Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/eDs-oS9vrlsOBbOdQkgZM0fu2B8.roa
File: eDs-oS9vrlsOBbOdQkgZM0fu2B8.roa (raw, json)
Hash identifier: eCbBn5MRCbHr1cROCy4YWKzFM1GsQ7hDP1UTOLPi9fA=
Subject key identifier: 78:3B:3E:A1:2F:6F:AE:5B:0E:05:B3:9D:42:48:19:33:47:EE:D8:1F
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 019427B57E0FEE8920A5A3FF44D049B96D11
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/eDs-oS9vrlsOBbOdQkgZM0fu2B8.roa
Signing time: Thu 02 Jan 2025 15:49:53 +0000
ROA not before: Thu 02 Jan 2025 15:49:53 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 91.201.142.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 20 Mar 2025 14:48:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:7e:0f:ee:89:20:a5:a3:ff:44:d0:49:b9:6d:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jan 2 15:49:53 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=783b3ea12f6fae5b0e05b39d4248193347eed81f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e7:6f:4b:67:af:c5:76:d3:09:5a:ab:14:59:
4c:22:d0:37:d0:3e:68:61:80:7a:b1:78:d7:6e:eb:
12:47:37:3a:53:fe:b0:26:c3:01:5a:f3:4f:a6:c0:
ff:bf:c1:33:f4:b8:0b:77:a9:8c:7b:c9:ca:a0:dc:
ef:ea:38:8b:2f:91:ff:30:ca:ec:44:07:d7:2d:08:
89:d6:cb:47:da:d0:6f:02:bb:d0:89:53:96:63:96:
eb:87:86:3d:7f:31:aa:cb:7d:0a:6f:d8:2c:66:c1:
1e:6e:6d:f3:07:2e:95:f6:55:eb:6e:4a:2b:01:9c:
62:59:f7:e5:53:05:40:a7:4f:ac:35:c8:2e:80:78:
bd:f0:3f:87:d3:c5:aa:da:7d:44:f8:21:ac:1d:d9:
6b:c1:fc:b4:bc:d5:ea:ef:d7:3d:3f:98:95:c9:80:
61:b2:44:8d:21:cc:33:28:a4:9d:b8:c3:04:32:87:
46:53:b2:22:5d:3f:69:fb:e8:bf:d5:14:12:77:3e:
7f:79:4b:7c:0b:39:63:19:21:3c:6f:45:3e:00:22:
fd:ad:b7:51:ce:de:d2:66:e8:cf:8c:3b:82:eb:f4:
60:2c:ca:04:f2:e1:25:78:1f:32:25:ac:b1:35:09:
02:3d:b8:66:96:0f:ae:48:44:64:bd:ee:53:f4:f9:
d0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:3B:3E:A1:2F:6F:AE:5B:0E:05:B3:9D:42:48:19:33:47:EE:D8:1F
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/eDs-oS9vrlsOBbOdQkgZM0fu2B8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.201.142.0/23
Signature Algorithm: sha256WithRSAEncryption
56:ec:f9:b1:a0:0e:d7:ff:17:b1:22:6a:57:7a:d5:68:3e:8f:
81:a2:1c:fc:1a:38:49:6f:e4:aa:f0:f8:77:83:58:4e:37:0c:
6c:10:af:cc:b2:7c:82:a9:5d:5f:ec:d9:b8:d0:c3:c0:73:b4:
8d:15:9a:c5:6a:ca:96:5b:95:a8:81:0c:47:ff:0d:5d:1d:62:
f2:ba:68:9e:40:10:cd:d1:75:fd:d8:7f:80:5f:d5:53:54:3f:
bc:d3:7e:87:b1:28:06:e6:de:ee:af:de:15:87:5f:d0:06:11:
bf:f3:02:33:dd:6e:ad:69:11:30:09:ba:c1:95:dd:4a:c6:04:
01:26:a6:09:a1:7b:0f:9e:02:33:85:3d:da:87:42:8c:65:b6:
cb:e7:8a:53:c4:4e:07:14:f1:f8:83:ef:5b:c6:01:fc:d0:cf:
e1:f5:d0:0e:53:a2:f0:c8:82:bb:39:5c:62:07:9e:ec:4b:94:
ad:2b:ed:16:3f:05:6b:63:3d:fc:27:83:46:6d:f1:66:3a:ef:
9b:1d:f7:93:1a:ea:5b:16:2a:56:1e:cd:fb:8e:a8:09:d5:ed:
ba:58:31:a8:8a:7f:f3:d2:d7:7d:3b:4b:d4:2d:7d:c3:69:51:
5a:f5:51:b8:6a:47:5e:40:d7:44:0d:7e:bf:12:c8:6b:d7:98:
37:75:ae:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 15:26:38 2025 by rpki-client