Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/oBn9IpXabM8H6G9EzAuI0Zw9fGE.roa
File: oBn9IpXabM8H6G9EzAuI0Zw9fGE.roa (raw, json)
Hash identifier: Tn+0mqQjGrcYP/WOGg17vmXWuFgEiSkNno6BC4QKLSY=
Subject key identifier: A0:19:FD:22:95:DA:6C:CF:07:E8:6F:44:CC:0B:88:D1:9C:3D:7C:61
Certificate issuer: /CN=11125404c6dd472f1001ed9ffdf726762ac7701d
Certificate serial: 019418AC187F8E67D0C1F8751357AF86A0D6
Authority key identifier: 11:12:54:04:C6:DD:47:2F:10:01:ED:9F:FD:F7:26:76:2A:C7:70:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ERJUBMbdRy8QAe2f_fcmdirHcB0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/oBn9IpXabM8H6G9EzAuI0Zw9fGE.roa
Signing time: Mon 30 Dec 2024 17:45:19 +0000
ROA not before: Mon 30 Dec 2024 17:45:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203446
IP address blocks: 92.242.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 21:48:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:18:ac:18:7f:8e:67:d0:c1:f8:75:13:57:af:86:a0:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11125404c6dd472f1001ed9ffdf726762ac7701d
Validity
Not Before: Dec 30 17:45:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a019fd2295da6ccf07e86f44cc0b88d19c3d7c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:cf:ba:4f:0d:c1:63:cc:52:4d:97:df:83:b1:
85:c4:98:54:a4:39:fb:dd:26:7f:6d:d2:b3:a4:41:
11:56:76:6f:63:92:62:35:e2:1a:8a:ee:76:31:c3:
b5:9f:2f:bc:ea:d6:e5:fc:04:b4:49:1f:0d:cd:a5:
44:af:b6:de:93:6f:93:1d:35:71:52:35:f9:80:83:
18:74:8b:9a:9d:e1:c5:99:11:cf:90:a5:54:ee:4e:
ac:fe:7d:d5:98:be:b7:bb:0e:5b:c6:64:ab:81:63:
45:c8:a6:b3:4e:cc:f5:f8:79:25:43:b9:d2:2d:de:
b7:2f:9f:33:b2:62:36:a7:1c:f7:f2:9a:d8:44:d1:
11:f0:b9:97:d0:a0:29:c3:b4:45:81:56:f4:a7:f6:
75:ed:62:8a:2a:76:b4:6b:f4:fc:87:d3:8e:72:2d:
2e:ef:0d:2a:f7:07:ff:c2:df:58:7d:54:f8:ed:89:
49:96:37:28:74:17:4b:47:72:6b:a6:27:01:9e:6a:
09:af:b1:04:09:5b:15:64:1e:68:a9:af:68:ea:75:
63:37:9a:bc:9e:12:f2:35:ef:e5:8b:00:1a:da:cd:
8c:19:3a:2c:de:82:4b:08:d4:e3:90:3d:0a:f4:0e:
cc:a5:17:75:65:d3:09:03:12:9a:f9:06:ea:e3:7a:
3c:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:19:FD:22:95:DA:6C:CF:07:E8:6F:44:CC:0B:88:D1:9C:3D:7C:61
X509v3 Authority Key Identifier:
keyid:11:12:54:04:C6:DD:47:2F:10:01:ED:9F:FD:F7:26:76:2A:C7:70:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ERJUBMbdRy8QAe2f_fcmdirHcB0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/oBn9IpXabM8H6G9EzAuI0Zw9fGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/cf9cd6-e717-4dda-82ef-6dfe0f7d53bd/1/ERJUBMbdRy8QAe2f_fcmdirHcB0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.242.166.0/24
Signature Algorithm: sha256WithRSAEncryption
85:a7:53:66:b9:9a:d1:1e:cc:46:8b:c6:a4:7d:d0:35:be:81:
35:b4:93:99:b4:44:62:26:04:7e:43:84:d3:9b:ff:ce:3b:ea:
f7:b6:d5:22:f3:e9:fc:17:aa:ef:9a:b5:5a:10:ca:53:80:00:
05:46:74:05:28:4a:f6:70:ed:29:38:ba:34:19:e2:10:c8:52:
26:7b:13:38:29:4d:02:c1:84:58:40:88:39:13:37:41:a1:c2:
6f:73:d8:67:cb:77:06:fc:17:b3:26:c0:e7:65:d1:d2:9d:28:
1f:61:da:32:13:aa:aa:06:32:b7:3a:29:7b:71:67:5a:61:6b:
b5:62:6c:1a:61:ff:62:ab:e2:12:32:c4:b9:26:5f:34:25:7d:
98:b0:13:c3:27:fe:79:dc:e7:29:2b:e8:9f:c5:a2:fe:37:2b:
40:fc:de:0d:fe:31:b4:6b:ca:3d:25:d3:24:81:48:8e:84:b8:
a2:99:8d:97:6f:fb:b7:f8:a5:19:38:37:27:64:43:f6:2c:f8:
68:d8:86:f6:47:04:4c:9f:54:11:f2:dc:85:30:26:a0:3d:62:
77:98:1e:b4:24:64:70:60:80:d1:55:8f:18:a1:01:02:fe:47:
8f:90:26:c5:ae:3e:ba:51:fc:c3:18:7f:28:8c:ef:7c:60:0f:
1a:fa:2c:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 17:51:55 2025 by rpki-client