Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/c47e90-0f08-463b-8810-c07b98f6e765/1/Tnp2TgJPdbSjAOzAY-j8K6-Ewcg.roa
File: Tnp2TgJPdbSjAOzAY-j8K6-Ewcg.roa (raw, json)
Hash identifier: PSXy95WNe0WdamhWFkbnbzHQ81HEmhGi1zMOgjSq5QI=
Subject key identifier: 4E:7A:76:4E:02:4F:75:B4:A3:00:EC:C0:63:E8:FC:2B:AF:84:C1:C8
Certificate issuer: /CN=24f4b9f485642089f36b174d9642dc4837ff4d24
Certificate serial: 0194FE1F29DDD951343455B8E265E295C65B
Authority key identifier: 24:F4:B9:F4:85:64:20:89:F3:6B:17:4D:96:42:DC:48:37:FF:4D:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JPS59IVkIInzaxdNlkLcSDf_TSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/c47e90-0f08-463b-8810-c07b98f6e765/1/Tnp2TgJPdbSjAOzAY-j8K6-Ewcg.roa
Signing time: Thu 13 Feb 2025 07:04:02 +0000
ROA not before: Thu 13 Feb 2025 07:04:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 34984
IP address blocks: 83.142.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 13 Feb 2025 10:58:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:fe:1f:29:dd:d9:51:34:34:55:b8:e2:65:e2:95:c6:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24f4b9f485642089f36b174d9642dc4837ff4d24
Validity
Not Before: Feb 13 07:04:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e7a764e024f75b4a300ecc063e8fc2baf84c1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:a6:14:55:e5:76:2b:7f:84:ee:74:3b:06:86:
a1:89:62:1b:33:d0:9f:2e:44:34:1e:eb:f6:d7:00:
34:93:0b:54:2f:5c:af:2d:dd:e7:3a:ec:76:37:47:
f4:86:fe:39:74:39:00:19:8d:5b:c3:7b:67:ad:a4:
5b:d6:96:80:2b:b8:ed:d8:3d:48:60:2d:8a:0d:9b:
37:c3:08:16:72:c7:bf:d9:54:41:c3:41:a8:72:15:
b8:93:fc:37:8c:1c:ae:33:d6:fb:92:4e:1b:aa:e0:
63:fb:e5:18:d5:20:22:10:84:8a:ca:a8:f0:6d:83:
26:5d:1c:d7:e3:8e:15:f3:5c:4a:90:5b:26:63:f4:
a6:08:f7:86:3d:b1:0d:a9:7c:03:ca:c0:f2:eb:29:
6e:bb:c7:21:6b:9f:94:68:bb:7a:6c:a6:f7:1c:3e:
c7:2b:1b:44:cc:d4:c9:20:59:5c:98:b1:a1:77:05:
e8:8a:43:d4:70:3c:51:6f:6c:f8:c5:f4:89:60:3c:
9c:8e:5a:9b:a0:22:e5:3e:cb:e1:76:2a:5f:c5:ce:
a5:9f:00:a5:6d:39:06:bb:00:72:b6:65:12:66:2a:
d1:4b:f5:5f:30:3b:22:e9:a6:94:c9:96:4d:e0:52:
45:3b:0b:a6:6a:30:b5:c8:a8:dc:19:3c:7b:55:ee:
f6:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:7A:76:4E:02:4F:75:B4:A3:00:EC:C0:63:E8:FC:2B:AF:84:C1:C8
X509v3 Authority Key Identifier:
keyid:24:F4:B9:F4:85:64:20:89:F3:6B:17:4D:96:42:DC:48:37:FF:4D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JPS59IVkIInzaxdNlkLcSDf_TSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c47e90-0f08-463b-8810-c07b98f6e765/1/Tnp2TgJPdbSjAOzAY-j8K6-Ewcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/c47e90-0f08-463b-8810-c07b98f6e765/1/JPS59IVkIInzaxdNlkLcSDf_TSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.142.28.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:51:fb:6c:a5:55:72:4e:0b:36:5b:e9:d1:7a:34:b9:f4:c0:
90:e7:3a:32:26:0b:53:b2:dc:0c:46:22:4b:ed:22:67:3e:db:
68:07:32:5b:b4:b7:6d:f2:9f:83:30:43:cf:7e:01:35:55:8c:
74:69:0c:81:2f:bc:35:57:07:95:32:bc:e9:a6:71:34:d4:22:
e6:b2:5a:28:99:76:7b:27:a9:df:33:34:43:4e:a5:f0:61:05:
b0:2e:73:4c:2c:60:9f:f9:25:90:b6:c9:e2:8c:0c:5e:6d:8f:
1c:65:c4:c7:de:58:85:99:ad:ee:ad:e9:07:2b:da:f2:36:df:
f1:08:4c:bf:4e:5e:c2:e5:6e:48:bf:fb:9d:08:39:cb:df:a2:
0c:9e:9b:73:22:96:66:1a:de:f7:f1:40:ec:a8:8e:15:a6:a4:
af:3b:2c:aa:14:e1:cb:dc:47:a7:58:ea:33:56:f6:41:0c:b0:
cb:9d:16:62:2d:78:11:6a:50:fa:03:0e:24:8e:e7:04:dc:13:
d7:de:92:0f:5a:79:73:0e:38:b8:b5:ee:81:e3:b7:05:fe:ca:
c7:cf:24:1f:ce:0c:ab:89:c5:b8:58:19:46:4e:7d:e3:62:ea:
d5:57:69:b9:97:45:09:38:e3:c7:ec:70:e3:dc:e7:0f:c5:d4:
f9:32:54:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 06:10:35 2025 by rpki-client