Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/EqL5EMYhN_eT2ojmOGgEgOmFzd8.roa
File: EqL5EMYhN_eT2ojmOGgEgOmFzd8.roa (raw, json)
Hash identifier: s5tXuNJQ6aD+AL6/HOGkHtHtJlbGarea7/P+GkOb7uE=
Subject key identifier: 12:A2:F9:10:C6:21:37:F7:93:DA:88:E6:38:68:04:80:E9:85:CD:DF
Certificate issuer: /CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce
Certificate serial: 0195F3B17B64B1E2D7D2FE904E2DC86EF426
Authority key identifier: D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/EqL5EMYhN_eT2ojmOGgEgOmFzd8.roa
Signing time: Tue 01 Apr 2025 23:30:49 +0000
ROA not before: Tue 01 Apr 2025 23:30:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 185.244.0.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 02 Apr 2025 12:16:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f3:b1:7b:64:b1:e2:d7:d2:fe:90:4e:2d:c8:6e:f4:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6aa3fbc78e31229157c78b6d23a65eb2e353dce
Validity
Not Before: Apr 1 23:30:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12a2f910c62137f793da88e638680480e985cddf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:c0:f2:b4:f6:22:c3:2d:46:02:80:4f:38:bb:
32:d8:37:99:93:cc:58:67:05:d6:a7:ee:57:75:e1:
b8:f4:90:b0:02:78:a2:0f:02:72:7b:7b:b9:5c:22:
4d:95:b6:d4:df:09:de:aa:f4:a9:30:92:bb:14:42:
f6:be:0c:15:f6:32:24:01:1a:5d:e9:bb:a2:97:25:
de:74:f4:de:e1:15:b3:d4:3b:77:6e:f1:64:06:88:
1b:de:82:d0:c2:8a:58:e4:cd:3d:6f:61:7e:35:9d:
1b:77:c4:15:21:41:89:45:2a:6c:16:f5:93:13:98:
d2:e8:4c:11:51:06:d4:8b:ef:84:05:15:11:87:7a:
e1:9d:f7:2b:5b:8b:76:48:54:35:0d:87:19:16:f1:
3f:3d:11:7f:89:eb:fc:0d:80:71:e1:06:c8:a6:41:
c6:09:dc:78:92:33:b9:64:e7:e3:be:31:f1:9e:4f:
59:26:86:cb:46:39:af:88:8e:a9:f1:b9:c6:7c:35:
10:f6:31:ee:6f:ef:fc:0b:10:96:c0:97:cd:94:1f:
17:59:63:5e:4e:72:b6:12:93:cb:ec:b4:8d:d0:1d:
04:fa:dd:2d:c9:5c:cc:3d:5e:99:4a:ae:af:18:52:
2f:2c:1b:e6:fa:11:a4:aa:d1:e5:33:c5:79:2c:93:
a0:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:A2:F9:10:C6:21:37:F7:93:DA:88:E6:38:68:04:80:E9:85:CD:DF
X509v3 Authority Key Identifier:
keyid:D6:AA:3F:BC:78:E3:12:29:15:7C:78:B6:D2:3A:65:EB:2E:35:3D:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1qo_vHjjEikVfHi20jpl6y41Pc4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/EqL5EMYhN_eT2ojmOGgEgOmFzd8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/6cf8be-253d-46d5-ab7c-8276c8aac50e/1/1qo_vHjjEikVfHi20jpl6y41Pc4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.0.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:a5:88:b9:18:c6:8b:94:cb:38:13:51:3e:c5:b0:46:04:ab:
02:a6:88:ec:b3:ec:5c:fb:df:1c:c1:64:81:80:bc:8e:c4:92:
84:7c:f7:e2:77:16:ec:b1:ad:4e:00:24:52:c8:fb:a9:6a:6b:
c8:b1:c8:9e:1e:24:3a:cd:32:ab:bd:64:83:2b:9c:24:1c:4d:
79:85:f2:17:8e:a6:34:ef:00:b7:8a:1e:5e:da:46:d2:35:10:
67:68:47:26:2e:fb:b0:e3:8d:4b:93:f2:d7:c4:c6:7a:ef:ec:
84:1e:2c:1c:00:d6:d1:c8:ab:33:74:0d:20:c3:30:3a:91:58:
3d:e8:04:b2:21:c2:d5:45:3b:68:ba:64:ab:36:61:dd:d8:2e:
ea:69:2d:c3:1e:a6:59:c8:3c:09:fe:7a:c4:ef:d2:81:17:4c:
37:f9:24:ca:08:e3:a5:2c:4c:f6:48:1a:50:38:5f:7f:d3:a3:
1f:bc:a5:7b:64:ba:d3:2c:db:f8:ca:c5:fb:71:25:ab:1c:bd:
17:54:46:68:da:25:89:f3:70:4a:e0:d2:ef:c3:0d:c4:bd:b6:
a0:ef:66:51:5d:18:65:30:c0:be:f5:94:d4:db:84:14:95:8b:
8b:c6:c7:1b:bc:58:2c:e6:f4:6c:dc:8f:8a:98:55:10:0c:2b:
25:16:2f:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 00:46:15 2025 by rpki-client