Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/EgIMwjuJQV9TvW7c0NHiAM9fxLg.roa
File: EgIMwjuJQV9TvW7c0NHiAM9fxLg.roa (raw, json)
Hash identifier: pfERIWL5Zfb+BazzzSn8b+WdbZqdTDqjSn5KYYXgk4E=
Subject key identifier: 12:02:0C:C2:3B:89:41:5F:53:BD:6E:DC:D0:D1:E2:00:CF:5F:C4:B8
Certificate issuer: /CN=e680a5610112df203987f32f0e5e15ad35e710d2
Certificate serial: 01923A6B131120F27E71E6BA3A4770119C24
Authority key identifier: E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/EgIMwjuJQV9TvW7c0NHiAM9fxLg.roa
Signing time: Sat 28 Sep 2024 20:55:48 +0000
ROA not before: Sat 28 Sep 2024 20:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 15626
IP address blocks: 213.134.2.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 15:34:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:3a:6b:13:11:20:f2:7e:71:e6:ba:3a:47:70:11:9c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e680a5610112df203987f32f0e5e15ad35e710d2
Validity
Not Before: Sep 28 20:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12020cc23b89415f53bd6edcd0d1e200cf5fc4b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fb:4d:b7:34:df:86:be:e0:7c:81:63:1c:04:
5e:86:ac:92:54:fa:af:c0:9a:a7:18:d3:75:74:e3:
81:2f:12:f6:b5:af:97:80:42:74:1c:e8:66:b7:dc:
3e:3e:0b:f5:38:93:9f:2a:dc:10:4e:0d:fe:55:91:
40:11:15:42:2c:da:8b:9a:f5:4e:02:5b:79:10:7b:
a0:51:9f:dd:62:01:db:bb:65:d1:47:08:84:e1:0c:
aa:65:9e:af:2c:12:38:3d:72:7a:56:24:97:01:ac:
24:1d:49:ba:dd:16:a5:18:fc:1b:ad:b4:e5:e8:9d:
52:b1:63:73:c8:88:2e:f6:5e:a3:a1:17:32:3c:dc:
1e:bd:e3:3c:08:d5:7a:c3:17:f7:4b:17:c6:a4:fe:
f0:e7:98:32:a5:82:62:59:07:12:71:4c:a6:6d:38:
16:06:80:d6:80:e4:23:8f:67:2d:d9:64:6e:d3:af:
d4:1b:d4:62:4c:b4:ca:30:dc:2e:f9:91:68:73:48:
fd:72:4f:52:47:9f:59:aa:1e:c3:bc:b4:67:4c:44:
96:4b:b7:79:ba:9b:4e:88:4b:a1:ad:b6:9a:eb:1d:
ce:ea:f0:d7:df:57:88:d2:f3:8b:8e:ff:90:93:04:
b8:76:3f:91:7f:c4:9d:ff:e3:80:14:a7:5c:79:cf:
6b:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:02:0C:C2:3B:89:41:5F:53:BD:6E:DC:D0:D1:E2:00:CF:5F:C4:B8
X509v3 Authority Key Identifier:
keyid:E6:80:A5:61:01:12:DF:20:39:87:F3:2F:0E:5E:15:AD:35:E7:10:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5oClYQES3yA5h_MvDl4VrTXnENI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/EgIMwjuJQV9TvW7c0NHiAM9fxLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/b40d25-f444-4f60-b162-d1502f7cf234/1/5oClYQES3yA5h_MvDl4VrTXnENI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.134.2.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:dd:4b:a3:e8:22:23:ca:00:9c:5b:74:bf:dd:c6:ff:0a:bd:
9c:21:f1:5c:d6:82:0d:c1:47:90:19:05:e8:d2:26:08:b3:ea:
d8:1e:7b:96:9a:4f:e3:97:54:ef:98:7b:08:dd:80:c0:b9:71:
b2:87:c4:dc:86:ba:4b:f6:ec:02:4f:0c:87:30:da:1e:31:7b:
f3:94:c3:6b:13:b4:f4:bd:e3:53:8c:57:17:4d:d8:a2:4e:a1:
da:b3:ae:e4:28:66:4a:c6:6d:f3:d6:26:09:f9:6f:b7:a6:85:
7f:0d:ba:23:09:37:31:19:c2:96:f6:3a:9a:73:28:ce:6f:cf:
83:22:2c:bc:46:51:f7:c1:96:a1:df:3e:83:ad:e1:93:26:52:
1e:99:19:c0:ef:e2:11:4e:33:d1:40:ab:c8:e1:2c:27:e3:a9:
eb:d1:79:3d:fc:b9:72:1f:20:a0:11:e8:b7:64:c2:38:c4:60:
51:f7:1e:4e:1e:41:0b:07:23:b1:45:25:54:e8:32:53:5b:30:
e9:36:8c:1d:b5:21:15:01:4e:c1:1b:78:71:25:6d:f6:dd:1e:
25:b4:08:b2:45:4b:be:ea:b3:5c:22:ca:6f:b9:fd:c6:a2:9b:
e4:c0:9a:93:65:03:61:87:b6:0c:8d:a4:73:1f:74:6c:92:47:
62:9a:8b:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 20:47:17 2025 by rpki-client