Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/sV6h0FeJAbW1Zq0GHsrdrZoAcug.roa
File: sV6h0FeJAbW1Zq0GHsrdrZoAcug.roa (raw, json)
Hash identifier: 8mMAoStjRa5tR4tF1BkDeaOOVL7b2yZbyqNaA6gN67E=
Subject key identifier: B1:5E:A1:D0:57:89:01:B5:B5:66:AD:06:1E:CA:DD:AD:9A:00:72:E8
Certificate issuer: /CN=ab7aaabb23cd245bfa828fb02521d644c6d5b566
Certificate serial: 0193DE94099562CBF50FF02D0D72DA1EAE84
Authority key identifier: AB:7A:AA:BB:23:CD:24:5B:FA:82:8F:B0:25:21:D6:44:C6:D5:B5:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q3qquyPNJFv6go-wJSHWRMbVtWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/sV6h0FeJAbW1Zq0GHsrdrZoAcug.roa
Signing time: Thu 19 Dec 2024 11:01:03 +0000
ROA not before: Thu 19 Dec 2024 11:01:03 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212318
IP address blocks: 88.218.113.0/24 maxlen: 24
88.218.115.0/24 maxlen: 24
93.179.90.0/23 maxlen: 24
178.57.65.0/24 maxlen: 24
178.57.66.0/23 maxlen: 24
178.57.68.0/24 maxlen: 24
185.217.37.0/24 maxlen: 24
2a0f:52c1::/46 maxlen: 48
Validation: Failed, certificate revoked on Mon 23 Dec 2024 11:20:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:de:94:09:95:62:cb:f5:0f:f0:2d:0d:72:da:1e:ae:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab7aaabb23cd245bfa828fb02521d644c6d5b566
Validity
Not Before: Dec 19 11:01:03 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b15ea1d0578901b5b566ad061ecaddad9a0072e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cb:66:b7:f3:e1:c0:94:e4:d9:0f:ab:a5:35:
13:8b:cb:ad:7f:3e:9a:fe:64:92:20:6c:a1:ce:6a:
54:07:f6:94:41:d7:cb:13:8d:2f:41:cb:41:db:95:
09:99:05:6d:bc:e1:c3:a5:b5:0c:66:80:08:ab:c1:
7f:59:95:f4:38:a6:bb:20:c7:d0:75:5a:4b:74:f4:
4e:59:8b:9f:8e:2f:da:fb:a2:d8:15:15:44:a8:13:
9d:91:04:29:04:10:e2:9e:bb:62:7d:61:06:7c:c4:
bf:24:a4:cb:ae:4e:b5:6b:66:ec:bd:c7:f6:8f:cf:
be:c7:c4:01:d4:0c:12:d4:5c:c4:0a:65:1c:4e:fa:
1c:fa:b8:21:45:4b:0c:d4:54:4a:99:ec:5d:e4:40:
85:0e:d2:75:0b:f0:37:5e:66:00:a4:4e:33:49:4f:
af:2d:db:8b:ec:79:20:dc:d0:7a:1b:ba:e3:a3:01:
05:8c:9c:99:06:c8:5d:7e:c6:b1:ee:bc:e9:a1:a4:
ec:f1:93:8c:2e:77:47:3c:95:61:d3:03:97:2f:79:
2d:71:3a:a0:f9:64:ae:02:cc:ea:a3:b5:eb:39:dc:
02:c9:4e:12:12:f7:51:d6:14:28:3e:4c:9c:03:12:
52:29:a0:e2:9c:89:08:af:ac:6e:08:bd:8c:78:09:
16:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5E:A1:D0:57:89:01:B5:B5:66:AD:06:1E:CA:DD:AD:9A:00:72:E8
X509v3 Authority Key Identifier:
keyid:AB:7A:AA:BB:23:CD:24:5B:FA:82:8F:B0:25:21:D6:44:C6:D5:B5:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q3qquyPNJFv6go-wJSHWRMbVtWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/sV6h0FeJAbW1Zq0GHsrdrZoAcug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/46dec5-c38d-4c1d-9cec-9ead81da2e44/1/q3qquyPNJFv6go-wJSHWRMbVtWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.218.113.0/24
88.218.115.0/24
93.179.90.0/23
178.57.65.0-178.57.68.255
185.217.37.0/24
IPv6:
2a0f:52c1::/46
Signature Algorithm: sha256WithRSAEncryption
79:85:89:8c:a3:82:da:07:bc:b4:f3:00:4f:30:77:0d:8d:9c:
0f:6a:81:57:e9:fc:1b:97:01:f7:ca:cc:d2:41:95:14:99:ff:
2f:9b:86:ab:25:f8:13:20:b8:b5:a9:c4:da:cc:be:20:74:5f:
94:50:b8:6e:28:24:63:da:fa:44:3d:6a:29:52:9c:25:c6:3a:
83:a4:d2:c5:8f:23:c8:aa:56:82:86:60:fe:a0:0a:aa:27:a9:
58:43:cf:22:3a:72:29:44:19:df:3e:c6:45:25:bf:73:c2:ee:
cf:e9:43:c1:f5:a1:de:c5:02:81:76:e3:f4:06:75:36:b7:b1:
b7:06:c1:bd:98:bd:ae:ec:aa:7c:48:c1:07:1a:1f:09:9b:0b:
b1:a7:53:8d:08:db:50:e1:6b:96:5d:03:d8:9f:59:7e:eb:bb:
53:14:9a:b9:07:05:f3:4a:81:3a:89:84:11:f8:d1:f7:41:c5:
88:9a:6d:ce:1d:76:7f:16:5c:e6:61:92:61:0c:47:e2:ed:5e:
ee:7f:b7:27:da:6a:6c:ee:41:e4:9c:cc:54:95:40:cf:fe:25:
63:2f:93:1c:86:e2:63:58:70:f9:9c:42:78:d8:8a:ff:dc:76:
9a:ea:d4:92:3e:af:38:1e:09:b5:bb:a7:fe:88:87:fc:e4:53:
05:59:14:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 16:12:01 2025 by rpki-client