Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/gCpK1c5Twv_2KDdLtyviAiebX7s.roa
File: gCpK1c5Twv_2KDdLtyviAiebX7s.roa (raw, json)
Hash identifier: fImSyT6D9G7xiK1neTNdhXQRSXAgEHqDuO0FNy8bMDQ=
Subject key identifier: 80:2A:4A:D5:CE:53:C2:FF:F6:28:37:4B:B7:2B:E2:02:27:9B:5F:BB
Certificate issuer: /CN=7741d13a15a987dd60019c0265d2ecec4840944a
Certificate serial: 0192BE0C68DDC1806400E0FBD53430914BEB
Authority key identifier: 77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/gCpK1c5Twv_2KDdLtyviAiebX7s.roa
Signing time: Thu 24 Oct 2024 10:22:17 +0000
ROA not before: Thu 24 Oct 2024 10:22:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16509
IP address blocks: 81.161.62.0/24 maxlen: 24
91.227.193.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:48:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:be:0c:68:dd:c1:80:64:00:e0:fb:d5:34:30:91:4b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7741d13a15a987dd60019c0265d2ecec4840944a
Validity
Not Before: Oct 24 10:22:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=802a4ad5ce53c2fff628374bb72be202279b5fbb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:78:0d:b5:f7:2f:63:b9:c5:5a:71:ca:23:6b:
5e:65:5c:a7:ac:bf:52:19:a9:ed:8a:e0:21:41:79:
33:a3:c5:f1:55:7f:09:fe:16:8a:27:5d:ac:37:0e:
e3:c8:d1:63:df:f6:1f:49:72:56:b2:23:80:00:4a:
40:78:70:ee:8c:db:58:92:71:6c:27:f7:a7:8a:3d:
07:ea:6a:b8:ad:18:a0:d3:48:65:43:90:89:3f:2e:
3d:ed:49:90:5b:86:30:f5:49:56:05:75:a4:fc:1d:
6e:46:4a:75:cc:9b:b8:e8:ba:78:f3:6e:a9:c9:b0:
22:ca:26:d5:50:42:7b:f3:53:8e:a8:0a:83:b7:21:
0f:55:c2:3a:0b:6c:77:4d:a6:64:b6:14:dc:d6:e3:
5f:81:d5:84:f8:c1:2c:aa:a3:7b:a5:4f:45:80:45:
6a:1c:b1:59:c2:7d:77:1e:3b:01:cc:7d:04:ca:14:
58:77:d2:35:6b:24:4c:37:5d:02:e0:7d:42:04:f5:
78:0e:4b:93:54:1f:01:55:b5:14:48:16:7e:49:58:
68:8c:62:3b:9d:62:89:53:ef:b0:28:fb:62:6f:b5:
6f:1b:d3:2d:ea:f1:72:75:71:de:1e:bb:82:cc:12:
8c:9a:d0:98:15:d4:fc:6c:5d:c5:bd:c0:bf:2e:5b:
fd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:2A:4A:D5:CE:53:C2:FF:F6:28:37:4B:B7:2B:E2:02:27:9B:5F:BB
X509v3 Authority Key Identifier:
keyid:77:41:D1:3A:15:A9:87:DD:60:01:9C:02:65:D2:EC:EC:48:40:94:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0HROhWph91gAZwCZdLs7EhAlEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/gCpK1c5Twv_2KDdLtyviAiebX7s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/0be9d0-999a-449a-8519-3523e3030be4/1/d0HROhWph91gAZwCZdLs7EhAlEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.161.62.0/24
91.227.193.0/24
Signature Algorithm: sha256WithRSAEncryption
68:e2:82:ed:81:9f:fa:f5:83:26:e3:3f:8a:41:59:59:f9:91:
4d:5a:db:ad:35:f1:18:5a:4e:28:f6:78:3c:f9:de:5a:c8:1b:
ae:5c:e1:17:7a:ad:9e:bb:48:18:ce:4b:1f:0b:b3:2c:ab:66:
2d:4a:f5:01:09:2b:f3:67:b1:6f:e5:0c:f0:8d:d4:e2:3f:72:
0e:76:9e:15:5d:76:52:dc:1c:d9:44:13:25:b9:50:be:f8:8b:
54:00:fc:1d:48:19:76:46:c8:d9:86:bc:1e:87:91:1f:c2:a0:
06:e6:b1:23:f0:3e:9b:f3:22:20:29:ba:86:4e:12:c1:6f:52:
23:d2:20:5e:fb:67:6a:72:01:98:fe:7d:ba:58:7c:7b:d9:9e:
5c:19:5c:f4:e6:1f:f8:0b:bd:df:40:a3:1a:75:51:7d:09:f2:
4c:c2:18:7c:f4:8f:7a:09:64:6c:d9:48:95:30:4d:74:33:30:
48:fa:45:52:b3:49:ad:34:dc:31:c8:29:a0:7b:d5:62:b7:9d:
36:10:4d:b1:62:b9:98:e4:c1:22:c5:1a:22:2e:8e:ed:93:e9:
3f:ad:97:eb:68:82:48:db:c1:be:18:37:13:e2:ca:29:71:7d:
c3:b2:75:48:ee:f8:fa:b8:c0:06:b8:e7:bf:7f:04:fb:b9:8c:
66:48:c4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:07:19 2025 by rpki-client