA not before: Thu 28 Nov 2024 14:46:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56595
IP address blocks: 5.172.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 15:30:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:73:3c:93:56:03:07:78:8b:3e:e6:f0:64:89:55:fb:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daebaf6f97ec9374df6c1492f59d5f13a9dd008
Validity
Not Before: Nov 28 14:46:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bb6faa0c18fbb3a0ea8d5a38349c86f85faefdf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:17:e6:bd:af:9f:ce:da:d9:fd:c1:6d:2e:7e:
31:01:3e:67:cf:82:18:6a:27:3a:27:f6:17:52:71:
ca:cb:b7:85:44:70:47:0c:60:bb:41:1d:56:9d:1b:
c0:ba:67:d3:af:4f:5e:30:3b:48:0a:0f:b3:2a:41:
33:ec:d6:56:ba:89:82:2c:06:44:fe:c9:54:10:ee:
5a:ed:41:90:06:ba:17:04:e4:06:d0:d1:69:50:0a:
b1:4b:6a:f3:8e:31:6c:9a:7f:97:e8:eb:26:73:23:
0f:45:40:e0:18:04:4a:e5:65:b4:62:0b:87:9f:df:
4f:4b:fe:46:70:db:53:11:7a:74:6b:d6:f9:58:86:
6c:c0:e6:b0:58:c9:3a:a6:78:1b:c5:86:43:94:ca:
59:4f:de:1f:0d:6b:96:d2:60:73:af:34:14:5a:cf:
f7:ca:42:9d:55:d1:a9:6b:6a:0a:d2:4a:c3:73:61:
91:4c:d7:e5:f6:83:54:bf:ff:20:d7:46:26:b2:a9:
1f:ce:0d:93:59:ee:82:82:26:8c:f7:ce:d8:4a:7c:
a2:36:f7:8a:e5:1e:d0:6d:91:eb:23:52:e9:eb:83:
9c:28:27:c6:8a:0c:c1:4e:93:64:6c:54:d6:be:64:
1d:b1:49:8e:8d:05:f9:f9:af:1c:69:0f:4a:a8:0a:
ad:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:6F:AA:0C:18:FB:B3:A0:EA:8D:5A:38:34:9C:86:F8:5F:AE:FD:F6
X509v3 Authority Key Identifier:
keyid:9D:AE:BA:F6:F9:7E:C9:37:4D:F6:C1:49:2F:59:D5:F1:3A:9D:D0:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/na669vl-yTdN9sFJL1nV8Tqd0Ag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/bbb782-39f5-4d24-91d2-3e5ee4a8f388/1/u2-qDBj7s6DqjVo4NJyG-F-u_fY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/bbb782-39f5-4d24-91d2-3e5ee4a8f388/1/na669vl-yTdN9sFJL1nV8Tqd0Ag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.183.0/24
Signature Algorithm: sha256WithRSAEncryption
06:39:77:05:69:01:da:79:fb:cf:18:b5:65:1c:5e:65:92:eb:
a8:31:01:67:8e:11:a2:3c:7a:38:48:35:a2:42:e7:77:9a:4e:
d4:f1:4b:43:1e:c9:49:6f:f9:3f:36:f4:e2:ad:36:3d:a6:92:
5e:86:68:39:56:31:aa:01:3d:ec:8f:ef:1d:34:57:f3:d4:28:
c4:a9:a5:cf:33:af:2d:44:41:57:21:f3:c8:3c:bc:ec:cd:41:
ed:1f:fb:a2:1d:1b:bc:f9:70:d9:de:02:ed:7d:55:e6:31:9d:
b3:0a:88:99:d3:e5:a8:50:d2:d0:4f:73:7b:24:23:8e:ef:d9:
e2:74:4c:92:da:5a:b6:c6:4d:91:12:1c:7d:9f:9f:8a:55:bf:
7f:d1:5c:a8:19:e2:7a:6d:6b:eb:d9:a5:42:0b:8a:1f:c4:68:
7a:01:26:3f:92:62:1f:76:65:da:61:ab:d6:f7:17:ff:09:d3:
c3:c9:dc:a0:d4:e2:3a:ff:be:ab:79:7f:83:24:d5:18:e4:d0:
4d:1f:e7:8b:87:01:f6:1a:2d:08:2a:82:ee:87:7f:bc:9d:1c:
a7:55:22:77:b2:94:1c:eb:1e:ff:10:f6:78:39:47:e3:d4:09:
d2:a8:3f:20:ee:e9:e1:d4:1f:25:97:9a:82:10:cd:c6:f2:87:
96:c9:89:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 17:57:47 2025 by rpki-client