Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/eeGNgRyTsJvSDhwxmOnND7coA_s.roa
File: eeGNgRyTsJvSDhwxmOnND7coA_s.roa (raw, json)
Hash identifier: uphdVSUb+6+ABrXeCk2iTimhJ8a9LMMqlg6VItuIWVk=
Subject key identifier: 79:E1:8D:81:1C:93:B0:9B:D2:0E:1C:31:98:E9:CD:0F:B7:28:03:FB
Certificate issuer: /CN=495c7427af74da9454f1e287c16f9a5f3a77831f
Certificate serial: 018CC56E64498975392C564A355487551258
Authority key identifier: 49:5C:74:27:AF:74:DA:94:54:F1:E2:87:C1:6F:9A:5F:3A:77:83:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SVx0J6902pRU8eKHwW-aXzp3gx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/eeGNgRyTsJvSDhwxmOnND7coA_s.roa
Signing time: Mon 01 Jan 2024 14:29:55 +0000
ROA not before: Mon 01 Jan 2024 14:29:55 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61110
IP address blocks: 185.153.192.0/22 maxlen: 22
185.153.192.0/23 maxlen: 23
2a07:8d80::/29 maxlen: 29
2a07:8d84::/32 maxlen: 32
2a07:8d80::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 28 Mar 2024 08:10:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:64:49:89:75:39:2c:56:4a:35:54:87:55:12:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=495c7427af74da9454f1e287c16f9a5f3a77831f
Validity
Not Before: Jan 1 14:29:55 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=79e18d811c93b09bd20e1c3198e9cd0fb72803fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:a0:16:57:e7:f3:3e:12:be:3d:b6:01:aa:23:
1d:93:c8:bb:d5:a3:e4:20:b0:86:f6:48:fd:d4:b2:
11:8c:72:5a:e9:9c:77:fe:db:9f:0b:d4:03:49:31:
2c:c5:32:3d:52:9c:0a:79:42:d9:5f:dc:e0:a9:18:
13:2f:69:e1:0f:21:8e:27:bd:30:40:81:99:08:34:
a1:4f:93:6e:cf:1a:45:4c:fa:16:60:cf:17:41:2f:
b3:6f:6e:a0:7c:c0:54:71:48:2e:7c:d3:e0:09:02:
97:18:6f:ff:cf:e2:90:58:1d:04:1a:ca:bf:6d:0c:
5a:0a:54:22:65:bf:32:df:9c:3e:16:48:e2:f4:ac:
34:bc:d1:19:d8:c0:ff:d4:10:13:b2:93:0d:c1:b1:
1d:87:ff:99:31:e6:e0:ce:e7:fd:d8:a6:32:df:16:
39:51:23:5b:37:d6:15:7d:3c:03:c3:98:5a:d6:65:
e6:a5:2b:9a:1e:d2:be:55:eb:cd:e2:41:8a:f6:7d:
b6:7a:76:93:30:11:d5:22:ef:f9:fe:5f:9e:4a:d1:
7a:52:3c:37:c8:60:1f:33:9a:d3:cd:a4:ab:59:bb:
a3:22:1d:c7:4f:33:f5:78:17:60:a2:91:6b:5f:53:
43:84:99:42:3b:01:2c:c7:c1:8f:58:2f:c7:80:f4:
b9:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:E1:8D:81:1C:93:B0:9B:D2:0E:1C:31:98:E9:CD:0F:B7:28:03:FB
X509v3 Authority Key Identifier:
keyid:49:5C:74:27:AF:74:DA:94:54:F1:E2:87:C1:6F:9A:5F:3A:77:83:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SVx0J6902pRU8eKHwW-aXzp3gx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/eeGNgRyTsJvSDhwxmOnND7coA_s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/64773f-7c7e-4898-b193-08d8e50fc9c5/1/SVx0J6902pRU8eKHwW-aXzp3gx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.192.0/22
