Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/gJs7B-ORKs7us53LgEF4zQA0Dwg.roa
File: gJs7B-ORKs7us53LgEF4zQA0Dwg.roa (raw, json)
Hash identifier: byBjLaDdH0khPgFczHnouRVDtAcLCY1TPT3+kZdKYjw=
Subject key identifier: 80:9B:3B:07:E3:91:2A:CE:EE:B3:9D:CB:80:41:78:CD:00:34:0F:08
Certificate issuer: /CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Certificate serial: 018CC8DCE01F96099A34B7A4431F8A8EE2BA
Authority key identifier: E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/gJs7B-ORKs7us53LgEF4zQA0Dwg.roa
Signing time: Tue 02 Jan 2024 06:29:27 +0000
ROA not before: Tue 02 Jan 2024 06:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212383
IP address blocks: 94.188.249.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 17:49:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:dc:e0:1f:96:09:9a:34:b7:a4:43:1f:8a:8e:e2:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d5bb401180e55f5c165d47908dff4fe29a0d86
Validity
Not Before: Jan 2 06:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=809b3b07e3912aceeeb39dcb804178cd00340f08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:45:f6:c4:85:ce:ee:43:9d:e1:ab:de:21:1b:
1a:39:30:40:c9:03:4d:c3:c1:84:7a:3b:fd:0e:15:
a0:2d:a0:79:a0:fc:49:74:38:ff:dc:b1:8c:9a:12:
e4:ed:e5:2c:91:9a:16:9b:6f:2d:29:b5:a9:6c:7c:
3a:ad:d1:67:0d:a2:33:b8:34:ff:4b:66:b1:19:81:
03:be:f2:52:6a:68:85:08:27:80:52:8e:2c:82:d1:
70:90:16:b0:09:71:fb:33:70:ab:de:d2:e5:54:4c:
ff:17:3a:1a:37:f6:31:31:28:0d:5c:8e:99:f4:6e:
65:8c:95:38:3e:c7:5d:48:82:d5:64:e5:c0:46:5f:
e3:76:40:3f:52:f9:77:5b:9a:85:08:8e:a5:4e:2a:
5e:74:02:1c:6f:d6:dd:90:0c:d0:24:62:ab:e7:3b:
0f:e5:c2:4a:e0:2c:b9:c2:90:fb:cc:5f:29:53:98:
d5:79:4d:96:ca:4b:6e:2f:29:13:3a:97:e4:0c:f8:
a6:31:3c:4a:0b:3f:8d:e3:28:a0:2a:0a:56:27:dc:
f9:ab:6e:96:b7:49:ed:07:d2:c0:16:00:53:b9:7c:
96:e5:7b:69:3d:c8:7d:3a:7b:45:ee:5e:18:1e:dd:
98:d3:8a:3d:cf:50:21:fb:17:bd:ce:89:5f:c8:57:
d5:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:9B:3B:07:E3:91:2A:CE:EE:B3:9D:CB:80:41:78:CD:00:34:0F:08
X509v3 Authority Key Identifier:
keyid:E2:D5:BB:40:11:80:E5:5F:5C:16:5D:47:90:8D:FF:4F:E2:9A:0D:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tW7QBGA5V9cFl1HkI3_T-KaDYY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/gJs7B-ORKs7us53LgEF4zQA0Dwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/86297a-d219-4567-9171-421e6bc7e2e8/1/4tW7QBGA5V9cFl1HkI3_T-KaDYY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.188.249.0/24
Signature Algorithm: sha256WithRSAEncryption
45:82:9c:a5:e1:b3:a6:80:52:43:3e:24:99:a4:db:29:a9:bc:
dd:4a:d8:96:93:6f:42:1f:37:d9:65:0b:1b:68:92:b6:14:27:
a9:a7:62:e8:3a:5e:82:4d:32:3b:b9:64:b8:38:ba:78:62:1b:
b8:92:03:32:40:2e:03:37:63:b8:28:c8:db:02:95:36:08:9d:
bf:1d:0b:22:3c:a6:10:c6:71:fa:f4:25:32:95:17:b0:a5:d9:
24:6a:40:f2:a6:3b:94:ae:86:65:3f:c4:50:25:d5:f5:16:25:
68:ff:93:f8:ae:50:f6:f8:ca:ee:76:83:ab:de:76:a0:90:63:
1f:15:ea:c4:2b:37:8c:f7:1f:2f:02:a7:05:b6:0e:63:74:4b:
a7:89:1f:9e:2a:9f:41:e6:5b:38:50:1b:c5:5f:da:67:d3:e8:
c7:57:ec:a1:be:e7:1d:26:e1:36:77:65:b4:e8:22:87:15:76:
98:7d:1c:df:4f:63:85:b4:63:dd:2c:07:40:01:d1:40:52:47:
64:0f:1b:38:79:e2:b8:a8:55:a9:82:b3:a5:5a:b6:28:7b:d1:
74:42:c7:d6:92:48:ff:2e:4b:79:af:07:e2:75:f2:4b:24:d1:
93:96:e5:de:4c:aa:f1:05:00:c5:e2:32:d3:5d:be:63:16:60:
53:25:66:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:54:27 2025 by rpki-client