Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/edaeb5-5e6e-411b-99cb-3c50180780b0/1/HoiVhYj_OLqAsdPj-smjSRzAsVQ.roa
File: HoiVhYj_OLqAsdPj-smjSRzAsVQ.roa (raw, json)
Hash identifier: Cf5TYAXrRas8VG+I+ynjxvXOIdNFTo7psK3ZwiF4y+c=
Subject key identifier: 1E:88:95:85:88:FF:38:BA:80:B1:D3:E3:FA:C9:A3:49:1C:C0:B1:54
Certificate issuer: /CN=0c4579a4028829d37acac65f66c056063251e57e
Certificate serial: 0190C4EA848182BEF3E7F4E486571B2C3059
Authority key identifier: 0C:45:79:A4:02:88:29:D3:7A:CA:C6:5F:66:C0:56:06:32:51:E5:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DEV5pAKIKdN6ysZfZsBWBjJR5X4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/edaeb5-5e6e-411b-99cb-3c50180780b0/1/HoiVhYj_OLqAsdPj-smjSRzAsVQ.roa
Signing time: Thu 18 Jul 2024 08:17:01 +0000
ROA not before: Thu 18 Jul 2024 08:17:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 47787
IP address blocks: 82.215.71.0/24 maxlen: 24
185.162.183.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 10 Aug 2024 11:03:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c4:ea:84:81:82:be:f3:e7:f4:e4:86:57:1b:2c:30:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0c4579a4028829d37acac65f66c056063251e57e
Validity
Not Before: Jul 18 08:17:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1e88958588ff38ba80b1d3e3fac9a3491cc0b154
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6c:8e:0b:13:3e:7d:07:2f:ff:d7:04:f5:87:
fd:e8:95:90:21:14:b9:95:bb:d3:43:f0:78:62:e2:
e4:36:04:3a:d5:41:f4:df:ef:97:95:54:1d:df:75:
fb:20:74:c6:4d:cc:04:a3:e2:8e:58:cb:11:49:dc:
36:1e:36:05:42:41:b4:b3:00:47:52:e2:a2:b5:a0:
0e:2d:bf:b4:e1:13:66:dd:af:da:0e:8c:0f:8b:20:
d6:90:16:d4:82:c2:e5:ff:14:d9:b8:ce:9b:b8:05:
9e:02:2c:a7:f0:e5:6a:ab:02:0b:04:0c:f7:a9:a7:
c5:0a:e0:02:b0:ba:7d:d3:41:0a:6b:b8:c6:6c:de:
02:ab:b1:ce:38:42:c4:8e:2b:76:38:9d:ce:34:54:
49:a1:f9:c7:a7:a6:2e:b2:62:ca:96:8b:c4:10:ec:
5d:51:d7:51:2a:ee:3a:e1:b8:88:d2:04:67:7f:73:
1e:8f:79:76:14:ea:98:e5:a9:73:ac:5a:e5:d0:7f:
ba:b8:3a:03:1e:1e:dd:e6:49:d9:a0:b5:17:bc:dd:
15:41:17:60:e1:98:90:83:f0:f3:a1:a0:50:85:e3:
3a:56:1d:f4:26:80:47:98:c4:a5:a1:33:3b:79:54:
bd:21:9e:d4:dd:ce:a9:6d:5d:a0:2f:bb:24:e2:d1:
30:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:88:95:85:88:FF:38:BA:80:B1:D3:E3:FA:C9:A3:49:1C:C0:B1:54
X509v3 Authority Key Identifier:
keyid:0C:45:79:A4:02:88:29:D3:7A:CA:C6:5F:66:C0:56:06:32:51:E5:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DEV5pAKIKdN6ysZfZsBWBjJR5X4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/edaeb5-5e6e-411b-99cb-3c50180780b0/1/HoiVhYj_OLqAsdPj-smjSRzAsVQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/edaeb5-5e6e-411b-99cb-3c50180780b0/1/DEV5pAKIKdN6ysZfZsBWBjJR5X4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.215.71.0/24
185.162.183.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6c:2b:5e:cf:00:1e:ea:73:b7:47:b4:bc:4e:66:aa:2a:3e:
cf:7c:66:fb:e8:a2:3a:86:89:5a:77:28:dd:36:d1:dc:b4:41:
99:2a:88:ba:af:e3:5a:a8:1b:e5:5f:4b:84:47:b8:b1:71:98:
32:de:34:1d:c9:8a:3f:37:c1:14:18:50:12:a9:ef:30:8c:8b:
f8:51:31:60:40:47:ea:f7:f6:93:b4:ca:6f:43:3a:b0:d0:07:
ed:cd:d8:3a:c6:ef:90:36:93:30:da:4b:81:c9:6c:12:c6:42:
80:1d:50:63:ec:c8:f7:9a:44:5d:6b:88:e2:02:b8:d6:58:71:
5b:19:2f:ef:e5:89:4b:c4:69:84:2f:78:a8:70:09:33:f7:7e:
1e:c0:ad:ac:74:97:14:22:da:a3:3e:ac:1d:15:0e:20:b1:9f:
f1:61:a1:ef:48:d7:91:60:19:61:cc:0e:f9:19:31:11:36:a7:
d0:89:84:f3:29:5e:09:45:98:78:41:fd:69:9b:da:47:bd:74:
b9:8f:66:c9:c4:6b:b6:30:bd:31:7e:b5:bc:dd:3f:18:8a:4f:
37:da:ed:51:71:9d:5b:78:0d:b9:c6:13:1a:f3:82:7e:fa:a8:
3b:05:be:17:58:9f:8f:2a:bb:7c:74:65:8a:5b:31:85:61:3f:
66:c6:f1:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:07 2025 by rpki-client