Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7wz3RRkdDRjfebu_36dQcPYzJVo.roa
File: 7wz3RRkdDRjfebu_36dQcPYzJVo.roa (raw, json)
Hash identifier: 3gR6CgMlG8U5w+I+AqrpdQtgTB5FpU/zLCjhM6sfPF0=
Subject key identifier: EF:0C:F7:45:19:1D:0D:18:DF:79:BB:BF:DF:A7:50:70:F6:33:25:5A
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 019422FC07C9CD92BCE93221AD6E1E405893
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7wz3RRkdDRjfebu_36dQcPYzJVo.roa
Signing time: Wed 01 Jan 2025 17:48:49 +0000
ROA not before: Wed 01 Jan 2025 17:48:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 7029
IP address blocks: 194.180.238.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Mar 2025 09:53:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:07:c9:cd:92:bc:e9:32:21:ad:6e:1e:40:58:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 17:48:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ef0cf745191d0d18df79bbbfdfa75070f633255a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:c9:99:b2:1f:1e:56:b6:20:23:9c:cc:ba:97:
fa:28:d2:91:bc:fd:2b:47:71:71:8f:cf:76:61:3a:
de:4c:6d:1b:67:15:ea:50:86:d1:e4:d5:16:74:a8:
2d:b7:63:77:ef:85:7f:67:42:cf:ae:2e:77:34:a1:
3f:e6:ab:ed:a7:16:25:e8:08:4d:83:17:8a:24:7f:
95:e6:6b:24:94:ef:73:8f:90:5f:36:99:0f:ca:fb:
13:98:e3:14:8f:d8:15:43:ee:1f:4e:15:02:62:ba:
45:09:1a:ad:88:a2:cc:3f:82:17:3f:fb:3f:bc:39:
e1:a2:f2:c4:69:98:1a:2d:92:cc:4e:a8:5b:a9:4c:
99:42:6c:cd:f5:3b:30:4c:1d:c7:72:64:46:8c:02:
87:a1:00:09:eb:06:bf:e3:a8:c4:f0:35:22:aa:16:
e8:a5:05:8e:cb:c4:65:6c:11:c0:01:fc:7a:22:dc:
ca:97:35:81:bf:88:3d:fd:9f:4f:86:d5:2d:ac:f7:
66:ad:ea:4b:46:bb:de:9e:ab:27:ca:be:db:5a:49:
a9:74:01:2b:8c:66:b6:00:1e:f1:d4:4d:64:f2:b5:
ea:1b:39:82:3f:42:de:b6:98:2e:21:2e:e0:13:da:
71:30:ea:31:e5:73:09:c0:ed:ca:d8:ad:27:97:07:
68:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:0C:F7:45:19:1D:0D:18:DF:79:BB:BF:DF:A7:50:70:F6:33:25:5A
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7wz3RRkdDRjfebu_36dQcPYzJVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.180.238.0/24
Signature Algorithm: sha256WithRSAEncryption
25:f8:b6:98:c2:5f:c6:b2:fa:99:8d:aa:2b:c4:13:cc:7b:19:
7a:87:e8:46:3a:5f:bc:77:80:74:86:99:4c:4e:03:31:9a:d2:
7e:b5:64:e3:86:66:5c:5e:76:12:37:27:77:cf:42:ca:10:4c:
74:74:9d:17:92:ff:9c:44:47:67:a4:37:d1:19:80:b5:c5:0f:
93:99:79:db:25:b5:36:2c:c4:4b:09:f3:63:ce:2c:5a:c7:8d:
b0:ef:69:d0:cd:16:fd:89:35:f0:5b:54:f1:f7:61:58:05:00:
bc:8a:29:50:2c:02:e0:7f:d7:5e:50:4b:9e:a0:ec:59:11:eb:
67:38:f3:c7:a2:61:f5:20:cc:0c:33:4c:dc:d6:4f:2b:16:c9:
65:ce:7c:d2:57:93:05:31:31:75:63:a0:76:96:46:7d:c7:ef:
d3:e9:b6:46:29:2c:c5:dc:71:e3:3b:f3:8f:6b:65:f2:4a:bb:
27:b8:c5:e9:3f:3f:30:d3:d3:af:ea:71:4b:12:7a:92:87:90:
e9:b6:09:62:f8:c7:af:58:7c:e7:d3:72:64:d5:05:76:45:f8:
0a:c2:ea:2e:78:b6:00:76:07:65:b0:d0:77:22:88:59:e4:5e:
ae:5b:90:0c:7e:df:8f:c2:8b:af:fc:93:1f:f6:70:fb:87:a5:
64:df:bf:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 22:26:42 2025 by rpki-client