Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/578p0f9z-Azj9oWJKw5TL21xKT4.roa
File: 578p0f9z-Azj9oWJKw5TL21xKT4.roa (raw, json)
Hash identifier: cdXzXs55UpqN+BH042/x+qLUSoT9I7PmTiqca8KsAdg=
Subject key identifier: E7:BF:29:D1:FF:73:F8:0C:E3:F6:85:89:2B:0E:53:2F:6D:71:29:3E
Certificate issuer: /CN=e4d7aaa3d25c2f9ebbec74c830cc0cde9318c8f8
Certificate serial: 0194610B81A42858C352E9A8CC335B7DC891
Authority key identifier: E4:D7:AA:A3:D2:5C:2F:9E:BB:EC:74:C8:30:CC:0C:DE:93:18:C8:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Neqo9JcL5677HTIMMwM3pMYyPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/578p0f9z-Azj9oWJKw5TL21xKT4.roa
Signing time: Mon 13 Jan 2025 19:02:11 +0000
ROA not before: Mon 13 Jan 2025 19:02:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 0
IP address blocks: 94.231.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 15 Jan 2025 19:58:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:61:0b:81:a4:28:58:c3:52:e9:a8:cc:33:5b:7d:c8:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4d7aaa3d25c2f9ebbec74c830cc0cde9318c8f8
Validity
Not Before: Jan 13 19:02:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e7bf29d1ff73f80ce3f685892b0e532f6d71293e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d9:03:44:d4:e1:3c:a1:7e:93:11:96:1c:1f:
f6:c4:17:61:84:3b:1c:b1:43:dd:1e:99:f6:0c:35:
6c:73:b8:35:b5:d9:98:ba:5c:63:43:ea:7f:d2:fb:
2d:ca:c6:64:8b:c0:38:12:65:1a:d3:06:12:15:dd:
ba:5d:26:bb:c8:85:b7:e7:53:51:58:76:91:08:aa:
92:a1:12:a9:12:4b:b2:af:fe:56:4f:bb:a7:14:60:
16:ed:d5:f8:48:44:c8:61:85:07:fe:0c:47:8e:7b:
a6:c5:6c:4b:5e:4f:af:e1:b0:82:94:6e:74:c2:56:
0f:4e:40:3d:d0:ce:57:fb:77:14:8d:bd:81:7a:f3:
1a:23:0e:42:df:66:11:f5:72:7b:ee:0e:93:2e:5c:
78:34:b2:4b:ba:3a:eb:3c:5f:9d:ea:cf:ba:ab:bd:
0b:5b:fe:49:2a:40:34:81:b7:99:ea:31:1c:d2:36:
bd:35:6e:43:d6:d6:39:73:56:14:b5:28:ce:35:ce:
c8:44:e3:6e:36:db:ad:d5:75:74:c0:d8:b6:b4:f3:
ae:f9:b5:86:ab:82:c2:d3:e2:de:02:d1:9b:25:d8:
d9:fb:49:86:61:a8:cb:44:97:3b:88:03:c8:ff:cf:
0b:86:92:9a:27:03:ce:4c:5b:ce:c0:69:89:b5:3c:
e7:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:BF:29:D1:FF:73:F8:0C:E3:F6:85:89:2B:0E:53:2F:6D:71:29:3E
X509v3 Authority Key Identifier:
keyid:E4:D7:AA:A3:D2:5C:2F:9E:BB:EC:74:C8:30:CC:0C:DE:93:18:C8:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Neqo9JcL5677HTIMMwM3pMYyPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/578p0f9z-Azj9oWJKw5TL21xKT4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/8b4147-e6e0-4d80-a93f-ef63b816dd35/1/5Neqo9JcL5677HTIMMwM3pMYyPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.231.215.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:64:9e:23:8c:ae:a9:d2:46:2f:88:d2:8e:e4:a9:d0:b8:0d:
55:7a:57:d4:24:98:aa:ff:d7:be:2c:26:fe:34:c7:63:02:f2:
af:9f:9d:76:5b:c4:5a:3d:68:8e:ab:9f:64:c8:ec:ce:d2:18:
9b:72:d7:34:bf:56:06:e2:76:cc:b8:2e:6e:68:22:69:d1:a8:
e1:35:6e:14:65:d2:bc:ae:38:1c:8d:b5:a1:01:33:fb:b4:92:
5b:aa:fe:1d:cc:25:94:7a:3f:74:01:58:bb:88:9c:bc:6a:5d:
9b:c0:c9:61:0f:b6:f3:95:84:6b:0f:79:b1:9d:19:2a:76:9a:
92:8f:b0:78:52:a7:1f:7d:2a:48:ba:3e:96:04:12:bd:8d:a7:
62:dd:1e:d3:2e:0f:51:82:06:3f:7e:ac:05:8d:4a:43:37:90:
61:e8:81:64:9b:04:2f:5d:0f:c2:39:7d:d8:b6:11:49:6d:14:
53:cb:54:ac:58:7f:e3:08:4a:03:a1:9e:65:df:86:0e:4c:79:
94:f8:ff:03:11:44:73:54:cb:19:7f:34:93:45:52:91:be:27:
53:1b:4b:ad:6e:b1:ad:f9:3e:b0:21:a4:57:b1:d7:40:e5:b8:
fc:c7:5c:f1:9a:72:18:4f:a5:29:b6:de:54:63:38:31:c8:d8:
72:71:9c:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 20:36:07 2025 by rpki-client