Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/zPbhvzwJ2WZQEDLux499YbcGugk.roa
File: zPbhvzwJ2WZQEDLux499YbcGugk.roa (raw, json)
Hash identifier: xoHdMxhsLqy2hDEsY+7exQY1dkl7iGiJXy5Yayg1q90=
Subject key identifier: CC:F6:E1:BF:3C:09:D9:66:50:10:32:EE:C7:8F:7D:61:B7:06:BA:09
Certificate issuer: /CN=b2deb3765f539f1ec3f00213ff834085b7c8c76f
Certificate serial: 0192919370C3A386942C843B2A877DAF37DA
Authority key identifier: B2:DE:B3:76:5F:53:9F:1E:C3:F0:02:13:FF:83:40:85:B7:C8:C7:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st6zdl9Tnx7D8AIT_4NAhbfIx28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/zPbhvzwJ2WZQEDLux499YbcGugk.roa
Signing time: Tue 15 Oct 2024 19:06:51 +0000
ROA not before: Tue 15 Oct 2024 19:06:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 25369
IP address blocks: 194.9.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 16 Oct 2024 20:27:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:91:93:70:c3:a3:86:94:2c:84:3b:2a:87:7d:af:37:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2deb3765f539f1ec3f00213ff834085b7c8c76f
Validity
Not Before: Oct 15 19:06:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ccf6e1bf3c09d966501032eec78f7d61b706ba09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5b:5c:cf:a5:03:92:ed:9e:be:90:0a:41:43:
64:e3:bf:05:13:0f:ce:08:2e:8b:a1:81:66:6b:e4:
d2:38:a1:3c:d2:0e:11:62:70:c5:3f:cd:63:da:40:
18:af:14:3b:0a:51:ef:c0:10:f4:ca:09:e7:76:29:
a3:21:24:6c:25:d4:92:3e:4b:ee:9f:2a:3d:f2:89:
a0:63:3d:d8:c9:26:7e:a2:81:ab:04:50:9d:0c:61:
71:18:13:28:80:19:c0:d2:fa:f6:21:48:4d:45:48:
9b:42:8b:70:29:f3:fb:24:d8:ef:f0:35:fe:a3:49:
d9:d9:57:a7:95:3b:7c:30:98:62:42:9d:2f:a4:d3:
b0:bd:6e:bd:22:bf:f7:35:11:51:0f:ce:7b:65:77:
84:70:1f:7d:bd:32:7f:e9:ef:b9:80:e8:04:9f:78:
0b:d6:ec:a6:16:71:41:17:b6:9b:e3:8c:62:8a:cb:
29:ff:23:d1:ca:95:ab:85:c2:ca:e3:00:6c:93:c7:
35:2a:c3:4c:bd:b5:c6:c5:79:d5:d3:38:9b:61:7c:
c7:ad:ea:84:d9:d4:7e:e7:26:59:fe:de:14:82:fd:
88:0b:81:e4:7e:ee:46:3e:65:de:43:f1:e9:18:1b:
23:db:a2:5a:73:75:aa:bd:e5:d2:37:fd:db:1a:e7:
f5:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:F6:E1:BF:3C:09:D9:66:50:10:32:EE:C7:8F:7D:61:B7:06:BA:09
X509v3 Authority Key Identifier:
keyid:B2:DE:B3:76:5F:53:9F:1E:C3:F0:02:13:FF:83:40:85:B7:C8:C7:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st6zdl9Tnx7D8AIT_4NAhbfIx28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/zPbhvzwJ2WZQEDLux499YbcGugk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/st6zdl9Tnx7D8AIT_4NAhbfIx28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.119.0/24
Signature Algorithm: sha256WithRSAEncryption
31:2c:b1:6a:32:ea:0c:2e:2d:1e:da:5a:a5:67:ae:a8:77:45:
44:e5:33:d7:36:96:5d:26:32:f5:ac:a4:cb:63:ee:00:99:91:
82:98:db:f0:f5:db:84:14:87:66:0c:33:61:77:d3:fc:40:fa:
a3:e7:b6:b1:2f:37:3a:47:bf:89:56:b6:a3:9d:c8:cb:be:5a:
b0:9e:a4:c4:9f:8e:e5:7b:9c:bd:ae:85:54:f9:cd:d5:1c:51:
9d:97:8a:32:a9:21:2d:87:79:c0:39:cd:3f:b5:31:e6:3f:d3:
71:5a:a8:c9:35:b3:34:9b:c9:31:61:84:92:65:e0:26:99:46:
43:ef:3e:8b:e0:00:b6:c3:2b:8c:c5:02:0f:60:22:eb:de:ed:
17:65:3a:b5:d9:15:78:fb:8e:f0:70:43:45:a4:44:c4:31:fc:
2e:d7:dc:c0:d3:70:87:3a:05:78:4c:cc:d0:cc:91:12:e1:08:
5e:31:d5:68:01:de:7f:86:25:ff:6f:2c:13:59:c6:e4:ab:df:
5e:c9:0a:21:5c:2e:fa:38:39:b9:e7:77:54:cd:6b:98:b0:67:
ca:fb:69:92:ca:24:45:08:0a:98:87:62:06:9d:a8:07:26:24:
d0:4e:c6:60:2c:08:5c:9e:71:65:25:7d:34:6c:88:db:25:a7:
67:70:5b:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 14:50:49 2025 by rpki-client