Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b90060-5aaa-43ea-bceb-5e749f4341a4/1/a0KJ6Ccp8f769hbbj4F3s7QODSU.roa
File: a0KJ6Ccp8f769hbbj4F3s7QODSU.roa (raw, json)
Hash identifier: rvXiHB64f2UDPLu9MXReYjacTk35qSbApUoZ5VypeiA=
Subject key identifier: 6B:42:89:E8:27:29:F1:FE:FA:F6:16:DB:8F:81:77:B3:B4:0E:0D:25
Certificate issuer: /CN=16241dd83d8ac080b66504bf937459ffcec4ccc4
Certificate serial: 019096FBFB08E7077E2B210FEA215CDC7007
Authority key identifier: 16:24:1D:D8:3D:8A:C0:80:B6:65:04:BF:93:74:59:FF:CE:C4:CC:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FiQd2D2KwIC2ZQS_k3RZ_87EzMQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b90060-5aaa-43ea-bceb-5e749f4341a4/1/a0KJ6Ccp8f769hbbj4F3s7QODSU.roa
Signing time: Tue 09 Jul 2024 10:13:34 +0000
ROA not before: Tue 09 Jul 2024 10:13:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16154
IP address blocks: 80.95.24.0/21 maxlen: 24
88.213.194.0/23 maxlen: 24
88.213.204.0/22 maxlen: 24
217.79.64.0/19 maxlen: 24
2a02:7900::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Sep 2024 07:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:96:fb:fb:08:e7:07:7e:2b:21:0f:ea:21:5c:dc:70:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16241dd83d8ac080b66504bf937459ffcec4ccc4
Validity
Not Before: Jul 9 10:13:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=6b4289e82729f1fefaf616db8f8177b3b40e0d25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d1:45:1b:36:30:7a:85:2b:98:e7:7a:f3:f1:
51:bf:d0:e6:a3:34:ab:8d:6c:01:7b:bd:9f:17:83:
7f:7e:40:6b:f8:e8:5a:b3:d3:f0:b0:ec:1e:f7:31:
1a:78:05:ce:61:97:98:e0:75:1b:7b:d3:eb:9d:1c:
01:fe:28:3f:9b:1d:a3:02:2b:31:e3:a4:38:9f:6e:
a7:09:19:1c:57:15:49:6c:45:7b:b5:aa:e9:ee:44:
8e:3a:64:26:74:6b:7f:da:57:a1:d8:c7:18:94:62:
ae:25:9a:4a:5b:7f:f1:5a:eb:a0:17:43:e3:bb:63:
2c:4c:a5:32:6c:d7:0a:ea:2d:95:c0:91:08:2a:32:
d0:19:60:d1:d3:64:4a:99:a0:23:1a:e4:ac:ac:85:
3f:6c:17:5f:57:45:a1:15:75:c4:b5:85:66:68:b6:
f2:19:df:2b:96:4b:a5:5d:fd:08:4f:9b:17:9f:b1:
7d:6d:b1:fb:40:70:95:ef:82:df:56:c8:e9:e4:21:
42:6b:2f:68:23:f4:7e:ae:21:e4:14:37:ce:44:a5:
5a:f4:3b:89:6b:3a:5f:60:6c:9a:54:9d:c0:55:de:
02:73:bd:5e:f3:b3:d9:ce:98:b2:d4:c8:ae:e3:29:
dd:c9:91:88:c8:a1:c0:5e:8c:9b:9d:bb:f0:c1:ed:
cd:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:42:89:E8:27:29:F1:FE:FA:F6:16:DB:8F:81:77:B3:B4:0E:0D:25
X509v3 Authority Key Identifier:
keyid:16:24:1D:D8:3D:8A:C0:80:B6:65:04:BF:93:74:59:FF:CE:C4:CC:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FiQd2D2KwIC2ZQS_k3RZ_87EzMQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b90060-5aaa-43ea-bceb-5e749f4341a4/1/a0KJ6Ccp8f769hbbj4F3s7QODSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b90060-5aaa-43ea-bceb-5e749f4341a4/1/FiQd2D2KwIC2ZQS_k3RZ_87EzMQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.95.24.0/21
88.213.194.0/23
88.213.204.0/22
217.79.64.0/19
IPv6:
2a02:7900::/32
Signature Algorithm: sha256WithRSAEncryption
90:a0:c6:1a:e6:a6:16:1f:0c:9e:0c:59:99:43:a0:6b:3c:1b:
d3:69:21:eb:a5:46:c1:d3:4c:f9:98:cb:53:ee:b2:57:b3:75:
35:c9:af:24:2f:85:b7:e5:f9:0c:ea:ca:73:8a:1f:13:23:51:
1d:c7:88:f1:d6:69:a7:7a:3a:23:05:9a:95:0a:da:38:89:da:
42:9c:c1:d9:99:69:13:f5:48:9b:a2:26:30:88:dc:ea:e3:ba:
dd:c0:ad:ad:f5:41:04:85:a0:d5:e5:2c:ca:ac:ce:25:60:6d:
d6:71:a0:63:d9:b1:7d:ed:bf:27:31:84:2d:e1:d2:c9:02:48:
76:a6:b9:15:1c:ab:47:1f:9b:41:1e:3d:26:16:ed:40:d5:2e:
f8:7c:b3:0e:f3:c4:f6:4a:7a:27:81:c1:91:4a:82:6c:c9:a0:
b9:a3:1b:de:d8:30:70:f9:1c:dc:b3:cd:b6:28:ac:df:a4:f8:
fc:06:24:8c:d9:91:b7:a9:c6:6b:65:77:23:55:9a:ae:5a:1e:
07:61:c8:2e:a5:27:f0:51:f7:46:0b:c3:42:41:67:3a:dc:9c:
b6:48:8e:bf:6f:93:d0:4f:75:11:f1:da:f6:21:ed:e0:3c:c1:
20:ee:db:24:cc:b6:32:b4:a5:d8:f6:c6:9c:d2:49:87:68:c1:
08:a9:c5:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:47 2025 by rpki-client