Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/QF8tsQVavvh5ZxmKAGR9yNvBF3g.roa
File: QF8tsQVavvh5ZxmKAGR9yNvBF3g.roa (raw, json)
Hash identifier: 2PNwimzEZiqsol2E/Pl7k0OtkQf3Ts5VLgAHAnB8Wzc=
Subject key identifier: 40:5F:2D:B1:05:5A:BE:F8:79:67:19:8A:00:64:7D:C8:DB:C1:17:78
Certificate issuer: /CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Certificate serial: 0193D0FE3BAC7AAE4D037C23E19C531A86ED
Authority key identifier: C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/QF8tsQVavvh5ZxmKAGR9yNvBF3g.roa
Signing time: Mon 16 Dec 2024 19:42:22 +0000
ROA not before: Mon 16 Dec 2024 19:42:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61317
IP address blocks: 93.127.148.0/23 maxlen: 23
93.127.156.0/23 maxlen: 24
Validation: Failed, certificate revoked on Mon 16 Dec 2024 20:23:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:d0:fe:3b:ac:7a:ae:4d:03:7c:23:e1:9c:53:1a:86:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c378bc3bd350eedc4f377c224556b250da6dde6f
Validity
Not Before: Dec 16 19:42:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=405f2db1055abef87967198a00647dc8dbc11778
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:c6:ae:9c:d3:a8:70:b4:b1:89:ad:c7:00:01:
11:08:29:89:c1:ba:d7:19:03:46:ab:4a:e3:a1:0a:
f9:f8:91:b9:91:29:25:03:89:81:c6:1b:0a:82:9d:
41:4f:a2:0b:27:34:8e:63:27:af:8a:c9:04:41:c0:
b2:fe:2d:92:b2:5c:05:56:94:76:d9:db:91:fd:c8:
9c:2d:90:11:e6:bd:85:54:03:29:3d:f9:32:6f:bd:
3a:3c:27:ee:54:79:e5:97:ed:fc:f0:27:70:3b:47:
24:72:54:55:7e:29:7e:87:8f:c0:8d:05:b8:1e:2f:
03:86:c0:ef:04:6d:dd:1c:36:96:3e:00:72:f1:35:
ee:92:fc:91:00:bc:f1:6a:93:6e:37:fa:4c:f2:21:
31:e1:29:97:57:ce:44:d0:e9:f7:b4:d5:c2:ec:28:
9f:03:32:a0:05:70:ab:1f:5d:dc:fd:c1:92:e7:9a:
d9:69:a7:1c:67:37:f0:85:89:93:f0:88:71:4a:9a:
79:21:7b:12:a9:c5:37:1d:21:2e:ff:1d:ea:00:38:
f2:1f:c2:74:73:69:75:b9:ce:fb:59:17:9f:7f:86:
14:ce:e9:0f:a9:fd:18:86:5f:d8:13:fc:39:68:1a:
7e:cc:ed:9b:c4:56:cf:5e:a8:f5:8e:18:d5:7b:cf:
ba:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5F:2D:B1:05:5A:BE:F8:79:67:19:8A:00:64:7D:C8:DB:C1:17:78
X509v3 Authority Key Identifier:
keyid:C3:78:BC:3B:D3:50:EE:DC:4F:37:7C:22:45:56:B2:50:DA:6D:DE:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3i8O9NQ7txPN3wiRVayUNpt3m8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/QF8tsQVavvh5ZxmKAGR9yNvBF3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/be66e4-f14b-4b31-bdaf-4414558fdcbb/1/w3i8O9NQ7txPN3wiRVayUNpt3m8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.127.148.0/23
93.127.156.0/23
Signature Algorithm: sha256WithRSAEncryption
83:b7:6f:0b:6f:3d:e7:a8:8c:2f:6f:d5:4f:95:92:c0:39:25:
d5:f4:3b:08:83:61:c6:27:ef:2b:6d:38:b0:88:82:7d:b1:2b:
c6:a8:53:60:95:ea:e3:94:5e:e3:7a:09:c5:55:2f:f0:05:55:
d8:c2:ee:f4:7e:97:c6:f9:31:bc:14:31:8b:25:f7:68:41:da:
e4:ca:39:93:e8:cf:0e:11:29:fb:ac:19:d5:d0:64:fe:6b:ed:
79:31:50:14:a6:cb:26:a2:97:17:a4:18:95:a6:0c:f8:c4:de:
b8:48:7b:5e:17:60:dd:db:a3:19:1e:e8:e9:e4:9c:27:61:f0:
39:eb:ee:32:44:53:fd:29:fa:bb:39:e1:51:d4:33:f6:30:db:
16:dc:57:54:02:f9:57:11:83:d3:dc:6b:fd:5e:95:af:e0:2d:
d5:45:62:d6:3e:c9:ec:b5:26:ca:4d:6d:b5:ff:44:34:0b:22:
e7:7a:a3:03:41:ba:80:93:31:d9:d6:8a:22:d6:e3:84:6d:64:
6b:30:ee:e3:1a:62:9e:4a:8f:23:8d:f0:67:8a:eb:4a:c7:79:
c4:f9:ef:be:72:3c:8f:cd:15:3e:bc:e3:2b:fb:93:8d:f7:e7:
6c:78:d9:19:25:62:9a:84:83:e4:b2:51:01:a4:10:ab:79:7b:
e1:3f:57:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 23:52:00 2025 by rpki-client