Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/66fsAUZ6b5B2zPJp4_J7qm56tS0.roa
File: 66fsAUZ6b5B2zPJp4_J7qm56tS0.roa (raw, json)
Hash identifier: 9F8Dmse7JlQusN7EY8Bsp+tDxBlk57cfNQJf+EGWnCI=
Subject key identifier: EB:A7:EC:01:46:7A:6F:90:76:CC:F2:69:E3:F2:7B:AA:6E:7A:B5:2D
Certificate issuer: /CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Certificate serial: 0193BB655CEC66269636EA7A3F252702162D
Authority key identifier: 12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/66fsAUZ6b5B2zPJp4_J7qm56tS0.roa
Signing time: Thu 12 Dec 2024 15:03:22 +0000
ROA not before: Thu 12 Dec 2024 15:03:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 51202
IP address blocks: 212.232.18.0/24 maxlen: 24
2a14:6781::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 02 Jan 2025 11:49:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bb:65:5c:ec:66:26:96:36:ea:7a:3f:25:27:02:16:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12be29c956894c49c6d4be0ed98882b90d1bc77f
Validity
Not Before: Dec 12 15:03:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eba7ec01467a6f9076ccf269e3f27baa6e7ab52d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:60:f3:24:fa:a7:aa:e2:b6:9d:ab:f8:3d:59:
39:e7:c6:0b:fa:3f:e8:5a:52:3d:dc:b1:ec:be:ed:
e2:07:95:e4:3c:41:08:18:70:d1:65:6e:2c:dc:2b:
ef:29:86:ec:a2:93:70:4c:df:a7:2a:0f:de:99:d0:
cd:af:d5:29:20:11:3b:65:c8:c7:b9:fb:ee:32:4f:
ae:96:1a:68:6f:cc:1f:2f:e2:33:6e:8f:ce:c9:25:
c3:76:f7:cc:1e:19:ea:e4:ab:96:54:44:e8:8e:9d:
49:6e:03:18:c0:be:dd:05:32:70:e9:0f:f4:0d:6e:
e2:3d:d2:83:c7:4f:fc:78:1c:db:bb:9f:ed:ff:ce:
d0:88:ec:22:43:23:da:a1:e2:97:6e:75:71:3a:03:
72:5b:d3:b4:fd:46:b5:9d:54:ee:c8:92:2a:9c:75:
cb:7f:8a:01:0f:39:62:ab:00:ba:4e:da:5a:ba:95:
94:44:25:d3:27:50:1b:ec:c2:52:88:1c:6b:0b:43:
43:71:fe:0f:3a:fc:df:71:f6:5d:31:62:44:bf:9c:
75:cd:4c:ec:d1:48:24:bd:7a:d7:e7:cd:c4:e2:70:
b1:b5:33:5b:53:2d:15:17:0b:77:ad:8b:de:61:ea:
f0:db:47:ac:9f:6a:13:9a:b8:e9:85:a2:d8:43:a6:
b2:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:A7:EC:01:46:7A:6F:90:76:CC:F2:69:E3:F2:7B:AA:6E:7A:B5:2D
X509v3 Authority Key Identifier:
keyid:12:BE:29:C9:56:89:4C:49:C6:D4:BE:0E:D9:88:82:B9:0D:1B:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Er4pyVaJTEnG1L4O2YiCuQ0bx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/66fsAUZ6b5B2zPJp4_J7qm56tS0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/c2788f-8c8c-47bb-b922-aa6ed4dafb3b/1/Er4pyVaJTEnG1L4O2YiCuQ0bx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.232.18.0/24
IPv6:
2a14:6781::/32
Signature Algorithm: sha256WithRSAEncryption
1d:09:02:e4:27:4c:46:34:f8:c1:97:c4:47:58:40:3a:7a:98:
54:24:3f:71:b4:59:95:db:b9:e1:57:0f:87:92:de:bc:52:46:
fb:c7:64:91:e2:03:1a:90:b8:4b:4a:5b:87:00:02:86:80:9d:
4f:ae:49:60:49:57:5c:23:9b:3b:3e:77:91:b7:06:3c:2b:07:
63:0c:c1:a0:23:5d:2f:c3:f9:77:d6:fd:f8:fd:70:56:fd:8c:
00:46:ea:a5:bc:82:82:ce:e4:9e:7f:38:ee:07:a7:83:05:f6:
ba:1b:d2:38:e8:4b:0c:cc:46:0e:d3:fe:da:e2:d6:b8:c6:1c:
c7:4a:d6:4e:45:6d:d6:fe:4a:16:2a:03:68:ed:a6:a8:f4:88:
29:81:5b:d0:77:8c:68:f8:b6:e0:d8:b4:2b:0f:85:6f:b0:bd:
cd:cc:e2:4f:39:26:cc:a9:88:38:7c:14:48:d1:d6:5c:b3:7e:
7f:0e:80:5d:39:d2:a8:a2:82:0e:69:c1:7f:b8:5e:db:43:f4:
37:94:a2:f0:83:22:2b:bc:71:74:90:69:10:53:84:89:38:c5:
7e:17:b9:91:dc:b3:54:ab:98:3b:58:03:aa:b1:37:5f:97:9f:
55:59:dd:44:52:2e:c0:ab:a4:d1:e8:ba:fc:ad:fb:45:fa:c7:
86:de:1e:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 19:17:30 2025 by rpki-client