Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/afbac0-e7a5-4c95-88b6-84a9efec0d1b/1/eCgDpIMHVxdcRiyucsiJt3t-EUY.roa
File: eCgDpIMHVxdcRiyucsiJt3t-EUY.roa (raw, json)
Hash identifier: 5A1BRMUQcFNSS4WTUNjTxLMm6H741Ub4xscio+p37KQ=
Subject key identifier: 78:28:03:A4:83:07:57:17:5C:46:2C:AE:72:C8:89:B7:7B:7E:11:46
Certificate issuer: /CN=01bae509df7ec524d4f750ff809274ab00649322
Certificate serial: 018CC56E098FBE0E2EED7A10BDF365384ABF
Authority key identifier: 01:BA:E5:09:DF:7E:C5:24:D4:F7:50:FF:80:92:74:AB:00:64:93:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AbrlCd9-xSTU91D_gJJ0qwBkkyI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/afbac0-e7a5-4c95-88b6-84a9efec0d1b/1/eCgDpIMHVxdcRiyucsiJt3t-EUY.roa
Signing time: Mon 01 Jan 2024 14:29:32 +0000
ROA not before: Mon 01 Jan 2024 14:29:32 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203293
IP address blocks: 185.139.92.0/22 maxlen: 24
2a07:1440::/29 maxlen: 48
Validation: Failed, certificate revoked on Wed 01 Jan 2025 11:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:09:8f:be:0e:2e:ed:7a:10:bd:f3:65:38:4a:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01bae509df7ec524d4f750ff809274ab00649322
Validity
Not Before: Jan 1 14:29:32 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=782803a4830757175c462cae72c889b77b7e1146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:d8:89:15:cb:47:fc:d2:c2:de:98:b6:8f:df:
8e:92:58:b4:a5:32:ce:10:6c:91:d7:d7:42:ec:09:
6e:04:cf:15:de:32:6c:2c:4a:fd:f5:03:7f:a5:72:
05:06:b3:d4:26:05:78:4d:4a:bc:45:3a:fa:36:29:
65:3d:6d:72:13:88:c2:9b:43:e8:4c:03:91:29:89:
27:61:8e:b1:26:de:c0:4e:c9:1a:fc:ca:7f:e7:56:
05:6d:ed:22:56:a8:23:ad:78:72:ff:8f:1e:0f:0a:
17:9a:e4:dd:40:fe:9a:e5:a9:4a:66:d0:41:96:16:
f5:89:7f:c8:91:79:8c:3a:e4:68:14:80:43:49:5f:
a1:00:0f:0e:5c:d2:0f:37:39:28:5a:a3:6b:16:71:
f6:e0:3f:97:e5:86:83:89:30:71:45:48:7f:f5:79:
32:5b:ec:3e:dd:a5:fd:f2:2f:e0:ed:25:e5:fd:25:
a3:92:c3:ee:b8:45:45:bd:39:ed:f6:a9:b0:ad:1e:
a7:c2:7d:e8:cf:01:07:9e:50:83:c1:4e:19:4e:0b:
d4:4d:50:37:3f:cb:c9:a2:20:b6:f5:25:2d:a2:04:
28:54:a6:c0:7c:fb:f9:9b:1e:ee:02:ef:64:07:b7:
6b:36:4e:9f:a7:5a:a2:55:b1:a3:af:af:d8:a0:40:
bd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:28:03:A4:83:07:57:17:5C:46:2C:AE:72:C8:89:B7:7B:7E:11:46
X509v3 Authority Key Identifier:
keyid:01:BA:E5:09:DF:7E:C5:24:D4:F7:50:FF:80:92:74:AB:00:64:93:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AbrlCd9-xSTU91D_gJJ0qwBkkyI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/afbac0-e7a5-4c95-88b6-84a9efec0d1b/1/eCgDpIMHVxdcRiyucsiJt3t-EUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/afbac0-e7a5-4c95-88b6-84a9efec0d1b/1/AbrlCd9-xSTU91D_gJJ0qwBkkyI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.139.92.0/22
IPv6:
2a07:1440::/29
Signature Algorithm: sha256WithRSAEncryption
49:19:18:f4:16:01:25:db:bd:cb:06:5b:6f:c3:98:44:de:4d:
d7:81:ac:1c:fb:00:dd:f1:fe:91:99:42:68:f2:a9:2b:22:68:
10:e6:2a:6d:d3:9d:30:5e:bf:98:9d:0f:d9:54:61:c9:17:84:
7f:02:af:01:aa:15:e0:ba:2e:d2:5c:f5:0c:5f:fe:79:31:ca:
fe:4c:2d:9f:e9:47:d7:ca:be:ee:76:42:3d:81:3f:7f:3e:af:
c6:f1:a5:e1:5a:f7:70:f5:00:43:8a:74:a1:f2:78:6a:10:88:
65:f7:f5:10:83:7c:e4:49:68:e9:f8:e9:cb:a5:dd:7e:fe:a8:
66:ca:d7:89:b1:e8:41:8b:f2:b2:63:78:99:7e:11:42:b4:1b:
0c:ea:88:67:3f:bb:41:21:e2:86:fa:20:84:96:a9:1a:82:f6:
61:71:d7:27:f3:eb:f5:db:e1:df:e5:bf:d1:33:a1:60:25:e2:
7c:6a:9e:52:d0:a5:b6:6a:23:8a:e8:02:28:7a:c4:2b:98:08:
bf:0a:42:b2:4c:b8:51:23:a7:99:a4:9f:5f:fc:b2:01:d8:11:
44:6b:25:77:ff:2f:1b:6e:28:06:6f:37:63:dd:1b:44:f8:a8:
fd:65:d8:2c:64:cc:f5:68:ce:45:5c:13:c6:ae:45:9d:91:ed:
af:07:43:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:41:07 2025 by rpki-client