Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/27wCBTY_GByeO2wCCnW1TyH68hY.roa
File: 27wCBTY_GByeO2wCCnW1TyH68hY.roa (raw, json)
Hash identifier: DF9Ix6tfb10OAPWcnmat9xYiKv68XLze/vxhxwpibiU=
Subject key identifier: DB:BC:02:05:36:3F:18:1C:9E:3B:6C:02:0A:75:B5:4F:21:FA:F2:16
Certificate issuer: /CN=68c0f2d0776f7e1d349075881c35e9d387463405
Certificate serial: 019128613436470D4C4B19F547B7CE7FC6A9
Authority key identifier: 68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/27wCBTY_GByeO2wCCnW1TyH68hY.roa
Signing time: Tue 06 Aug 2024 15:49:04 +0000
ROA not before: Tue 06 Aug 2024 15:49:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 204204
IP address blocks: 194.0.234.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 06 Aug 2024 17:54:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:28:61:34:36:47:0d:4c:4b:19:f5:47:b7:ce:7f:c6:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c0f2d0776f7e1d349075881c35e9d387463405
Validity
Not Before: Aug 6 15:49:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=dbbc0205363f181c9e3b6c020a75b54f21faf216
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:e2:c6:31:90:7a:8d:c9:35:a4:73:76:20:f7:
2b:11:21:25:fe:8d:7e:c1:7f:07:95:a9:f4:27:17:
94:a8:13:54:df:5f:2e:7b:a0:04:50:e0:9e:39:e9:
ee:e5:f6:4a:75:a4:ca:9b:b5:8c:f2:5b:23:30:42:
82:57:5e:98:37:66:c9:50:8b:1b:c2:35:e3:2a:80:
4c:f5:c2:f3:b3:c1:20:1f:c7:1d:43:4e:b6:9f:c4:
7a:c1:f1:3b:15:b5:2e:36:3b:26:a1:1c:d1:ff:f6:
bc:77:1a:c3:78:8f:a7:71:45:c5:c1:18:26:dc:1e:
10:23:07:3c:9c:71:9a:ed:16:0b:89:c7:48:0d:b9:
a8:ed:81:80:91:77:f7:eb:3b:25:3f:d7:a4:ac:de:
b7:e2:8b:68:62:d5:a8:63:8f:56:a1:d8:f0:c3:f2:
53:2f:69:25:bf:20:3c:ef:dd:06:ff:41:ad:95:2e:
77:38:ab:70:2a:08:57:39:c7:db:b1:3d:0e:81:46:
66:89:17:f3:1d:4c:ca:c2:63:fc:b9:24:cb:d7:c8:
97:8f:42:63:36:5d:af:43:ad:b9:d5:d9:48:a9:10:
5e:ef:d7:89:01:e1:80:c1:3f:56:01:c3:65:31:d2:
a0:3e:1f:b5:93:a0:d3:46:18:03:27:c3:62:51:79:
11:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:BC:02:05:36:3F:18:1C:9E:3B:6C:02:0A:75:B5:4F:21:FA:F2:16
X509v3 Authority Key Identifier:
keyid:68:C0:F2:D0:77:6F:7E:1D:34:90:75:88:1C:35:E9:D3:87:46:34:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMDy0Hdvfh00kHWIHDXp04dGNAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/27wCBTY_GByeO2wCCnW1TyH68hY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/84eedc-a2f6-4a39-a918-f9d9c03d4b4c/1/aMDy0Hdvfh00kHWIHDXp04dGNAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.0.234.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:65:0d:92:4d:8b:8b:53:1a:60:59:79:71:18:d3:d9:6b:da:
a4:0c:97:4c:fd:9a:49:45:69:6a:d5:f2:97:33:91:1b:1f:04:
ea:0a:8d:aa:4f:a6:ff:80:a1:a8:42:2a:c5:e9:15:06:b0:b1:
0a:1e:3c:d2:90:90:b9:ed:7d:1e:9a:85:ee:e5:43:a7:e1:b2:
c9:5b:b5:5d:9d:74:77:44:77:0d:32:5b:ae:5e:04:aa:44:86:
5f:d9:61:39:73:da:60:a1:bc:62:39:2f:4b:1b:38:4d:04:44:
11:fa:ee:6f:1a:55:80:07:7e:a5:0b:25:b2:bf:38:30:3f:34:
cb:88:eb:36:b0:88:c9:85:7f:35:da:84:0c:da:a4:08:66:8c:
e0:2c:49:d2:de:d0:95:14:04:4f:c7:23:6c:09:45:8a:c8:a3:
09:43:ff:25:3e:6c:09:61:c8:e1:10:27:a0:85:20:3c:24:f9:
8a:37:59:50:af:78:c7:ef:f6:f9:a8:87:14:28:50:45:f7:a6:
c2:dd:b7:b4:6f:93:07:51:ee:f8:e8:76:1a:cc:ac:04:1b:98:
8c:cf:87:5d:6d:65:b9:fc:3a:3c:14:dc:dc:21:2c:e1:bb:ce:
cb:5a:f1:c1:4a:49:22:ba:63:8c:6d:8e:fa:70:87:73:68:5f:
95:f1:c7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 23:07:14 2025 by rpki-client