Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Eyo0Zbk2ADC0GwqHPCKkKi1Tano.roa
File: Eyo0Zbk2ADC0GwqHPCKkKi1Tano.roa (raw, json)
Hash identifier: PFzbEQxko1iqUbph042lgcoagRbwhK8/XxqlmGrjF5I=
Subject key identifier: 13:2A:34:65:B9:36:00:30:B4:1B:0A:87:3C:22:A4:2A:2D:53:6A:7A
Certificate issuer: /CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Certificate serial: 019424B3B83A92E5EF5CC2BCD963099F1669
Authority key identifier: 6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Eyo0Zbk2ADC0GwqHPCKkKi1Tano.roa
Signing time: Thu 02 Jan 2025 01:49:05 +0000
ROA not before: Thu 02 Jan 2025 01:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213702
IP address blocks: 95.164.53.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 26 Jan 2025 21:53:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:b8:3a:92:e5:ef:5c:c2:bc:d9:63:09:9f:16:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d743ed63e868ef50f6d84c0003a83483fc62a03
Validity
Not Before: Jan 2 01:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=132a3465b9360030b41b0a873c22a42a2d536a7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:a7:fd:79:05:5d:c9:29:13:05:70:a8:d0:a2:
c5:bc:8a:5d:a1:ae:d6:df:ac:ae:a7:52:3c:c0:15:
64:66:5b:d6:73:e2:9d:9f:a6:e5:9e:66:3e:a6:f6:
d7:80:3c:87:59:ac:7b:d2:19:07:6c:c9:69:f2:d6:
1a:67:ef:87:9d:af:aa:b2:f1:42:0e:2b:c9:bc:78:
80:47:96:65:2f:c2:f1:1e:0a:83:c5:b3:ea:56:8c:
10:57:c9:12:83:12:8d:d0:ef:64:96:0b:a7:9f:eb:
0e:15:aa:20:d2:87:e9:6b:a2:15:90:8c:27:b6:a8:
77:bb:d7:c2:68:77:4f:fc:15:fe:ec:3d:4d:5a:c5:
ff:d3:3e:e5:77:90:ff:74:ef:11:be:9d:a9:0c:e5:
64:dd:24:05:2c:90:4c:9e:4a:1e:8b:8e:59:c4:d3:
68:9b:3c:99:10:c3:1a:1b:e4:34:1f:6b:21:2a:87:
35:4d:02:4c:2e:02:e9:0e:3d:b2:e8:60:12:c8:e5:
03:b4:68:e8:ab:92:48:c7:4b:a5:c8:f5:20:7a:24:
29:44:4d:fd:ab:1d:36:f6:80:14:43:e5:b6:4e:bf:
36:fa:ba:12:2e:ab:5c:fc:d5:27:bd:2c:f1:f8:ee:
97:f9:2e:75:f5:31:f5:4a:38:a7:4c:fa:1f:04:c7:
63:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2A:34:65:B9:36:00:30:B4:1B:0A:87:3C:22:A4:2A:2D:53:6A:7A
X509v3 Authority Key Identifier:
keyid:6D:74:3E:D6:3E:86:8E:F5:0F:6D:84:C0:00:3A:83:48:3F:C6:2A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bXQ-1j6GjvUPbYTAADqDSD_GKgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/Eyo0Zbk2ADC0GwqHPCKkKi1Tano.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e05352-f148-40a0-87a4-e9724a7a6bc8/1/bXQ-1j6GjvUPbYTAADqDSD_GKgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.164.53.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:53:ce:01:14:31:6a:e4:c7:df:fb:fb:92:e0:c2:bb:6d:8b:
c0:69:80:88:29:4a:57:a4:05:bf:74:f8:0a:8d:40:dc:17:08:
9d:2c:fc:0d:ec:80:f1:c1:d8:9f:80:a9:91:3f:89:14:ff:97:
d6:7e:ef:0a:57:10:0d:86:4f:84:af:a9:fa:9a:fb:f1:28:a2:
9b:75:2e:f4:cf:2f:cb:99:88:d1:1f:b3:74:50:d6:a8:74:38:
cc:25:22:f0:44:ae:6a:1e:af:47:76:bd:e4:dc:8a:83:46:c3:
d9:4d:91:ef:17:40:90:41:7d:4e:60:06:bf:5f:74:e0:03:11:
d5:29:24:1f:ff:bf:f0:23:03:c1:76:9f:ca:e6:cb:b1:b6:b2:
ab:d7:53:ce:23:1c:9b:73:ed:1c:e7:e8:39:dd:7a:35:ce:00:
bf:c4:af:9b:64:9c:55:fe:5a:a3:81:0e:59:f6:c9:11:98:3c:
75:6a:7f:53:15:a6:90:f5:41:76:fd:f5:f1:a3:10:0f:1e:bc:
7e:07:c7:99:82:9a:36:8f:e1:42:c4:cd:9e:f5:24:63:38:7b:
e9:3f:f3:51:14:03:63:8f:eb:35:b4:24:ce:70:fb:ad:a6:dd:
05:c9:f3:9a:b2:de:2b:18:72:70:43:e1:21:75:f6:e3:ef:18:
2c:5d:21:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:50:28 2025 by rpki-client