Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Esgdyz22MdlNRRwyUYZy4mi52Ls.roa
File: Esgdyz22MdlNRRwyUYZy4mi52Ls.roa (raw, json)
Hash identifier: r9eA+sBjsSw1siRI+9DQ9/eo2UfsXWj2o8F+gKhLS4E=
Subject key identifier: 12:C8:1D:CB:3D:B6:31:D9:4D:45:1C:32:51:86:72:E2:68:B9:D8:BB
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01933170B59738228BCDE20AA2C8345AB27B
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Esgdyz22MdlNRRwyUYZy4mi52Ls.roa
Signing time: Fri 15 Nov 2024 20:08:10 +0000
ROA not before: Fri 15 Nov 2024 20:08:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 93.123.74.0/24 maxlen: 24
93.123.75.0/24 maxlen: 24
193.58.122.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 09 Dec 2024 07:21:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:31:70:b5:97:38:22:8b:cd:e2:0a:a2:c8:34:5a:b2:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Nov 15 20:08:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12c81dcb3db631d94d451c32518672e268b9d8bb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a3:d8:4f:e0:10:db:4e:33:7c:f3:34:6a:a0:
e7:13:30:d4:9f:dd:8a:0b:67:73:ce:dc:80:1b:1a:
2d:86:16:eb:f4:17:ba:dd:5e:83:cc:60:25:9d:ef:
6b:e4:57:49:ea:a6:16:d8:75:9e:7d:ed:ce:d9:bc:
4f:3f:74:3b:25:3d:43:e0:e8:1b:c6:8d:2c:b3:6b:
46:cc:29:46:49:ba:f9:4a:c7:8f:a5:75:95:7a:00:
a3:49:3c:fd:5a:0a:11:85:08:d7:38:7d:e3:aa:02:
e6:9c:49:25:9f:51:2f:d1:3c:c4:e8:ae:8e:35:59:
be:06:ac:f6:75:c3:e7:b5:ee:ec:cb:c2:c2:2c:9e:
42:dd:e7:e3:d9:fd:46:13:dc:5a:6f:55:21:86:04:
52:02:a4:e8:f5:1f:d1:78:ca:54:e9:c2:63:09:c1:
b4:21:7e:16:38:4f:1d:06:31:e7:ac:c7:6d:bb:2b:
41:da:22:ea:57:a3:7a:49:9b:a3:6e:8c:6e:43:64:
2f:5a:d0:59:97:48:6d:78:1d:5d:d9:04:de:2a:4e:
43:1c:9e:c9:ea:fe:89:07:8c:b6:b8:35:e0:0a:0e:
16:fd:10:9e:70:e9:44:e7:e8:9c:a9:86:8e:59:97:
0d:7b:f9:3a:08:66:b2:62:0b:64:e9:42:b0:dc:7c:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:C8:1D:CB:3D:B6:31:D9:4D:45:1C:32:51:86:72:E2:68:B9:D8:BB
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/Esgdyz22MdlNRRwyUYZy4mi52Ls.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.123.74.0/23
193.58.122.0/24
Signature Algorithm: sha256WithRSAEncryption
98:58:8c:ca:0a:83:a1:bb:71:e2:23:12:8d:9d:cb:53:85:e7:
60:b8:d5:31:cf:84:78:3c:30:9e:38:7a:0d:74:1f:d3:32:19:
32:ce:55:d7:a4:30:1b:49:84:0a:c5:4d:91:7a:78:03:ec:de:
5c:19:26:e6:5c:67:82:ab:eb:8e:d1:36:d8:f3:9f:57:54:a9:
70:e0:12:b3:7d:d3:c5:8e:b2:2b:32:f2:d0:22:05:44:f6:e8:
74:41:c3:5c:48:45:af:52:79:99:fe:65:0b:8d:20:ba:23:ab:
9f:da:90:08:db:74:96:48:47:96:bb:ca:59:ff:18:50:ff:06:
1a:10:c8:69:69:c4:0e:72:df:91:48:46:59:f7:13:e1:36:4b:
7b:fd:0c:c6:4c:06:35:ab:7e:d5:24:92:52:e3:e4:06:c6:d1:
59:fe:45:9d:62:96:33:98:ba:15:b5:94:01:cc:13:e9:94:02:
80:cd:52:64:fe:b9:c2:d5:cc:19:27:5b:a3:58:d6:a1:64:01:
b8:da:0c:bd:d5:08:f6:72:12:98:64:f0:4a:f0:87:50:b0:16:
77:bf:54:8d:a2:ee:a5:08:4b:81:51:e8:35:a0:78:b4:41:5c:
e9:8c:68:bd:84:0d:c5:ba:33:5a:61:3f:a0:5d:09:f2:76:36:
16:34:c3:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:07:03 2025 by rpki-client