Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gzu7hjON7kGKni-crNye3FEInko.roa
File: gzu7hjON7kGKni-crNye3FEInko.roa (raw, json)
Hash identifier: WDwfAbsdNX4E7ilOYtJKM9/vLMQ6CKeErpnApKUuJw0=
Subject key identifier: 83:3B:BB:86:33:8D:EE:41:8A:9E:2F:9C:AC:DC:9E:DC:51:08:9E:4A
Certificate issuer: /CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Certificate serial: 0192C03BCB15FB836B0343ABC5C245B8C421
Authority key identifier: 7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gzu7hjON7kGKni-crNye3FEInko.roa
Signing time: Thu 24 Oct 2024 20:33:16 +0000
ROA not before: Thu 24 Oct 2024 20:33:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7018
IP address blocks: 185.254.66.0/24 maxlen: 24
185.254.67.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 23 Nov 2024 08:57:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c0:3b:cb:15:fb:83:6b:03:43:ab:c5:c2:45:b8:c4:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7da5d32d5b09c93c1b5e3fc5a2aa20d746fcfed1
Validity
Not Before: Oct 24 20:33:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=833bbb86338dee418a9e2f9cacdc9edc51089e4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:a4:42:36:a2:df:10:4a:35:f2:07:65:d2:2b:
45:7f:4e:70:5e:0e:d3:11:a4:c5:94:c2:1f:a3:d2:
94:10:fd:72:de:79:f2:ac:05:76:98:4d:1d:df:c5:
30:b1:98:01:bd:30:d4:79:5d:9b:ed:6d:36:4d:cb:
f8:0c:f9:2b:b9:ec:b7:39:74:7c:fb:ae:1d:22:85:
ad:9e:ce:69:a4:94:4e:7d:04:2e:2d:49:98:c9:3a:
67:ec:85:4a:c9:b8:e5:86:17:6d:1a:ad:a2:5c:cd:
11:c7:3e:31:ae:dc:b0:ae:f6:f2:0b:5d:35:b9:e7:
85:27:c9:25:56:ef:7c:1d:3e:4f:e3:da:71:52:02:
38:65:2b:cf:86:77:53:a6:4c:55:07:f3:c5:e2:44:
bb:e4:1b:c9:3d:65:b8:1e:c9:74:40:dc:be:27:5b:
c4:6e:d3:66:1e:28:1a:ba:06:8e:5b:5f:63:e3:82:
90:f9:e7:23:89:1d:92:57:02:68:cd:ea:24:2a:29:
a2:a8:de:8e:69:f8:6c:93:6a:fb:7d:88:0f:c9:41:
42:de:57:51:70:ff:77:dc:73:b3:b1:5f:d6:ec:4d:
63:f6:76:25:7e:23:29:8f:95:89:24:52:03:81:68:
b9:2e:df:2b:76:1f:fd:f2:3e:ae:36:d9:2f:c7:05:
b7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:3B:BB:86:33:8D:EE:41:8A:9E:2F:9C:AC:DC:9E:DC:51:08:9E:4A
X509v3 Authority Key Identifier:
keyid:7D:A5:D3:2D:5B:09:C9:3C:1B:5E:3F:C5:A2:AA:20:D7:46:FC:FE:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/faXTLVsJyTwbXj_Foqog10b8_tE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/gzu7hjON7kGKni-crNye3FEInko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/4b18fb-d3ed-4b27-9bd0-e5839f43e583/1/faXTLVsJyTwbXj_Foqog10b8_tE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.254.66.0/23
Signature Algorithm: sha256WithRSAEncryption
16:90:af:cd:e6:37:62:81:f9:70:a6:3c:99:fe:86:6e:28:fc:
ca:9c:93:01:ae:6e:38:31:a9:03:6f:03:7d:3b:80:49:a6:16:
c5:b4:22:e7:94:ff:4e:f8:63:41:e3:10:b1:52:65:d4:b5:db:
b2:4d:01:cd:e3:aa:98:bb:5b:17:f0:fe:92:ed:35:57:6f:65:
b8:41:e8:a8:2c:e7:ce:87:17:45:91:46:9d:ed:ec:0a:57:59:
52:1e:c3:53:97:41:e2:75:e7:c3:a6:af:9c:18:09:bf:9d:8a:
f3:2f:61:fe:5e:d1:9c:a9:c3:de:5a:b6:16:47:23:18:ab:0a:
38:14:e8:33:ea:60:e3:b0:86:98:54:c0:1d:27:5d:c0:87:f2:
bb:cb:d8:90:b4:2c:9b:bf:e4:49:ad:6e:99:f5:e3:38:17:92:
f1:1b:1a:04:d8:af:dc:65:a1:9e:c2:2a:1c:23:94:2c:31:df:
46:c3:0f:0e:81:4b:12:94:e6:c7:b9:5e:47:30:53:14:5e:7d:
b1:4d:35:87:c5:71:a6:7f:8b:a4:3d:af:70:1d:dc:24:f6:a5:
33:c0:8e:4e:a3:ee:e8:26:d5:f8:09:06:51:29:29:89:e2:11:
90:bd:9b:03:aa:bc:f9:0b:2f:11:8e:5b:4c:8f:28:25:60:3b:
73:94:cb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:28:34 2025 by rpki-client