Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/EnGnf8k30dGR_pX5oQlfubt0KsY.roa
File: EnGnf8k30dGR_pX5oQlfubt0KsY.roa (raw, json)
Hash identifier: D7S22eHOUV/y6yaMVRcgHilzikQ7NKXRSVRU2PzQc2Y=
Subject key identifier: 12:71:A7:7F:C9:37:D1:D1:91:FE:95:F9:A1:09:5F:B9:BB:74:2A:C6
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 0190977EE624A9F77726457C126B982DD401
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/EnGnf8k30dGR_pX5oQlfubt0KsY.roa
Signing time: Tue 09 Jul 2024 12:36:34 +0000
ROA not before: Tue 09 Jul 2024 12:36:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211282
IP address blocks: 80.72.18.0/23 maxlen: 32
2a00:8740:600::/40 maxlen: 40
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:97:7e:e6:24:a9:f7:77:26:45:7c:12:6b:98:2d:d4:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Jul 9 12:36:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1271a77fc937d1d191fe95f9a1095fb9bb742ac6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:36:44:0f:16:fb:85:11:4d:98:de:56:22:36:
19:6f:b6:da:7e:7b:d2:b1:54:da:1c:1e:ff:cf:de:
5d:92:ec:ff:59:0e:6b:80:ad:4f:5d:b7:2d:16:c3:
60:d0:fe:36:6d:c7:c7:d6:e4:60:60:95:03:d0:c4:
64:55:d0:b6:74:e2:ce:22:7d:34:1c:0d:42:e9:3c:
5d:37:2c:01:c8:9c:46:d8:7a:ca:b1:b5:d9:7c:c0:
41:36:35:c4:ab:71:6f:68:cd:03:8b:47:a5:39:9c:
94:b4:72:67:3b:55:3c:60:44:e9:61:37:f4:1b:f1:
38:4a:e2:8e:dc:6c:e8:cf:f5:68:ef:56:7f:ce:37:
00:57:3f:ea:46:d7:15:81:7b:bb:3c:7c:1a:d6:ff:
48:db:0b:ce:1b:78:e7:42:04:1c:90:cf:26:2d:e1:
6d:94:c5:a7:a6:32:b1:94:f9:61:e8:19:b2:b5:7b:
f4:5b:29:ae:06:ed:19:2b:e0:52:3e:21:d4:aa:cf:
9a:80:a6:d2:04:c2:35:8e:a4:3a:26:b6:0e:a8:2a:
df:6b:9a:b7:24:4d:ba:05:b2:59:6b:5d:64:cb:52:
5c:fd:ab:fe:ac:ff:71:92:4d:1f:b6:04:3b:e4:61:
8d:c9:e7:b6:5e:85:01:94:59:c1:cb:39:fc:16:05:
a4:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:71:A7:7F:C9:37:D1:D1:91:FE:95:F9:A1:09:5F:B9:BB:74:2A:C6
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/EnGnf8k30dGR_pX5oQlfubt0KsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.72.18.0/23
IPv6:
2a00:8740:600::/40
Signature Algorithm: sha256WithRSAEncryption
78:d6:e6:fc:18:6d:9a:cf:98:7b:83:f6:1c:b3:fb:67:c1:cc:
9f:aa:06:f0:90:0d:e4:66:8c:d0:a6:ce:53:0f:d9:73:77:08:
75:1f:d1:3c:38:34:38:3b:fc:03:e8:e8:0b:21:ef:32:96:0c:
53:42:27:8a:22:dc:d2:63:47:79:eb:5b:95:1e:db:d1:88:f0:
51:a9:ef:e2:c8:73:ba:a1:7b:3b:17:0d:d1:94:35:48:42:8e:
c0:40:1f:f6:d6:31:30:cf:03:65:57:2a:08:d8:73:3a:2c:f6:
2f:87:fb:72:77:5d:1a:0b:8a:4e:0e:28:ea:43:4e:96:18:4f:
d0:1f:1e:e7:38:43:9b:4c:5f:57:3d:71:7a:f3:9f:51:14:92:
12:0b:f9:d5:1f:59:da:ff:1a:7f:f3:31:6d:ff:e8:e2:2d:5b:
4c:60:b3:08:2f:bb:0e:cb:15:ce:2b:a4:0b:31:4b:99:08:3e:
6a:40:20:82:fc:e7:ff:47:99:7c:e4:5f:53:3b:01:11:85:1d:
5c:54:91:b0:74:08:d3:d5:84:b4:af:c6:07:bb:63:29:08:84:
2c:ab:5a:b4:1a:91:67:c8:c6:46:a6:e8:57:bb:6e:5f:11:c4:
f3:dd:80:8e:77:0f:8f:92:35:ef:f4:73:bb:5d:b8:b8:da:43:
c4:99:cd:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:15:14 2025 by rpki-client