Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/eIO97GZXBydXQFj6kpA2-L-rYcU.roa
File: eIO97GZXBydXQFj6kpA2-L-rYcU.roa (raw, json)
Hash identifier: XipyPoVrZXunqXyqFQy4aTj+gTaY0boeIvO5yibA6pc=
Subject key identifier: 78:83:BD:EC:66:57:07:27:57:40:58:FA:92:90:36:F8:BF:AB:61:C5
Certificate issuer: /CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Certificate serial: 019270ADD1AC5BAC7CA6C61CE93DCCA1EDF9
Authority key identifier: D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/eIO97GZXBydXQFj6kpA2-L-rYcU.roa
Signing time: Wed 09 Oct 2024 09:48:12 +0000
ROA not before: Wed 09 Oct 2024 09:48:12 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215281
IP address blocks: 93.185.157.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:48:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:70:ad:d1:ac:5b:ac:7c:a6:c6:1c:e9:3d:cc:a1:ed:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3e97033a36aa9bcc0c2f167e620d7ca1493cbea
Validity
Not Before: Oct 9 09:48:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7883bdec66570727574058fa929036f8bfab61c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:41:2b:df:bf:9b:4c:22:c9:2e:56:53:5b:8e:
08:cb:eb:cb:d4:3b:3e:bd:57:bc:ba:53:a6:48:fa:
06:48:9b:83:1a:d8:7e:9c:a6:91:bd:a4:d9:f6:14:
16:62:cf:01:53:e3:42:7e:f3:8c:43:3b:99:83:af:
b8:bf:90:c8:45:d3:66:bc:40:b6:5c:cf:ff:ca:f2:
c1:6a:3e:18:51:eb:ce:72:b5:2b:c4:02:69:8a:8e:
dd:b0:b1:71:fb:6c:5a:7b:1f:25:f9:35:88:8a:a0:
ec:1f:15:5b:e3:7e:7f:76:09:b6:fd:90:da:93:a2:
ec:cd:32:07:2c:f2:e6:55:c1:6a:ca:67:c8:18:ca:
e1:22:f7:4f:2d:8f:8a:0f:98:d0:de:90:cc:c0:be:
b5:ae:5e:d7:0b:6d:94:93:94:76:d4:c9:87:6e:ec:
e1:10:db:a1:d2:c4:2b:58:66:b1:44:cc:66:d4:72:
ef:d1:1f:e8:1d:e2:3c:2c:bb:00:e3:41:74:cb:ef:
46:3a:cf:8a:f2:3a:40:b5:ee:63:b7:55:27:b7:19:
8a:b6:ab:1f:21:c0:7a:df:4a:9b:da:30:76:78:2d:
82:89:ed:51:d4:c5:f4:2e:e1:06:f3:b8:85:b7:77:
17:88:66:59:6f:fe:f4:de:f8:c5:64:ca:ea:13:e8:
52:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:83:BD:EC:66:57:07:27:57:40:58:FA:92:90:36:F8:BF:AB:61:C5
X509v3 Authority Key Identifier:
keyid:D3:E9:70:33:A3:6A:A9:BC:C0:C2:F1:67:E6:20:D7:CA:14:93:CB:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-lwM6NqqbzAwvFn5iDXyhSTy-o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/eIO97GZXBydXQFj6kpA2-L-rYcU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5a320b-e94f-41c9-82f3-dbf9d41f1798/1/0-lwM6NqqbzAwvFn5iDXyhSTy-o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.185.157.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:58:75:dd:a6:ca:ec:49:ec:9e:b6:98:4c:c8:10:fc:90:a2:
f9:f5:db:01:f7:99:a0:c0:04:a9:d1:d6:88:32:56:7c:59:11:
10:e6:a7:77:9d:16:49:3d:67:6f:e8:9d:69:a7:9d:ba:08:dd:
4c:51:52:92:41:ca:12:9b:bc:a6:0b:31:bf:90:04:3b:28:1e:
23:ba:77:f4:60:27:6c:d7:66:20:53:6b:7b:b9:6b:c4:d1:39:
09:6d:69:f7:3c:40:59:38:4f:b9:da:44:c0:dd:4d:a0:76:80:
d9:f9:01:f4:a2:d5:01:77:db:7f:1a:27:10:e6:d2:fc:a8:df:
c6:20:74:59:e5:ae:d9:1c:9e:78:71:c8:b8:0f:07:33:ef:8e:
06:2f:1c:df:c4:57:17:7f:d6:6b:f9:59:bb:35:a5:56:1e:ce:
78:4e:f9:6b:8d:5e:87:5d:e0:46:68:8c:c0:88:37:38:fe:0a:
f6:0e:0d:c2:ef:1f:d3:0c:5c:d7:4e:ac:7b:3b:2b:5b:6c:0d:
5a:9e:ca:49:39:59:3a:e8:77:24:6a:51:ca:5b:c7:31:41:40:
f9:9f:c3:3c:34:bd:75:66:c3:be:58:38:86:72:d7:59:85:7a:
41:39:df:98:ce:18:18:f5:a3:07:97:07:be:4a:cb:07:89:55:
be:37:8e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:16 2025 by rpki-client