Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/eBzpfv1a8h1jvH4S-WQMTSXKoPc.roa
File: eBzpfv1a8h1jvH4S-WQMTSXKoPc.roa (raw, json)
Hash identifier: LTyYeCaJVq226G75IXQ57WBvXBKWZal8tm+tx7FuKsY=
Subject key identifier: 78:1C:E9:7E:FD:5A:F2:1D:63:BC:7E:12:F9:64:0C:4D:25:CA:A0:F7
Certificate issuer: /CN=f04a58047f37bbc057944bbf8cad8742879592da
Certificate serial: 01940EF0F1560EB3F01BE0F83A1E5CDCA2E2
Authority key identifier: F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/eBzpfv1a8h1jvH4S-WQMTSXKoPc.roa
Signing time: Sat 28 Dec 2024 20:24:18 +0000
ROA not before: Sat 28 Dec 2024 20:24:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216156
IP address blocks: 170.62.176.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:0e:f0:f1:56:0e:b3:f0:1b:e0:f8:3a:1e:5c:dc:a2:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f04a58047f37bbc057944bbf8cad8742879592da
Validity
Not Before: Dec 28 20:24:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=781ce97efd5af21d63bc7e12f9640c4d25caa0f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d3:40:52:16:1f:55:34:e3:3f:e2:41:f9:ce:
74:5f:e6:e4:5e:94:7c:1e:37:83:f3:c7:4d:1a:13:
fb:b4:ef:76:24:bf:c5:78:4a:41:0c:2e:a9:dd:67:
81:a8:b7:0c:be:53:7c:9d:3c:af:65:dc:f8:16:69:
19:f8:e0:fc:76:cf:cb:84:85:94:8a:27:73:7a:f0:
d4:36:fb:8c:09:d1:3f:9c:4f:7b:cf:b4:73:c9:2f:
41:23:66:99:25:51:e1:1d:6c:5a:29:6d:75:04:64:
50:11:86:ba:e9:28:01:61:d0:ed:d0:27:44:a5:8a:
25:c8:d0:68:cd:8d:22:fb:ae:64:01:0b:6b:af:8c:
f7:67:9b:c4:65:ca:f6:e2:f9:ca:00:8d:13:7e:d3:
87:ce:9e:d6:fc:af:93:e9:34:a3:5b:29:7d:92:33:
32:5d:f5:a4:aa:85:c3:76:e5:58:ce:55:ec:dc:e0:
63:ec:6d:64:fe:0f:4a:eb:7f:b3:e6:40:1e:58:8b:
d1:6b:3a:5d:01:3b:81:2e:9c:78:13:18:11:4a:0b:
3e:b5:d6:b5:17:ce:24:7b:4a:30:0c:00:92:c5:76:
ec:84:2c:08:9f:7d:72:2d:51:00:ce:3b:d3:ca:a5:
32:9c:ef:79:92:ac:70:5c:e0:f0:dd:3f:77:db:d7:
e1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1C:E9:7E:FD:5A:F2:1D:63:BC:7E:12:F9:64:0C:4D:25:CA:A0:F7
X509v3 Authority Key Identifier:
keyid:F0:4A:58:04:7F:37:BB:C0:57:94:4B:BF:8C:AD:87:42:87:95:92:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8EpYBH83u8BXlEu_jK2HQoeVkto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/eBzpfv1a8h1jvH4S-WQMTSXKoPc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/2ba97e-598b-48dd-8d56-f5fb71b9a51f/1/8EpYBH83u8BXlEu_jK2HQoeVkto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
170.62.176.0/21
Signature Algorithm: sha256WithRSAEncryption
73:73:13:a3:58:69:d5:0a:d9:cf:0b:d8:f1:24:e5:ec:cf:89:
9f:d1:e8:ac:df:36:16:93:f6:52:cc:3b:e8:62:55:90:01:5f:
38:68:da:37:95:51:8e:be:f8:25:4f:4d:bc:fb:be:34:4d:98:
2f:e3:38:81:f9:f2:3e:ef:f1:b7:7b:c7:91:73:f0:b4:ef:d9:
f0:4a:76:8e:9f:37:07:a9:8f:fa:47:1e:08:50:71:a8:d1:78:
2e:01:aa:60:c0:bf:d8:7e:3e:2f:52:0c:b4:6e:8e:93:e8:de:
ee:02:d8:fc:51:e1:8d:78:57:be:07:20:7a:54:ed:02:13:1a:
a5:a9:f8:49:11:1a:01:d7:d0:c3:5f:35:0a:e4:05:ae:f7:46:
d1:bd:21:d9:10:a7:76:52:a4:08:95:4b:d8:07:96:b1:b8:55:
d5:a2:64:85:65:c0:a5:75:ea:1f:73:e7:36:1e:e8:dd:eb:9a:
4e:4f:a6:54:38:7b:46:4c:f1:c0:dd:b4:4e:c6:4e:a1:ee:0a:
95:c9:37:0b:fb:e2:a4:46:b3:67:e8:38:b8:a6:6b:cd:69:dd:
58:eb:d7:9d:24:32:86:69:21:5c:e6:78:7e:04:35:ee:10:df:
45:22:d4:14:b7:3d:b1:a3:63:d6:53:1b:66:73:c3:bf:56:d6:
ce:44:ce:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 14:05:34 2025 by rpki-client