Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X3f-EwD6pp_3eOKgRXQoXZYaT_w.roa
File: X3f-EwD6pp_3eOKgRXQoXZYaT_w.roa (raw, json)
Hash identifier: doZt6A0ChnTBR2NwwmS9jPRo8mMR98e9Gdv22pdrVvY=
Subject key identifier: 5F:77:FE:13:00:FA:A6:9F:F7:78:E2:A0:45:74:28:5D:96:1A:4F:FC
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA2A2780593A8C61FEA5EF34606EFDBD
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X3f-EwD6pp_3eOKgRXQoXZYaT_w.roa
Signing time: Tue 02 Jan 2024 12:33:29 +0000
ROA not before: Tue 02 Jan 2024 12:33:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61249
IP address blocks: 93.171.204.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:27:80:59:3a:8c:61:fe:a5:ef:34:60:6e:fd:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5f77fe1300faa69ff778e2a04574285d961a4ffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ae:d0:b0:46:75:10:83:f8:53:9d:0d:5c:8b:
7d:3e:c9:6c:d8:bf:42:73:d5:ed:a6:23:2f:70:fd:
e2:87:32:18:b4:30:38:31:c0:81:5b:24:7b:3d:33:
15:37:3d:04:c9:88:94:66:62:d7:b0:4e:0e:bb:0c:
b6:b2:e7:55:00:25:43:25:90:db:44:30:40:f8:89:
ce:74:00:5a:63:ac:a5:3e:65:58:4b:3d:a6:1c:bc:
f2:85:a1:c4:72:0c:65:9c:94:5c:57:2a:3a:69:2f:
c6:b3:3a:b7:8a:aa:bc:51:a1:9a:29:dc:ab:d1:be:
7d:0d:4a:19:03:47:ba:6e:ae:f7:1d:6d:c8:90:7a:
65:3b:e9:43:d0:ac:4d:44:a6:ff:66:83:f6:31:24:
13:c6:dd:f7:14:e2:45:13:a6:03:1b:1d:5f:26:35:
77:ad:eb:23:7e:fd:cf:40:1a:0d:34:ad:9a:f4:3f:
ea:b0:98:2b:25:77:2f:20:88:5c:53:6f:a2:14:7f:
87:d2:04:fa:ac:98:b7:d6:fc:a1:2d:87:06:b9:b8:
c7:be:f3:02:1c:d4:be:df:15:4f:3d:ca:89:8c:19:
43:8e:c4:fd:ea:24:32:99:59:83:36:b3:40:c8:ab:
92:08:f3:b3:3e:01:f2:23:8c:39:aa:89:14:67:69:
49:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:77:FE:13:00:FA:A6:9F:F7:78:E2:A0:45:74:28:5D:96:1A:4F:FC
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/X3f-EwD6pp_3eOKgRXQoXZYaT_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.171.204.0/24
Signature Algorithm: sha256WithRSAEncryption
13:22:dd:21:06:f6:6d:f4:73:1c:0c:06:58:0e:72:66:bc:0b:
56:f0:36:92:c0:68:aa:bb:a1:4f:6f:4b:f2:57:2d:3c:82:4a:
5f:3d:e0:20:81:d7:45:88:2c:3f:49:e4:08:29:07:62:e4:c0:
2e:20:26:81:bc:51:2a:db:9d:95:4b:a0:54:1d:c2:dd:5c:e6:
72:30:4a:6e:fe:89:93:f7:31:6d:74:08:ed:fc:99:ec:2e:b9:
6a:88:04:60:c5:b8:2f:bf:4e:be:17:8e:85:ac:8c:cd:d1:a2:
48:16:7b:4b:bc:02:6e:54:d2:bd:ee:53:32:fc:65:17:f4:ef:
73:34:1d:c9:23:ae:a3:c7:fe:ad:8e:c8:3a:60:82:32:6e:74:
4f:94:ff:50:e2:9d:c1:a8:52:2e:89:13:79:61:c0:25:c0:07:
38:52:2a:08:b8:d1:70:97:4d:1c:de:f8:57:44:58:d7:01:43:
df:1d:f2:1f:81:bf:ad:05:65:3a:20:46:8f:a4:97:46:59:43:
04:97:2c:ce:67:b6:3f:6a:25:3e:d5:b0:23:7a:40:02:f1:98:
47:b8:e0:da:64:6b:22:6e:9b:f4:0d:7b:1d:9d:b3:5c:0d:da:
12:50:4a:f6:72:57:67:8f:4b:95:0a:b7:2d:90:24:b2:5c:3a:
ed:9a:46:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 21:09:05 2025 by rpki-client