Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/Ev0lZxjzoLTaIgaIq0Zf2x8zSeQ.roa
File: Ev0lZxjzoLTaIgaIq0Zf2x8zSeQ.roa (raw, json)
Hash identifier: phEOGGu+FsrPkqnmtMgIczxj5MKmAFT93IOVkDrzfF4=
Subject key identifier: 12:FD:25:67:18:F3:A0:B4:DA:22:06:88:AB:46:5F:DB:1F:33:49:E4
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 018DF5F0B1ABAD9489C4952DBCCF199BDEFD
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/Ev0lZxjzoLTaIgaIq0Zf2x8zSeQ.roa
Signing time: Thu 29 Feb 2024 17:36:48 +0000
ROA not before: Thu 29 Feb 2024 17:36:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 194.165.27.0/24 maxlen: 24
194.169.48.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 24 Apr 2024 15:57:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f5:f0:b1:ab:ad:94:89:c4:95:2d:bc:cf:19:9b:de:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Feb 29 17:36:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=12fd256718f3a0b4da220688ab465fdb1f3349e4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a4:9a:8b:3d:b0:0f:be:0f:7b:c4:aa:42:c1:
c7:de:4e:ae:c4:2a:a8:a3:4c:44:9f:42:4b:d4:c2:
92:53:e4:17:37:5d:02:4a:de:23:28:79:3c:e7:fb:
de:69:55:b1:29:67:bf:35:47:57:54:e3:03:4a:1a:
4d:bc:f5:93:06:ba:30:cf:27:44:51:53:f6:28:e6:
96:86:33:32:82:c7:84:8f:3e:97:62:92:86:14:62:
99:81:f2:4e:b2:96:d2:20:0b:f5:fb:90:60:60:04:
cd:04:b3:dd:ee:ca:53:f0:bc:9b:b7:e4:de:12:08:
d0:6a:11:df:b6:f9:7c:85:e6:36:92:bd:dd:0e:98:
02:2a:36:8a:3f:81:6f:14:2c:43:85:09:58:c1:98:
d2:ff:d4:ee:64:2f:c7:95:28:0b:57:89:1c:77:15:
fb:2c:de:96:89:63:b0:7f:d6:ee:61:a1:0b:73:c5:
88:7f:53:4b:f2:d9:06:f7:bb:13:4e:b3:15:89:cd:
d3:b4:ff:cd:e7:c9:9c:8d:1b:f1:c2:c5:d8:91:2b:
c6:9d:79:a2:36:b5:c0:d7:96:86:46:45:4b:9d:e1:
a4:3a:1c:c9:3c:0b:00:df:68:4c:2a:47:e7:6c:d4:
e7:cb:1a:42:98:67:72:af:7e:96:35:36:4c:7f:bd:
15:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:FD:25:67:18:F3:A0:B4:DA:22:06:88:AB:46:5F:DB:1F:33:49:E4
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/Ev0lZxjzoLTaIgaIq0Zf2x8zSeQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.27.0/24
194.169.48.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:ee:9d:2e:85:58:40:1a:e3:41:f1:ea:52:52:5c:12:5a:be:
be:0c:22:4d:15:17:f0:69:5f:49:aa:e2:4c:44:50:36:4f:f6:
b8:80:16:69:fa:fc:91:75:90:1f:4d:47:90:f9:02:0b:3b:84:
0c:b3:65:a1:21:d2:c6:88:86:73:01:f8:09:4e:e0:a9:07:aa:
2d:fe:6f:4e:d8:66:ad:a8:d7:a5:3f:18:36:da:c4:fc:bd:99:
1a:b7:eb:e1:6f:90:10:b5:92:29:57:3f:71:b2:da:9f:ef:13:
fc:72:94:1b:40:fc:ed:ff:3f:0e:9b:f8:86:54:22:1d:29:c5:
3b:ca:7c:e5:a6:b3:9c:bf:95:e8:c1:1c:43:45:b9:66:23:15:
ee:c6:30:c9:e8:6e:30:55:85:6e:4e:b6:aa:3b:84:31:ec:f5:
7e:4c:82:33:91:7d:b6:86:29:d4:16:31:2a:9c:58:eb:cb:c8:
d8:c9:2b:05:26:b6:5f:1f:97:e1:9d:52:f7:da:7f:66:05:5e:
0c:21:ab:97:21:07:02:36:c7:b1:85:ca:d5:25:95:ea:f5:1a:
b0:af:ae:d5:38:66:f6:99:7e:18:ee:cf:6a:79:9a:ab:27:2b:
0e:ca:1d:4f:80:6f:50:8f:01:39:ef:d4:84:86:a4:e3:6f:69:
26:2c:a4:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 01:32:59 2025 by rpki-client