Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/eWZyei_MNEhBgCBg_M3uwII-f40.roa
File: eWZyei_MNEhBgCBg_M3uwII-f40.roa (raw, json)
Hash identifier: nLLtSwz2Lc398vBeOmx0rBfQFVIvdeMzRZEX5MD/tok=
Subject key identifier: 79:66:72:7A:2F:CC:34:48:41:80:20:60:FC:CD:EE:C0:82:3E:7F:8D
Certificate issuer: /CN=beba48c7e2c9e05eda546d899146b89f799df85d
Certificate serial: 018CC6B890872DCBF9C6C42FDED264C5E45A
Authority key identifier: BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/eWZyei_MNEhBgCBg_M3uwII-f40.roa
Signing time: Mon 01 Jan 2024 20:30:33 +0000
ROA not before: Mon 01 Jan 2024 20:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58139
IP address blocks: 188.93.241.224/29 maxlen: 29
91.219.182.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:52:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:90:87:2d:cb:f9:c6:c4:2f:de:d2:64:c5:e4:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=beba48c7e2c9e05eda546d899146b89f799df85d
Validity
Not Before: Jan 1 20:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7966727a2fcc344841802060fccdeec0823e7f8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:4d:6b:f3:fb:cd:f9:c9:28:b1:28:66:99:eb:
f2:31:54:6d:94:85:23:d4:eb:a7:b9:24:71:5b:4f:
08:01:9c:bd:49:71:3d:01:81:25:80:23:2a:5d:20:
73:6c:08:0d:f2:cf:fb:37:ef:61:ce:13:85:de:ab:
f6:40:9c:5a:72:bd:b6:45:e8:ef:bd:2c:46:a5:82:
7d:dc:9c:ed:c5:b0:39:b4:42:90:8b:10:f0:ba:a7:
89:ec:47:9a:7e:45:a2:be:0d:52:3d:70:69:cb:c0:
b3:58:bf:c5:5d:03:c9:b4:66:a6:9e:e7:20:39:e9:
8c:8a:7f:39:30:0c:e9:f8:1c:09:19:c8:d6:58:9c:
73:97:3b:8f:fb:48:d7:dc:30:0d:49:bf:96:e2:71:
53:42:c1:ac:7b:d2:9d:b3:2c:df:af:9e:82:68:7a:
a4:c2:08:57:b8:4f:70:e6:f9:89:1a:07:27:44:6b:
29:18:ac:ae:e2:6c:6f:28:ef:37:3c:06:1b:9d:e8:
2a:91:21:c2:4c:57:d0:43:b1:8f:69:58:64:33:20:
c0:13:69:ea:73:4d:01:ae:cb:03:25:fd:4b:34:81:
67:a9:58:24:12:68:00:d9:72:a4:c0:af:00:25:dc:
c0:1e:7d:61:c9:59:80:60:d3:c2:df:ca:22:67:ca:
e0:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:66:72:7A:2F:CC:34:48:41:80:20:60:FC:CD:EE:C0:82:3E:7F:8D
X509v3 Authority Key Identifier:
keyid:BE:BA:48:C7:E2:C9:E0:5E:DA:54:6D:89:91:46:B8:9F:79:9D:F8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vrpIx-LJ4F7aVG2JkUa4n3md-F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/eWZyei_MNEhBgCBg_M3uwII-f40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/7f8821-1566-43f4-ab26-3d522181a2c4/1/vrpIx-LJ4F7aVG2JkUa4n3md-F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.219.182.0/24
188.93.241.224/29
Signature Algorithm: sha256WithRSAEncryption
81:62:ac:91:d2:6b:95:29:8a:41:01:08:fe:96:76:db:6b:c0:
ce:5d:a0:31:78:ab:43:c0:32:af:7f:0e:f2:9e:0b:53:90:d9:
64:0b:e1:c4:9e:61:9d:d7:42:ca:76:d8:c0:91:42:42:6a:53:
46:db:9a:f4:91:89:aa:0e:76:be:46:d4:cc:45:d6:94:c9:9e:
23:2c:a9:dc:73:df:f3:e7:ae:ad:24:4c:05:5b:30:61:32:07:
f7:e3:81:c4:75:00:ff:53:a8:98:fd:8e:0b:b8:30:d4:92:7b:
fa:d4:ca:ea:7e:cc:30:eb:50:6d:68:aa:3c:98:b7:c8:0b:26:
c3:65:33:67:27:31:04:3a:3a:90:23:ba:20:5b:76:cc:42:76:
a1:72:dc:8d:66:9e:3e:ed:cb:2a:c8:33:33:17:29:bd:8b:31:
33:f5:fa:f0:f6:62:54:f5:95:12:47:ed:c4:fe:1a:2e:dc:65:
e2:de:0b:0e:c1:11:e4:6d:3c:c6:b9:0d:f3:71:89:53:10:ed:
68:ae:86:71:eb:fd:df:21:3c:20:27:f2:1b:eb:6e:10:2a:0a:
06:a9:1d:6a:15:36:2c:13:83:f7:34:10:e6:ef:78:06:5d:ea:
43:01:e9:5a:78:c6:e9:02:1d:e0:b1:17:32:ab:ef:6e:d9:3a:
7f:2e:9e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:58 2025 by rpki-client