Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/v7e0M089X61ds9_ZEj-AGb4ONOA.roa
File: v7e0M089X61ds9_ZEj-AGb4ONOA.roa (raw, json)
Hash identifier: HifsWXc2qxgAplqKRU1A+VPb7p3tsYQfZhUnsBvggug=
Subject key identifier: BF:B7:B4:33:4F:3D:5F:AD:5D:B3:DF:D9:12:3F:80:19:BE:0E:34:E0
Certificate issuer: /CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Certificate serial: 018CCA29EA35672A4CEC613C35A84FCD6A72
Authority key identifier: 74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/v7e0M089X61ds9_ZEj-AGb4ONOA.roa
Signing time: Tue 02 Jan 2024 12:33:13 +0000
ROA not before: Tue 02 Jan 2024 12:33:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 41271
IP address blocks: 93.170.178.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:29:ea:35:67:2a:4c:ec:61:3c:35:a8:4f:cd:6a:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=749122c35438a4eb26233fdc6e4bb1df2daaef42
Validity
Not Before: Jan 2 12:33:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bfb7b4334f3d5fad5db3dfd9123f8019be0e34e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4a:7f:75:18:32:9e:a0:8b:dd:10:96:36:b6:
42:ae:dd:4b:80:68:7d:a4:9d:1f:fa:d0:23:36:46:
f7:bf:d9:82:ff:fc:cd:e9:4e:5e:7f:4e:05:5d:70:
81:4b:cd:c2:05:6a:6b:a6:f5:f4:45:e4:2e:27:6b:
54:0c:b6:b4:d1:53:2c:a9:c0:e1:36:cc:ed:d7:70:
31:ac:c9:77:19:23:c4:8d:d7:4b:b7:69:58:ef:b2:
9b:92:7d:2a:c4:29:e7:74:0e:11:e1:b4:52:58:fe:
28:c3:00:14:23:02:d0:f3:91:25:7d:54:91:1d:4c:
9c:7c:a0:4e:55:1c:25:39:d6:d2:c4:0a:f9:b1:48:
61:51:66:64:82:6f:3d:68:1c:c7:bc:eb:22:63:f9:
f4:2b:4d:a0:3e:99:a7:64:0b:e7:0f:1d:b0:17:68:
31:44:b1:9c:c8:13:03:17:b1:84:51:c9:43:51:f8:
21:ee:3d:8b:6f:02:25:cd:c4:26:66:dd:fb:d1:f8:
e6:4e:92:81:f2:ca:c4:9e:dc:86:19:19:d6:98:73:
17:6c:2c:c9:0e:ff:29:52:b2:a6:c1:83:7f:34:09:
16:96:f0:bb:ee:b1:05:ed:78:34:bf:fd:d6:a1:55:
79:36:5e:fc:82:de:90:56:4e:ac:64:b6:af:17:14:
19:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:B7:B4:33:4F:3D:5F:AD:5D:B3:DF:D9:12:3F:80:19:BE:0E:34:E0
X509v3 Authority Key Identifier:
keyid:74:91:22:C3:54:38:A4:EB:26:23:3F:DC:6E:4B:B1:DF:2D:AA:EF:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dJEiw1Q4pOsmIz_cbkux3y2q70I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/v7e0M089X61ds9_ZEj-AGb4ONOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/18a91c-0e77-45c9-8cc4-062c6933abed/1/dJEiw1Q4pOsmIz_cbkux3y2q70I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.170.178.0/23
Signature Algorithm: sha256WithRSAEncryption
4c:c4:79:8f:db:ed:bd:06:70:85:3d:a0:1a:74:60:7b:31:61:
27:17:79:88:cd:f6:24:0a:a6:db:fd:63:66:ba:fd:78:90:2b:
49:8e:29:49:db:f1:4c:a1:b4:5e:bf:17:b5:df:80:87:59:27:
bd:ff:53:be:ff:73:c6:88:1a:98:f4:58:2b:94:4e:58:c4:da:
90:b3:72:96:88:12:7d:5b:c1:b9:31:74:34:0b:51:d1:22:78:
81:c1:8e:18:76:6a:c6:35:1e:06:33:05:ba:a2:1f:43:4d:c6:
54:79:d0:5d:9d:32:73:08:e1:ee:be:f2:e0:43:72:ee:4c:c1:
05:40:2a:8c:be:bd:5e:1a:6e:3c:90:eb:17:a5:4c:34:c9:2d:
28:97:0e:7c:e0:91:f7:48:e6:b0:e1:81:bb:58:aa:60:65:fc:
7f:06:40:bd:33:ac:95:8b:c4:52:52:54:b6:cc:db:c2:d9:b3:
93:c5:dc:02:c3:14:e3:e2:fd:8e:b3:c9:52:65:5f:33:e1:17:
17:e8:1d:10:c0:8a:35:83:40:92:fb:5b:33:5b:29:46:14:b0:
6c:2e:8d:9a:93:8f:0e:e3:3f:bf:8a:bc:21:9d:15:64:36:e0:
f3:68:dc:35:08:4b:0c:50:9d:c8:e9:5c:46:97:bc:b6:d1:07:
4d:83:44:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:03 2025 by rpki-client