IPv6:
2a07:8d80::/29
Signature Algorithm: sha256WithRSAEncryption
a6:c7:11:a5:a3:69:d5:a9:80:35:33:cf:5f:6e:ce:dd:4e:b2:
23:21:5d:e9:70:d4:7d:b5:40:a6:3a:77:fb:ac:f6:53:82:b5:
0c:6f:e6:3b:29:d9:7a:3f:3c:b0:60:4c:aa:6c:84:09:5b:ab:
d2:1f:77:3b:d2:7e:0c:ca:d6:d1:5f:d5:c5:aa:2e:fd:65:42:
c4:cd:e3:76:97:2d:d5:06:b4:4b:87:35:1c:a7:6d:0b:85:67:
94:a6:d5:84:8d:5a:f6:19:63:ff:ab:56:38:ba:50:69:c9:59:
3b:8e:e8:d5:ab:b5:8b:7d:58:2e:d8:74:0b:e4:55:5a:61:d2:
24:3a:04:73:ee:f7:f4:b6:ca:ab:44:6e:00:f3:72:ed:dc:22:
be:18:22:44:92:20:90:3e:3d:bc:93:92:3b:7b:61:0f:7c:a1:
f0:d9:88:68:f1:e2:ff:24:5d:86:2d:24:b2:65:64:c6:e4:a1:
94:21:a8:08:8e:70:36:36:5a:c2:76:ff:33:a9:5d:cf:2b:b2:
1b:13:a5:95:25:d2:db:2d:95:bc:18:d0:33:20:cf:40:24:c3:
47:9e:9d:3f:19:3a:e9:6e:af:3a:8f:4e:10:5e:15:a9:c0:79:
b0:13:76:c0:83:8f:02:75:c4:34:be:b7:b2:a8:b7:0b:ea:21:
fa:12:44:e2
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYzFbmRJiXU5LFZKNVSHVRJYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5NWM3NDI3YWY3NGRhOTQ1NGYxZTI4N2MxNmY5YTVmM2E3
NzgzMWYwHhcNMjQwMTAxMTQyOTU1WhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3OWUxOGQ4MTFjOTNiMDliZDIwZTFjMzE5OGU5Y2QwZmI3MjgwM2ZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6AWV+fzPhK+PbYBqiMdk8i71aPk
ILCG9kj91LIRjHJa6Zx3/tufC9QDSTEsxTI9UpwKeULZX9zgqRgTL2nhDyGOJ70w
QIGZCDShT5NuzxpFTPoWYM8XQS+zb26gfMBUcUgufNPgCQKXGG//z+KQWB0EGsq/
bQxaClQiZb8y35w+Fkji9Kw0vNEZ2MD/1BATspMNwbEdh/+ZMebgzuf92KYy3xY5
USNbN9YVfTwDw5ha1mXmpSuaHtK+VevN4kGK9n22enaTMBHVIu/5/l+eStF6Ujw3
yGAfM5rTzaSrWbujIh3HTzP1eBdgopFrX1NDhJlCOwEsx8GPWC/HgPS5HwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFHnhjYEck7Cb0g4cMZjpzQ+3KAP7MB8GA1UdIwQY
MBaAFElcdCevdNqUVPHih8Fvml86d4MfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU1Z4MEo2OTAycFJVOGVLSHdXLWFYenAzZ3g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC82NDc3M2YtN2M3ZS00ODk4LWIxOTMt
MDhkOGU1MGZjOWM1LzEvZWVHTmdSeVRzSnZTRGh3eG1Pbk5EN2NvQV9zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC82NDc3M2YtN2M3ZS00ODk4LWIxOTMtMDhkOGU1MGZjOWM1
LzEvU1Z4MEo2OTAycFJVOGVLSHdXLWFYenAzZ3g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCuZnAMA0E
AgACMAcDBQMqB42AMA0GCSqGSIb3DQEBCwUAA4IBAQCmxxGlo2nVqYA1M89fbs7d
TrIjIV3pcNR9tUCmOnf7rPZTgrUMb+Y7Kdl6PzywYEyqbIQJW6vSH3c70n4MytbR
X9XFqi79ZULEzeN2ly3VBrRLhzUcp20LhWeUptWEjVr2GWP/q1Y4ulBpyVk7jujV
q7WLfVgu2HQL5FVaYdIkOgRz7vf0tsqrRG4A83Lt3CK+GCJEkiCQPj28k5I7e2EP
fKHw2Yho8eL/JF2GLSSyZWTG5KGUIagIjnA2NlrCdv8zqV3PK7IbE6WVJdLbLZW8
GNAzIM9AJMNHnp0/GTrpbq86j04QXhWpwHmwE3bAg48CdcQ0vreyqLcL6iH6EkTi
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:37 2025 by rpki-client