Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/wn8fVzN64ovuHYiW1NYD90tlNGE.roa
File: wn8fVzN64ovuHYiW1NYD90tlNGE.roa (raw, json)
Hash identifier: d4NZscQjva8+pNRGDDoRFeUi9ySwgVh++TVgk4WgopA=
Subject key identifier: C2:7F:1F:57:33:7A:E2:8B:EE:1D:88:96:D4:D6:03:F7:4B:65:34:61
Certificate issuer: /CN=b2deb3765f539f1ec3f00213ff834085b7c8c76f
Certificate serial: 0192542CB4B9AA7D002F3235F51199C43260
Authority key identifier: B2:DE:B3:76:5F:53:9F:1E:C3:F0:02:13:FF:83:40:85:B7:C8:C7:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/st6zdl9Tnx7D8AIT_4NAhbfIx28.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/wn8fVzN64ovuHYiW1NYD90tlNGE.roa
Signing time: Thu 03 Oct 2024 20:57:48 +0000
ROA not before: Thu 03 Oct 2024 20:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207388
IP address blocks: 194.9.119.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 10 Oct 2024 05:38:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:54:2c:b4:b9:aa:7d:00:2f:32:35:f5:11:99:c4:32:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2deb3765f539f1ec3f00213ff834085b7c8c76f
Validity
Not Before: Oct 3 20:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c27f1f57337ae28bee1d8896d4d603f74b653461
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:91:ec:95:b6:bb:da:f1:f1:83:d7:03:d7:05:
ce:50:81:c7:b8:c5:b9:f5:55:45:04:12:3d:eb:76:
c3:a6:c7:20:2d:2b:c5:16:be:77:e7:d2:17:16:bf:
81:b0:65:38:92:41:89:14:55:0a:d3:01:53:ea:4a:
22:3b:1b:7d:99:e4:4c:ba:65:0c:37:1b:5f:5f:91:
3d:26:fb:c3:06:e4:03:57:47:38:b3:5b:54:c2:c0:
ee:a5:e5:8a:a8:c6:94:7c:0e:c8:79:eb:12:35:a9:
7d:29:cc:ca:97:1d:36:fe:a1:23:b2:04:9d:72:3c:
9f:a6:af:4e:a2:3c:c6:88:36:fd:c1:60:36:11:e3:
3a:b7:1d:3a:b9:44:af:a5:2a:42:38:74:f9:6e:0a:
bf:d5:03:88:eb:b6:bf:da:19:84:22:93:36:86:fa:
1b:fe:2c:c9:bd:8f:c1:c4:6c:93:7e:cd:32:df:f0:
fb:8b:bd:ff:11:13:51:25:6d:91:b6:78:df:23:ec:
12:37:80:6a:2d:96:1d:e6:34:bb:28:74:c0:c6:6c:
9a:0e:f6:71:1e:aa:47:d6:17:6e:1d:b4:69:79:c0:
85:13:1a:e5:de:7a:5f:e6:f6:b6:62:bb:94:48:84:
34:14:1d:9c:59:bd:3d:61:24:9e:9e:4f:cb:34:29:
34:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:7F:1F:57:33:7A:E2:8B:EE:1D:88:96:D4:D6:03:F7:4B:65:34:61
X509v3 Authority Key Identifier:
keyid:B2:DE:B3:76:5F:53:9F:1E:C3:F0:02:13:FF:83:40:85:B7:C8:C7:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/st6zdl9Tnx7D8AIT_4NAhbfIx28.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/wn8fVzN64ovuHYiW1NYD90tlNGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/8c6395-646a-47a2-b4b6-c6f6e3f28956/1/st6zdl9Tnx7D8AIT_4NAhbfIx28.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.9.119.0/24
Signature Algorithm: sha256WithRSAEncryption
69:a1:26:ea:15:51:b8:32:46:2d:8b:3b:22:76:f0:31:83:16:
30:7d:98:3e:f2:d4:8b:8a:59:0a:cd:f2:75:e2:5c:55:21:77:
32:55:2e:3f:5c:17:81:71:18:4f:fe:c1:3c:97:f3:7e:13:d3:
26:8e:ed:46:38:04:0b:ba:3a:bb:40:c4:70:b6:47:7d:45:7d:
3d:36:20:54:54:36:9a:a6:66:54:ff:e9:f7:7c:18:e7:2c:68:
7f:3c:bc:6b:1d:4f:45:9e:34:a4:9c:2f:47:d2:0b:ee:a9:68:
a9:b4:be:8d:23:75:53:cd:4f:9a:c3:90:b7:e2:80:e7:59:fc:
bd:3d:f0:f4:84:2a:77:e6:e6:2f:43:c2:85:5b:46:80:d0:48:
fd:b3:a2:ef:8e:d6:85:91:fb:9f:7b:7f:32:96:f6:0c:3f:09:
26:8c:51:be:40:9b:c3:e2:f1:0b:02:44:2e:0a:bc:d0:2d:df:
f1:fe:59:11:9b:e7:9d:f3:ce:f8:2a:84:1a:b2:54:60:ce:08:
0b:93:d4:18:d3:da:9f:4c:7d:47:8c:46:9c:e3:bb:4f:7c:92:
ec:72:ce:84:ed:47:b0:95:f6:f5:a4:1f:05:2f:f5:73:41:05:
4b:39:bb:23:36:06:3d:bc:34:81:b6:0f:98:66:7b:28:40:d2:
57:46:f3:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 20:20:48 2025 by rpki-client