Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/02E2y6h5abB06two70PvPHKOZVg.roa
File: 02E2y6h5abB06two70PvPHKOZVg.roa (raw, json)
Hash identifier: yoURR3BqQmWaciGqkJv/344ppu6JL8IKZKTkgBowBL4=
Subject key identifier: D3:61:36:CB:A8:79:69:B0:74:EA:DC:28:EF:43:EF:3C:72:8E:65:58
Certificate issuer: /CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Certificate serial: 0194236A15A9DC94CF2E499BF6790036CEB1
Authority key identifier: 97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/02E2y6h5abB06two70PvPHKOZVg.roa
Signing time: Wed 01 Jan 2025 19:49:02 +0000
ROA not before: Wed 01 Jan 2025 19:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 82.206.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Wed 05 Feb 2025 14:51:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:15:a9:dc:94:cf:2e:49:9b:f6:79:00:36:ce:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9799140b42db6cb6bf8c6dd413747fcf4a6fd9b5
Validity
Not Before: Jan 1 19:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d36136cba87969b074eadc28ef43ef3c728e6558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:34:6b:58:36:dc:03:62:c2:15:b9:84:08:1c:
ce:1c:40:e0:07:d3:1a:e4:06:f8:76:14:ab:12:3b:
8d:c0:f9:2e:fa:03:67:8f:d4:70:a7:44:33:0f:8f:
97:4b:5d:ca:4c:94:c5:d8:56:75:61:9e:73:14:ed:
0f:32:81:b6:8d:56:49:be:11:da:e4:eb:b3:82:6c:
ca:c8:9e:ec:49:05:06:fd:7e:24:76:e7:24:9e:4e:
76:9c:12:cc:e1:ae:86:12:33:91:b8:88:6f:90:25:
28:d8:01:ea:dc:f4:99:5a:0e:a5:d4:07:5f:18:8c:
8c:11:7b:61:c5:d6:31:83:98:68:ed:47:6c:76:cb:
25:c2:8c:35:96:5b:7b:55:19:fd:33:48:bd:36:b7:
b0:d4:23:4f:91:05:80:dc:e9:aa:57:cd:1c:1d:da:
ed:cd:0d:cc:35:97:ec:03:02:2f:62:30:9d:7f:c8:
cd:d7:63:d1:e1:bd:5b:3f:ad:52:37:1d:d5:89:d9:
49:67:68:74:c6:49:7b:2d:6a:66:33:b9:31:e8:10:
88:06:4e:3c:17:3b:ab:45:a4:f4:32:af:33:b5:36:
b0:91:ef:5c:3e:73:92:02:99:12:57:a7:d9:3e:2b:
05:6b:30:81:75:5d:41:82:fc:db:19:df:7d:1b:50:
af:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:61:36:CB:A8:79:69:B0:74:EA:DC:28:EF:43:EF:3C:72:8E:65:58
X509v3 Authority Key Identifier:
keyid:97:99:14:0B:42:DB:6C:B6:BF:8C:6D:D4:13:74:7F:CF:4A:6F:D9:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5kUC0LbbLa_jG3UE3R_z0pv2bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/02E2y6h5abB06two70PvPHKOZVg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/4eef03-91fe-445a-a7cd-595919be0f52/1/l5kUC0LbbLa_jG3UE3R_z0pv2bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.206.4.0/22
Signature Algorithm: sha256WithRSAEncryption
3f:0f:e4:28:7b:42:1e:1e:ca:c3:6a:60:09:62:b1:b8:4c:f7:
b1:3a:fc:de:bb:40:f2:d6:ed:fb:f2:d4:13:e2:db:31:78:a3:
04:6f:d7:d6:6b:63:7a:4c:7a:13:86:e9:ea:27:91:10:2b:97:
58:11:d0:71:e9:2b:a9:69:7a:68:53:2e:81:1f:04:ff:4b:f2:
3f:0e:7f:0f:7b:43:c7:ec:c5:48:41:a2:00:9a:6b:1e:b3:15:
b4:26:11:64:c7:8f:f7:5e:84:4c:4b:ed:b5:08:9c:e3:bd:11:
8d:a8:0f:0a:24:32:ae:dd:df:37:80:67:f5:d6:67:d0:97:7e:
fc:85:09:14:86:1d:02:23:83:0a:ad:3f:02:23:64:07:84:d9:
e1:34:83:6a:58:b5:13:c9:78:b2:11:b9:33:92:a0:26:04:3b:
bb:2d:a7:14:9d:d0:7c:e7:94:b6:d6:21:5b:1b:27:16:b4:d5:
b8:4d:78:f0:35:ac:bd:fb:a4:4c:f0:5d:bf:4e:7d:bd:46:72:
b3:77:10:c6:5e:f5:e4:e5:98:3c:a4:8d:80:7f:56:c1:ea:c7:
8d:1b:f9:99:f8:e9:57:a6:a2:9c:3d:91:67:a6:0a:cd:2c:bd:
bb:ab:d3:24:a2:4d:08:15:bd:f7:87:1a:1d:07:68:33:a5:1c:
d2:0c:91:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:35:21 2025 by rpki-client