Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/7mvvPEgoYm1vTyza79Th2q4P1fQ.roa
File: 7mvvPEgoYm1vTyza79Th2q4P1fQ.roa (raw, json)
Hash identifier: aU4WxNATCCbTTe88Qa07DnYJdV+84L+TWfo1QdC5Meg=
Subject key identifier: EE:6B:EF:3C:48:28:62:6D:6F:4F:2C:DA:EF:D4:E1:DA:AE:0F:D5:F4
Certificate issuer: /CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Certificate serial: 0193B1CA40B35FD163F864CB289152175DB3
Authority key identifier: E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/7mvvPEgoYm1vTyza79Th2q4P1fQ.roa
Signing time: Tue 10 Dec 2024 18:17:22 +0000
ROA not before: Tue 10 Dec 2024 18:17:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43260
IP address blocks: 94.154.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 12 Dec 2024 20:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:b1:ca:40:b3:5f:d1:63:f8:64:cb:28:91:52:17:5d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cf3884b78007a25dbe2e2cef0cc73b69921f88
Validity
Not Before: Dec 10 18:17:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=ee6bef3c4828626d6f4f2cdaefd4e1daae0fd5f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:53:f4:6b:2a:7b:54:54:39:a1:9a:7c:0b:d6:
ae:45:e6:28:53:7f:a2:73:e3:62:e9:ed:3d:ad:8e:
51:14:af:17:d6:9b:a0:ea:4a:d9:ac:3e:b4:ca:a4:
b0:8a:9a:2b:8f:8e:8b:ec:82:f4:60:3f:ac:99:13:
23:b9:3a:bd:2b:b2:a2:d7:a8:4a:c7:e7:17:ac:cb:
5c:fb:25:6b:7d:16:b4:68:e9:5e:ee:cc:30:aa:e8:
5d:09:bf:64:1d:25:cc:ad:f6:b3:1f:37:d5:19:6c:
84:da:7e:c0:19:ca:dd:d8:ee:10:88:60:3b:11:35:
08:25:da:12:22:15:84:1f:0e:be:3a:7c:61:74:a3:
31:4c:12:f5:da:62:14:00:15:a9:b7:ac:9e:ec:87:
4b:1d:8b:70:cf:a6:11:4b:f5:60:98:dd:e3:9a:9d:
fa:35:a4:e3:1a:28:16:e1:85:cc:62:5c:a8:13:74:
d9:ea:b4:27:db:fd:57:aa:96:2c:ba:9a:1f:d1:5f:
67:43:fa:96:b0:c8:c7:fb:8a:6a:02:66:1b:24:7c:
99:db:6b:1a:ec:b9:0f:70:4d:d0:10:d6:8d:de:ab:
69:0f:6a:b2:2c:6b:9a:c5:ab:93:12:ed:08:98:26:
da:f8:4c:3b:a2:79:05:19:18:9e:dc:c2:be:59:d5:
56:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:6B:EF:3C:48:28:62:6D:6F:4F:2C:DA:EF:D4:E1:DA:AE:0F:D5:F4
X509v3 Authority Key Identifier:
keyid:E7:CF:38:84:B7:80:07:A2:5D:BE:2E:2C:EF:0C:C7:3B:69:92:1F:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5884hLeAB6Jdvi4s7wzHO2mSH4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/7mvvPEgoYm1vTyza79Th2q4P1fQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/4e7bc7-260e-47e6-8388-a184f3556e43/1/5884hLeAB6Jdvi4s7wzHO2mSH4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.35.0/24
Signature Algorithm: sha256WithRSAEncryption
69:be:48:ad:5d:6b:8f:21:f7:5c:30:25:39:a1:d2:8b:94:f1:
07:e2:4a:3b:09:51:73:ab:54:cb:ac:36:0d:5c:bd:78:72:88:
35:92:a2:49:71:c8:54:ea:b4:29:83:ae:2d:a1:a0:ea:03:e3:
f7:be:e6:3d:93:34:38:cd:2f:59:c1:fb:23:96:7d:91:cc:bc:
5a:23:20:6c:49:9c:b2:b7:bb:d0:2b:cf:1a:45:58:61:2f:0e:
24:15:e9:3c:4d:16:e8:26:38:c8:a8:8b:1d:9c:de:a3:84:5d:
28:31:bc:13:45:7b:4b:54:1a:49:f2:e3:bc:13:f0:f6:9a:d4:
b0:c0:b8:c5:a2:95:5e:27:4c:fc:1f:a8:fe:bc:fb:08:98:41:
1c:36:92:03:79:1c:cb:c4:51:4e:43:92:2f:da:bc:bd:8d:97:
54:63:cb:db:b1:ff:1e:19:f7:c8:41:fa:cc:a4:91:fe:26:74:
74:e8:5f:9b:37:e3:e2:83:f5:13:81:a5:eb:98:60:ad:2e:86:
30:96:a1:75:1e:dd:15:fb:db:e4:ef:5f:d8:30:45:63:f4:5b:
f0:10:bd:21:65:d9:f2:22:f6:8b:74:ff:ab:0b:73:18:51:9f:
ef:d9:25:53:64:95:8d:69:d6:45:40:35:ff:e1:02:32:2c:e8:
ac:f0:b0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 09:47:13 2025 by rpki-client