Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pWoBTmNqHYgmoTgtg851JPLP7rs.roa
File: pWoBTmNqHYgmoTgtg851JPLP7rs.roa (raw, json)
Hash identifier: CoFtkRmlr4ujCwjl7/6Yc7HZY7gulri3lEzhN1S38z0=
Subject key identifier: A5:6A:01:4E:63:6A:1D:88:26:A1:38:2D:83:CE:75:24:F2:CF:EE:BB
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0193674F4D12DE176F8D2646369B00CD754F
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pWoBTmNqHYgmoTgtg851JPLP7rs.roa
Signing time: Tue 26 Nov 2024 07:11:10 +0000
ROA not before: Tue 26 Nov 2024 07:11:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207388
IP address blocks: 192.145.28.0/22 maxlen: 24
193.168.198.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 29 Nov 2024 10:38:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:4f:4d:12:de:17:6f:8d:26:46:36:9b:00:cd:75:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 26 07:11:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a56a014e636a1d8826a1382d83ce7524f2cfeebb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:8b:6b:d5:c1:0f:3e:d1:44:ec:15:d6:32:0f:
7f:61:b5:54:1a:28:50:6e:2d:c1:9d:29:52:17:a9:
df:3b:29:42:5d:49:a1:7f:eb:8d:e4:52:eb:c9:76:
05:ec:28:06:87:26:1b:fe:14:3a:d4:e8:39:28:66:
50:3e:ec:a7:b4:01:e7:ae:fd:96:3c:97:9f:f3:6c:
7f:aa:1d:bf:08:69:26:4e:84:c9:e1:8f:da:36:2f:
3a:d1:d4:ab:b4:c5:29:fd:00:4a:a4:4c:2f:26:00:
d3:2f:0e:c5:34:bd:44:ba:ad:e9:58:64:be:f4:9d:
13:8a:c5:ae:56:f6:5a:19:54:6b:b7:5c:3f:71:7e:
b7:c2:bb:42:a7:56:d1:17:31:ee:5b:5d:17:4a:7e:
db:a1:d3:8f:fc:85:86:d6:1a:38:9a:10:c1:48:9e:
35:92:16:fc:3c:2b:fd:61:47:08:8b:04:68:bd:43:
17:35:73:11:68:7d:99:68:a1:7f:bb:c2:d9:d5:7f:
56:5d:ad:d3:6b:57:a2:78:63:83:10:59:9b:5e:ac:
4c:55:36:ee:f7:3e:4d:02:01:47:a5:92:ba:7e:90:
0e:39:83:b1:15:47:a9:ef:99:88:7c:25:9d:81:83:
98:2c:d4:c2:95:bf:9e:90:74:02:13:28:b4:4b:7f:
45:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:6A:01:4E:63:6A:1D:88:26:A1:38:2D:83:CE:75:24:F2:CF:EE:BB
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/pWoBTmNqHYgmoTgtg851JPLP7rs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.28.0/22
193.168.198.0/24
Signature Algorithm: sha256WithRSAEncryption
64:55:99:aa:3e:c8:77:cf:4e:88:cd:42:17:54:c0:c1:8a:48:
07:58:eb:61:b5:9e:2c:b7:df:e6:02:8e:3e:06:b5:a5:a0:5c:
0c:61:fc:e6:fc:a2:c5:7f:7f:27:08:61:92:e2:7b:a3:ed:3f:
75:17:a9:58:79:5c:b3:59:2d:4b:c0:7e:d1:f1:a1:df:d2:cf:
5c:72:d5:c8:22:1e:30:dd:46:10:c3:55:d7:b3:15:71:8a:9b:
85:1a:02:2a:86:d7:ca:de:c7:4e:c5:b1:12:8c:e5:4e:f2:0a:
59:22:b9:1c:b0:cb:02:77:a0:b3:68:30:e9:44:27:06:ff:1e:
13:19:47:cc:56:25:c1:88:05:e0:8c:a2:6b:a2:04:b5:10:f5:
2d:ba:d1:28:93:1b:47:4e:3c:f4:3a:41:ea:1e:e3:1f:12:d6:
aa:a6:e0:bc:bb:83:0d:a8:6e:df:9e:f2:c2:9c:cc:b9:36:46:
f5:d7:9c:f8:5b:c2:fe:4d:2f:60:96:f4:05:a3:d7:a0:69:a7:
e7:87:05:91:27:35:34:21:f0:5c:5a:d1:58:67:d6:fc:65:cd:
fd:4d:ea:8d:b4:07:ff:23:dd:cd:82:84:fd:26:5d:ba:a3:6d:
a5:01:4c:b8:2b:8b:14:79:aa:67:0e:ad:c3:90:0c:8e:50:10:
e3:d7:5b:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 09:12:45 2025 by rpki-client