Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/7eb074-1331-4dea-9e60-1f1ec400fa50/1/FeMYUzuwU6w0CPhSpatgdwBZ34M.roa
File: FeMYUzuwU6w0CPhSpatgdwBZ34M.roa (raw, json)
Hash identifier: nDbqZVIt0Ei0WIqc0cAFcIo+JdQHcjTbJ9ss9i4SowY=
Subject key identifier: 15:E3:18:53:3B:B0:53:AC:34:08:F8:52:A5:AB:60:77:00:59:DF:83
Certificate issuer: /CN=03e563477ca2bde69ef7943991f95333057b3e36
Certificate serial: 01937756AF4F34B262E79C60D9899AEC7F32
Authority key identifier: 03:E5:63:47:7C:A2:BD:E6:9E:F7:94:39:91:F9:53:33:05:7B:3E:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A-VjR3yiveae95Q5kflTMwV7PjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/7eb074-1331-4dea-9e60-1f1ec400fa50/1/FeMYUzuwU6w0CPhSpatgdwBZ34M.roa
Signing time: Fri 29 Nov 2024 09:53:09 +0000
ROA not before: Fri 29 Nov 2024 09:53:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214679
IP address blocks: 45.88.57.0/24 maxlen: 24
2a0d:3480::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:77:56:af:4f:34:b2:62:e7:9c:60:d9:89:9a:ec:7f:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03e563477ca2bde69ef7943991f95333057b3e36
Validity
Not Before: Nov 29 09:53:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=15e318533bb053ac3408f852a5ab60770059df83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:4e:e0:ac:55:c6:4d:3e:ff:a1:18:f7:35:64:
34:dc:17:70:ca:60:c2:cc:c4:c9:7b:8c:c9:b6:68:
e9:b6:93:c4:b3:89:16:7f:14:8f:b2:bc:8c:55:0a:
53:fa:36:45:4f:23:f2:f7:46:aa:4f:3b:cc:76:06:
7d:15:86:07:73:5e:19:3f:5e:25:40:12:25:2f:8d:
59:fb:32:15:9f:de:58:65:2f:7e:12:3f:4f:43:fd:
ad:a1:e9:54:31:7e:3b:d2:86:96:7f:00:7f:cf:66:
77:f5:13:97:40:b9:4b:11:f3:7f:ef:f4:fe:01:20:
7a:d5:44:0c:56:a5:35:7e:cc:14:d5:c9:7d:80:59:
0b:92:ad:5d:78:59:24:23:95:c4:32:05:a8:d6:1c:
28:fe:92:08:97:bf:aa:ed:86:4e:03:49:2b:a7:f4:
10:c8:8e:a8:6b:65:f6:05:2e:7b:c5:99:a4:25:ed:
66:2e:05:2c:86:0c:42:77:8c:58:ca:a3:7c:5b:2e:
25:e8:d5:ad:79:25:14:ce:ed:26:ae:84:c2:c7:19:
26:c4:d7:5d:73:c3:77:d1:68:f0:b0:4e:d8:a4:8b:
06:ac:25:11:bc:af:e2:75:0e:39:9a:fd:8c:04:ef:
a4:af:e2:7f:6a:59:9a:91:72:69:f7:58:d7:38:99:
9b:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E3:18:53:3B:B0:53:AC:34:08:F8:52:A5:AB:60:77:00:59:DF:83
X509v3 Authority Key Identifier:
keyid:03:E5:63:47:7C:A2:BD:E6:9E:F7:94:39:91:F9:53:33:05:7B:3E:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A-VjR3yiveae95Q5kflTMwV7PjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/7eb074-1331-4dea-9e60-1f1ec400fa50/1/FeMYUzuwU6w0CPhSpatgdwBZ34M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/7eb074-1331-4dea-9e60-1f1ec400fa50/1/A-VjR3yiveae95Q5kflTMwV7PjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.57.0/24
IPv6:
2a0d:3480::/29
Signature Algorithm: sha256WithRSAEncryption
35:b0:ac:64:c5:65:6a:7b:49:1d:19:f0:cb:93:6d:62:37:68:
dc:a6:4d:4b:57:a1:d3:bc:c0:f4:5c:6e:b7:67:15:92:d6:6a:
be:74:16:40:29:12:0f:3c:a4:0b:0a:a7:7a:eb:67:1e:ee:74:
1e:02:db:38:1e:19:29:db:2a:c3:2c:01:07:a4:86:6d:f6:ea:
e5:8a:f2:a7:59:e5:11:05:be:f4:55:23:e5:68:e9:7b:87:98:
8b:a5:de:29:82:41:d7:a7:ac:5d:a5:f7:a8:6b:f0:ac:6f:77:
f6:fd:cd:d5:1f:68:41:78:19:c9:b2:d9:85:c9:08:8a:93:26:
8c:95:90:fe:11:24:2b:14:40:b5:9e:f2:05:e6:95:31:3a:ad:
a0:db:ef:f2:84:6f:8b:31:8f:4f:2f:22:47:22:be:36:c0:ec:
44:49:7b:cf:47:fe:e6:d7:f4:41:1e:10:e1:d4:5f:0f:25:63:
fd:14:21:ee:9b:bf:3a:62:81:e8:eb:a5:81:20:0d:1d:9d:ed:
c6:c8:58:0f:50:1a:82:4d:55:44:58:ab:60:59:3a:24:d1:78:
f5:06:02:34:3f:a3:37:29:37:0b:63:13:19:27:d8:5d:a1:eb:
8f:d7:be:cc:80:ac:89:01:fd:86:1b:e1:50:08:a4:f4:1f:6b:
5c:43:35:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 17:14:05 2025 by rpki-client