Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/48f99e-1a10-45c3-aa34-4cd15cbc501b/1/exIyO0-sneEgg_mhwpvqcBUcOVw.roa
File: exIyO0-sneEgg_mhwpvqcBUcOVw.roa (raw, json)
Hash identifier: U9gfeLP9258ow9yoZzja3X/H3Xm/A+5Emz0CczeZCnI=
Subject key identifier: 7B:12:32:3B:4F:AC:9D:E1:20:83:F9:A1:C2:9B:EA:70:15:1C:39:5C
Certificate issuer: /CN=95a904ac6093e1e229a074c50506ffecda010ccf
Certificate serial: 018D88802440B5E8046C7C227AB159FDDD99
Authority key identifier: 95:A9:04:AC:60:93:E1:E2:29:A0:74:C5:05:06:FF:EC:DA:01:0C:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lakErGCT4eIpoHTFBQb_7NoBDM8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/48f99e-1a10-45c3-aa34-4cd15cbc501b/1/exIyO0-sneEgg_mhwpvqcBUcOVw.roa
Signing time: Thu 08 Feb 2024 11:35:15 +0000
ROA not before: Thu 08 Feb 2024 11:35:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 50689
IP address blocks: 195.210.0.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:47:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:88:80:24:40:b5:e8:04:6c:7c:22:7a:b1:59:fd:dd:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=95a904ac6093e1e229a074c50506ffecda010ccf
Validity
Not Before: Feb 8 11:35:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b12323b4fac9de12083f9a1c29bea70151c395c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:80:7b:45:64:68:d8:d5:04:e0:01:fc:a5:b6:
43:b2:1c:07:cd:df:1c:54:3e:0c:c3:48:fd:46:01:
a9:0a:d5:a3:32:28:03:64:71:87:13:47:89:3b:d9:
de:32:5c:25:02:91:49:9a:dd:67:b0:0a:bf:51:74:
8b:54:5a:b2:0a:9a:a4:7d:dc:75:a8:dc:ea:b0:66:
3a:0f:c1:9c:97:d9:99:3c:bf:07:72:f6:cc:20:e1:
f7:04:db:e6:7b:84:65:e1:70:0e:28:f1:58:53:ad:
ca:34:63:99:57:4f:7d:f3:fe:1a:3d:b3:63:ba:14:
ec:3e:53:74:8e:84:28:7e:a9:a0:f2:4b:2e:35:cd:
69:03:82:17:23:53:df:b7:62:73:8d:80:fd:ca:cf:
49:d3:59:4d:29:1e:6f:d6:03:44:3c:86:9b:dc:95:
ef:4c:66:27:04:d9:55:74:05:6c:41:5e:87:ac:96:
43:48:6a:d4:85:c0:0a:7c:cf:ab:77:e7:54:5c:52:
da:69:27:aa:f3:95:68:b8:8d:6f:49:3b:d1:71:dd:
0c:1b:0c:eb:7e:fd:fa:c4:35:65:a5:bc:a2:98:e0:
eb:75:05:50:d4:13:05:f7:c9:dc:fe:5e:66:f8:2c:
bc:ee:26:73:0c:74:66:ad:49:4e:53:89:0b:6e:38:
cd:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:12:32:3B:4F:AC:9D:E1:20:83:F9:A1:C2:9B:EA:70:15:1C:39:5C
X509v3 Authority Key Identifier:
keyid:95:A9:04:AC:60:93:E1:E2:29:A0:74:C5:05:06:FF:EC:DA:01:0C:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lakErGCT4eIpoHTFBQb_7NoBDM8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/48f99e-1a10-45c3-aa34-4cd15cbc501b/1/exIyO0-sneEgg_mhwpvqcBUcOVw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/48f99e-1a10-45c3-aa34-4cd15cbc501b/1/lakErGCT4eIpoHTFBQb_7NoBDM8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.210.0.0/23
Signature Algorithm: sha256WithRSAEncryption
8b:b3:a0:19:d5:4e:4c:fb:77:f7:3c:62:88:fe:51:90:f8:93:
05:82:7a:4a:34:5d:33:00:81:a9:a0:d9:41:a9:15:5a:f7:42:
c6:a4:25:fd:d6:77:bb:25:23:90:a9:53:27:1a:ef:0b:09:64:
7b:ea:83:4c:d5:49:82:d0:bb:4b:0e:3c:1d:72:17:e5:ea:1b:
98:ac:14:13:fa:b4:02:34:50:56:c0:f4:ca:32:f5:1e:a2:ee:
3c:cd:65:ac:24:94:76:16:29:50:60:0e:b4:31:fb:42:72:5f:
d9:93:a4:5a:95:0f:89:23:40:23:d1:f4:60:db:e9:ca:61:6b:
42:75:37:0d:78:a4:98:91:92:dd:52:ca:3e:96:df:d2:bc:55:
13:42:46:94:89:2f:f3:ce:9e:a2:81:37:ef:db:38:70:84:81:
fe:68:b0:6a:c2:26:4b:6d:33:e2:f7:04:18:72:a1:15:b7:2a:
78:b1:60:10:9e:4e:41:8a:3f:66:69:29:9b:fe:3b:21:fd:dc:
72:59:6a:41:b8:5b:95:07:b1:3d:5a:58:eb:f5:15:b0:78:ca:
0a:9a:63:63:c4:7a:ae:a2:69:95:54:cc:8b:d2:9a:55:e2:45:
66:80:1f:0a:0c:ef:cc:4d:a4:17:d8:18:d7:26:63:a7:c8:2d:
f6:03:95:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:48:07 2025 by rpki-client