Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/32KrJ_hiSqX3FSqmoZVraxN2uIw.roa
File: 32KrJ_hiSqX3FSqmoZVraxN2uIw.roa (raw, json)
Hash identifier: M/qci/wyXW21x6gkBx3JL+Ap4K4ezYo5Qb+rRNB8tnc=
Subject key identifier: DF:62:AB:27:F8:62:4A:A5:F7:15:2A:A6:A1:95:6B:6B:13:76:B8:8C
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 01925DC167E0664BB6649668ED2EA8978BAA
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/32KrJ_hiSqX3FSqmoZVraxN2uIw.roa
Signing time: Sat 05 Oct 2024 17:36:48 +0000
ROA not before: Sat 05 Oct 2024 17:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214130
IP address blocks: 94.176.214.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:54:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:5d:c1:67:e0:66:4b:b6:64:96:68:ed:2e:a8:97:8b:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 5 17:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=df62ab27f8624aa5f7152aa6a1956b6b1376b88c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:1b:0d:ba:3b:d5:7a:51:e9:83:d3:f2:68:7b:
ea:14:04:12:ab:29:9d:e5:d7:5b:c4:08:3b:22:20:
73:65:cc:53:8c:43:11:d6:ac:c0:ee:f1:2f:74:ea:
39:f9:1a:fc:2d:e5:7b:fd:76:b8:57:8c:ca:71:50:
87:39:5f:99:4f:3d:5e:af:21:f0:ff:f7:b9:54:d3:
f9:12:93:3a:ee:5d:21:d7:8c:12:00:82:3a:af:cb:
a6:06:3b:c4:a5:e5:25:78:c9:b3:b4:44:d0:db:c2:
67:bd:59:2e:84:ce:ae:94:32:df:d5:55:29:f7:41:
fe:82:22:38:bf:75:bf:95:38:a0:d2:9c:17:e5:7b:
bf:e9:b1:34:70:62:20:f3:c4:0b:dd:ca:d3:93:af:
c0:c2:b1:93:94:a6:cd:7d:0b:70:c3:33:bc:95:50:
a1:c8:4b:9e:14:80:df:37:ce:53:90:75:4d:da:3d:
b4:76:34:7d:6c:d8:f2:2f:b2:05:85:99:1f:a5:ef:
9d:2b:e3:31:22:99:1b:14:a8:b2:fb:32:4e:c0:58:
7c:6a:ec:62:35:b7:e6:3c:53:49:ea:dd:a9:36:9a:
ed:11:20:38:73:19:84:ed:7f:d4:7f:eb:16:0e:62:
30:5d:d6:45:e1:5c:8b:14:1a:34:ec:84:dd:6c:a6:
a0:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:62:AB:27:F8:62:4A:A5:F7:15:2A:A6:A1:95:6B:6B:13:76:B8:8C
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/32KrJ_hiSqX3FSqmoZVraxN2uIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.214.0/24
Signature Algorithm: sha256WithRSAEncryption
36:42:2b:c2:b9:d3:9a:fb:9a:0b:7a:e1:5b:6b:3a:91:15:4a:
05:94:bb:00:17:11:c3:07:ae:80:8c:53:d3:6f:aa:11:cb:2e:
41:80:01:0b:d5:26:f5:d4:76:d6:0a:e8:2f:c5:bd:b8:0c:30:
9f:24:ea:9b:88:06:6e:86:be:e2:dd:50:8a:9e:22:38:a1:ef:
cf:03:5c:b5:1c:3a:f9:a6:16:92:0f:56:32:3d:88:5c:08:47:
b6:5d:e9:12:81:16:32:c5:65:f8:89:3d:6c:51:9d:2a:f1:ee:
80:c5:ef:8d:37:a3:bc:12:ea:c2:d9:11:61:50:19:05:6a:8b:
90:db:97:2e:30:f5:2d:ba:e1:f8:2d:54:c9:bb:b4:4d:a7:52:
a7:e5:60:83:76:04:6b:71:db:7e:a2:fe:d0:2f:10:5e:99:87:
4c:60:7b:4a:62:08:66:ef:e4:9f:a9:96:01:c7:36:1b:e5:ee:
c0:01:19:9a:4a:f1:fe:fd:02:7a:55:bb:f6:c1:6d:6c:2d:b7:
7c:07:63:8c:59:55:bb:81:7a:f1:02:92:60:ea:34:cd:79:f2:
7b:d7:91:60:a2:9e:01:b9:4e:9d:e4:da:aa:6f:c4:0a:b4:26:
64:e0:db:41:2d:c3:2f:76:ef:12:90:eb:57:8a:cf:11:ea:0d:
c5:a8:21:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:15:12 2025 by rpki-client