Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/mZGVukNg4qgXyEV_WBGZ2DyBrn8.roa
File: mZGVukNg4qgXyEV_WBGZ2DyBrn8.roa (raw, json)
Hash identifier: eXSqF7g9FS0OYp4BZeC6VJZdV/9A+HJws+3FlGS/JRY=
Subject key identifier: 99:91:95:BA:43:60:E2:A8:17:C8:45:7F:58:11:99:D8:3C:81:AE:7F
Certificate issuer: /CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Certificate serial: 01936351916A1436C9CE157140467A412B5D
Authority key identifier: 13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/mZGVukNg4qgXyEV_WBGZ2DyBrn8.roa
Signing time: Mon 25 Nov 2024 12:35:10 +0000
ROA not before: Mon 25 Nov 2024 12:35:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 194.150.220.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 15:52:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:63:51:91:6a:14:36:c9:ce:15:71:40:46:7a:41:2b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1366b960a6f1f04439f09186f9ecf531a9ce2648
Validity
Not Before: Nov 25 12:35:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=999195ba4360e2a817c8457f581199d83c81ae7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:41:b9:6b:4e:73:85:4a:ef:12:7b:ca:5b:d1:
b7:76:0d:27:f7:91:c1:16:7b:74:75:e8:26:4c:10:
01:b2:b3:8a:4e:48:e6:d9:36:19:5a:5e:b5:b2:1c:
2c:60:df:c1:53:3f:01:a7:9a:8c:78:ea:f9:1f:7e:
43:f6:06:21:27:61:60:7b:a5:09:c2:0d:61:e4:2a:
f1:69:8d:50:e9:62:b7:4d:bc:83:50:90:f4:3c:76:
b4:d1:a5:0b:13:4e:31:15:7f:64:82:da:d9:3e:c4:
fe:60:1d:07:ed:92:70:99:c8:0a:91:37:eb:27:b6:
62:03:c8:e8:4e:8e:dc:1a:a0:48:d9:17:28:03:3c:
e9:36:e0:35:a3:6f:0e:98:54:6d:15:66:fb:25:fc:
d3:8e:15:4b:9e:bb:5e:c7:a7:b6:e2:7f:76:a9:4b:
1b:71:bd:dc:3c:b7:e2:15:1a:b2:b7:ab:90:b5:ad:
d3:4b:5b:1f:be:d2:e3:46:e2:b4:89:a6:96:ba:a2:
ac:0c:76:5a:4c:51:35:3a:b0:fd:1c:6d:f2:51:fa:
71:a7:73:bf:fc:4e:36:75:d0:97:2f:ae:29:b6:e4:
31:92:0b:f7:a2:e7:77:06:0c:01:97:ad:79:76:eb:
4d:85:23:4b:10:34:91:3c:39:a0:bb:0e:14:3a:1b:
42:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:91:95:BA:43:60:E2:A8:17:C8:45:7F:58:11:99:D8:3C:81:AE:7F
X509v3 Authority Key Identifier:
keyid:13:66:B9:60:A6:F1:F0:44:39:F0:91:86:F9:EC:F5:31:A9:CE:26:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E2a5YKbx8EQ58JGG-ez1ManOJkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/mZGVukNg4qgXyEV_WBGZ2DyBrn8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/4402b0-2eca-4836-bf22-a967159f887d/1/E2a5YKbx8EQ58JGG-ez1ManOJkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.150.220.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:6a:7d:ba:17:4f:c8:87:3d:c0:8a:64:b0:a3:05:c7:e8:eb:
e5:62:de:c9:08:6a:4b:6f:2e:20:d2:52:c4:88:9f:55:c0:d1:
98:06:34:cc:ea:67:55:dd:0b:eb:b4:80:4f:f6:ec:64:19:1c:
6b:17:d8:9a:af:5f:72:73:39:56:b1:3c:f6:a9:a1:a1:4a:2d:
cd:ec:ce:ff:a1:39:96:8c:2b:80:c4:3b:71:65:6c:68:8e:36:
f0:95:f5:10:82:12:6f:a7:1b:59:82:a1:4a:4c:eb:c6:9a:b8:
0b:be:8b:fa:eb:da:ab:70:d0:20:a5:2f:63:52:59:43:1f:8c:
af:f2:e0:c9:57:c4:d3:59:ee:f3:8d:84:a7:d9:68:87:25:29:
e8:e4:37:73:d9:14:53:63:f9:4d:bb:2c:7e:0e:50:26:1d:37:
d1:bb:56:7b:f6:3a:25:6f:97:82:4e:97:50:ce:6d:e1:12:08:
ec:f4:39:30:2c:c1:b2:0e:53:76:ee:0e:ed:5a:ae:96:04:99:
f6:84:5c:3d:52:c2:38:dd:df:d7:a4:93:70:6a:9d:f2:1b:aa:
7a:ad:1a:e5:63:e4:42:38:5d:51:a1:e7:1d:1f:d5:a0:9d:4e:
f2:e8:dd:9d:ce:64:48:7c:10:d2:ce:1b:d2:cc:a0:48:03:aa:
54:15:50:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 03:05:15 2025 by rpki-client