Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/EYnk0n_8lKtuIOh6nDh1JF2Rd_Q.roa
File: EYnk0n_8lKtuIOh6nDh1JF2Rd_Q.roa (raw, json)
Hash identifier: 80mqdazaEF+r1qF9mvCI4l4RCKohRoYsI3jxS7pGKU0=
Subject key identifier: 11:89:E4:D2:7F:FC:94:AB:6E:20:E8:7A:9C:38:75:24:5D:91:77:F4
Certificate issuer: /CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a
Certificate serial: 0192FD4D197A7FD2532C81AA4BA7F8ED3808
Authority key identifier: 68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/EYnk0n_8lKtuIOh6nDh1JF2Rd_Q.roa
Signing time: Tue 05 Nov 2024 17:09:01 +0000
ROA not before: Tue 05 Nov 2024 17:09:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 193.107.40.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:fd:4d:19:7a:7f:d2:53:2c:81:aa:4b:a7:f8:ed:38:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68bd10f1b14bbb2767ffdcaec4b4172880ba461a
Validity
Not Before: Nov 5 17:09:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1189e4d27ffc94ab6e20e87a9c3875245d9177f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4b:52:65:ed:78:b1:73:dc:79:4d:aa:1a:36:
81:d4:d2:00:55:8f:f3:4f:20:36:ba:46:e5:d7:97:
44:b6:c2:b3:2d:12:02:67:4e:fa:20:d5:ec:d7:73:
2b:c3:93:b1:7e:f4:00:ee:8f:61:ba:51:15:1e:ed:
c0:cb:e6:87:c0:6b:a4:53:ee:8c:d2:13:3b:bc:58:
17:d0:cb:ca:56:64:a8:3b:27:c0:22:c7:24:c2:fd:
8d:31:60:57:28:3c:a3:cb:a8:3b:6c:2a:38:71:e9:
cc:9d:e1:10:31:e8:3c:32:b0:0a:72:75:97:7d:da:
cc:30:53:b9:67:9c:9a:ed:ea:6c:51:f2:63:82:d3:
2f:21:33:46:a7:32:b8:27:b0:f3:b6:a0:db:e9:95:
ad:14:53:7b:0e:ea:2f:d2:17:f9:53:02:18:b4:b6:
ea:2b:b2:4a:60:58:89:cd:ae:fc:ee:4c:8b:52:5b:
67:7b:e7:6a:a4:65:d9:3e:24:95:dc:81:e6:fc:a4:
dd:54:e3:e8:7b:10:42:52:ba:fd:28:1a:61:51:5d:
52:b2:8d:fd:d4:4e:48:9e:44:4e:c9:09:35:e9:5d:
09:58:26:1b:9d:98:02:9c:d7:22:c3:5e:ba:37:42:
2a:0e:08:db:f4:fb:7a:3e:ed:77:cb:22:c2:ee:38:
57:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:89:E4:D2:7F:FC:94:AB:6E:20:E8:7A:9C:38:75:24:5D:91:77:F4
X509v3 Authority Key Identifier:
keyid:68:BD:10:F1:B1:4B:BB:27:67:FF:DC:AE:C4:B4:17:28:80:BA:46:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aL0Q8bFLuydn_9yuxLQXKIC6Rho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/EYnk0n_8lKtuIOh6nDh1JF2Rd_Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ade856-8960-4a29-8956-9fe7d928d9be/1/aL0Q8bFLuydn_9yuxLQXKIC6Rho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.107.40.0/22
Signature Algorithm: sha256WithRSAEncryption
22:a2:65:ef:0c:6e:7c:13:f2:0e:7c:a6:3f:ea:6b:89:0e:00:
dd:a5:0e:7e:a7:bd:b3:6c:21:44:52:78:12:10:d1:0f:ba:e7:
b5:b6:ff:20:25:c1:18:9e:73:9b:75:48:62:9d:99:74:db:05:
b3:0e:86:38:db:06:87:e8:8b:cc:90:d3:96:6a:ca:c9:dc:e3:
d4:be:10:ea:23:8f:0c:b2:db:30:c0:21:69:b7:e4:7c:a9:f8:
bc:3b:85:d3:ab:be:6d:f5:6e:f7:f7:ab:29:17:df:ad:37:34:
5e:31:cb:04:a1:cd:f4:9d:60:62:3e:32:fe:1d:88:1f:c9:10:
6d:98:54:10:52:a8:03:05:1d:69:35:21:10:08:06:67:e6:59:
4f:72:60:ea:df:d7:e0:d1:40:25:77:c6:7e:cc:a4:4b:d6:1c:
37:a5:3a:e0:41:2e:64:81:8c:05:74:c8:3e:67:10:db:7c:be:
04:41:fa:7d:66:fd:25:03:8c:35:ea:54:0f:59:9b:2d:d0:ac:
6f:ff:6b:83:9d:df:fe:05:27:a7:31:a9:7b:36:98:ee:29:d3:
fa:60:7b:9e:fa:b0:c7:54:26:83:fd:7c:e4:87:ab:00:b5:f8:
32:41:18:79:8b:0d:b1:20:b2:84:23:5b:8f:9f:18:ac:d9:0b:
3d:0d:0e:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:52:05 2025 by rpki-client