Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/7tup9xNpe5MNWOqUvDUsKQntSNo.roa
File: 7tup9xNpe5MNWOqUvDUsKQntSNo.roa (raw, json)
Hash identifier: Unjhf/JPM39+r8niEr966fdQNnKtA5iAiGtBbubnL0s=
Subject key identifier: EE:DB:A9:F7:13:69:7B:93:0D:58:EA:94:BC:35:2C:29:09:ED:48:DA
Certificate issuer: /CN=d78ac174e852b71c31163ec1d8649fff6b07ba79
Certificate serial: 01909673901AAE37B4220D821B35A6BD1AF6
Authority key identifier: D7:8A:C1:74:E8:52:B7:1C:31:16:3E:C1:D8:64:9F:FF:6B:07:BA:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14rBdOhStxwxFj7B2GSf_2sHunk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/7tup9xNpe5MNWOqUvDUsKQntSNo.roa
Signing time: Tue 09 Jul 2024 07:44:34 +0000
ROA not before: Tue 09 Jul 2024 07:44:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8822
IP address blocks: 185.104.117.0/24 maxlen: 24
195.182.224.0/19 maxlen: 19
195.182.224.0/24 maxlen: 24
195.182.225.0/24 maxlen: 24
195.182.226.0/24 maxlen: 24
2a0f:4c00::/29 maxlen: 29
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:48:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:96:73:90:1a:ae:37:b4:22:0d:82:1b:35:a6:bd:1a:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d78ac174e852b71c31163ec1d8649fff6b07ba79
Validity
Not Before: Jul 9 07:44:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=eedba9f713697b930d58ea94bc352c2909ed48da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:82:8e:38:69:2a:41:21:3e:d2:52:1b:5b:71:
7a:71:6b:eb:c5:16:76:08:c2:02:38:49:76:63:45:
fe:f0:34:7e:37:13:7f:0f:5a:3e:eb:ea:43:97:6f:
00:28:ae:1d:d3:ff:d2:d1:e5:d4:e9:e0:86:7b:b5:
f7:ad:1d:37:ea:b3:6d:e3:c0:d1:2f:7d:b7:b8:f5:
d7:ba:5a:60:23:20:0f:25:e6:a7:ef:11:ba:3a:8d:
2f:b9:db:36:4e:18:ab:69:3d:c9:8b:de:95:9d:1d:
8c:76:8f:ff:e8:82:46:34:e9:ca:33:28:ec:da:49:
65:43:58:0a:90:a4:be:e8:41:c8:1f:73:97:c8:b1:
2b:db:a7:19:70:ea:5a:ba:8b:d0:a7:bd:6c:96:6a:
4a:af:8d:4a:1a:11:c4:18:14:fc:bd:0b:1a:1d:c7:
4b:6a:7e:9e:bd:ad:69:98:3b:77:90:43:4f:94:0c:
1d:2a:51:ef:6a:63:1c:cf:74:da:75:91:d2:b5:30:
a1:ab:ef:d0:3c:0a:ba:61:43:b2:d1:31:b1:75:3d:
ac:31:08:4d:95:20:e3:44:74:e2:d4:ed:0e:4e:58:
62:07:95:b5:49:cf:41:db:22:a5:bb:a1:27:ab:5e:
6a:86:0d:df:22:19:fb:a5:4e:51:a6:e4:1f:8b:ad:
98:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:DB:A9:F7:13:69:7B:93:0D:58:EA:94:BC:35:2C:29:09:ED:48:DA
X509v3 Authority Key Identifier:
keyid:D7:8A:C1:74:E8:52:B7:1C:31:16:3E:C1:D8:64:9F:FF:6B:07:BA:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14rBdOhStxwxFj7B2GSf_2sHunk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/7tup9xNpe5MNWOqUvDUsKQntSNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/e80231-53b8-4225-8523-947de3868cd5/1/14rBdOhStxwxFj7B2GSf_2sHunk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.104.117.0/24
195.182.224.0/19
IPv6:
2a0f:4c00::/29
Signature Algorithm: sha256WithRSAEncryption
07:6c:99:a3:e1:e6:a2:c7:be:3a:d5:07:26:3f:4e:64:5e:68:
39:08:d2:4a:73:eb:8b:7b:a5:59:98:74:44:ab:9f:56:8b:ce:
8c:29:94:ab:de:f9:4d:e6:58:ef:cd:d5:d5:a6:42:1d:e8:01:
78:31:8b:a7:45:fa:54:e1:84:e5:88:1b:23:da:71:87:63:95:
f7:1c:dc:68:ce:c1:4d:f9:6f:87:dc:85:6a:3e:cd:dc:d5:31:
72:37:ea:10:1b:50:38:9d:7d:32:bc:3f:09:b4:03:ef:3b:48:
dc:a5:9a:48:80:35:8b:8c:4b:0f:e8:2f:57:38:c2:55:a3:05:
64:78:87:95:f7:4f:83:0d:cd:fb:d0:88:f8:67:e4:bd:78:08:
bc:90:0f:4e:4e:5c:bb:f8:af:ba:24:95:17:d7:8f:c4:e8:19:
94:a9:8f:24:5c:86:06:8b:b9:f8:4a:81:43:45:05:c2:27:f4:
0e:07:3a:99:2a:76:42:70:a5:a7:d7:6a:67:dc:a9:b5:d9:f3:
5d:12:3a:d8:c1:e3:0e:93:8e:57:6b:d7:35:94:a9:b9:74:c1:
af:4e:3f:fc:9a:ff:e3:34:bf:d6:91:ac:73:a9:b8:2c:69:5c:
2b:80:76:5d:d6:59:b3:9e:b5:22:74:8f:67:fb:56:75:05:52:
40:5a:d7:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 23:02:20 2025 by rpki-client