Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/5MGwZCyzzj8d9XFLv6MGBqSDVCI.roa
File: 5MGwZCyzzj8d9XFLv6MGBqSDVCI.roa (raw, json)
Hash identifier: bPzQhohR/zQJnSASb42mJ1dJCLRbpBWX7TatZdRf6hI=
Subject key identifier: E4:C1:B0:64:2C:B3:CE:3F:1D:F5:71:4B:BF:A3:06:06:A4:83:54:22
Certificate issuer: /CN=16ea37a8e73e7679a933d70f7b9c872081024455
Certificate serial: 019238D000DBBB37F37C4F357719E906B3E9
Authority key identifier: 16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/5MGwZCyzzj8d9XFLv6MGBqSDVCI.roa
Signing time: Sat 28 Sep 2024 13:26:48 +0000
ROA not before: Sat 28 Sep 2024 13:26:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49666
IP address blocks: 185.81.98.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:38:d0:00:db:bb:37:f3:7c:4f:35:77:19:e9:06:b3:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16ea37a8e73e7679a933d70f7b9c872081024455
Validity
Not Before: Sep 28 13:26:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e4c1b0642cb3ce3f1df5714bbfa30606a4835422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ce:d5:67:0d:d1:40:0d:40:0a:c2:10:ab:62:
cf:cc:ac:8f:76:0a:99:a1:44:3b:08:72:23:f7:e1:
11:65:98:df:45:0c:5a:d6:e3:40:22:5b:54:1e:0a:
02:8d:1b:95:73:ba:7c:55:de:ca:97:15:2d:f1:f8:
58:ba:ea:97:7e:d4:e6:47:3b:d8:53:0a:05:e2:8e:
64:3a:05:b4:2f:88:a8:cf:cf:9a:65:b0:4b:d8:12:
d0:03:29:9c:e2:53:53:57:26:8c:ca:d9:1c:79:02:
24:67:21:ce:ef:c9:82:32:e2:4b:32:ad:dc:a4:25:
ba:09:40:64:71:61:2c:7b:1b:35:39:95:6c:b7:c1:
0c:ff:bd:4b:b5:5e:a1:92:03:19:76:46:9e:0e:02:
1c:94:4e:f9:c7:33:b0:6d:6c:bd:f6:d3:05:9b:d9:
52:74:3a:34:7c:ba:cc:cf:49:57:c2:0a:8c:11:bb:
f3:d1:6a:ec:3d:50:88:47:b5:61:c2:c3:76:4a:54:
c9:2b:ee:48:21:73:4c:5e:51:3f:2c:72:a5:02:d3:
bd:25:af:84:46:11:20:00:6b:d9:43:70:b3:e4:10:
cf:57:54:75:f4:b9:d6:7c:76:e0:2e:2a:97:e6:8a:
90:7b:5c:1a:5d:7d:c8:fe:54:20:ab:94:ae:c3:b4:
6c:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:C1:B0:64:2C:B3:CE:3F:1D:F5:71:4B:BF:A3:06:06:A4:83:54:22
X509v3 Authority Key Identifier:
keyid:16:EA:37:A8:E7:3E:76:79:A9:33:D7:0F:7B:9C:87:20:81:02:44:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Fuo3qOc-dnmpM9cPe5yHIIECRFU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/5MGwZCyzzj8d9XFLv6MGBqSDVCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/51cd94-a055-43ee-a09b-472b0d072e83/1/Fuo3qOc-dnmpM9cPe5yHIIECRFU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.98.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:57:52:27:63:e2:6b:18:f4:62:d9:cc:2f:02:3e:21:c7:4e:
83:37:80:0a:0a:c5:3b:c2:f1:a9:1b:49:67:57:23:e0:7e:7f:
aa:41:b2:68:6e:a0:55:a5:67:4e:06:0f:59:2c:a1:ff:32:f7:
5a:b9:f5:98:9f:cf:e8:84:ad:f1:71:13:4c:df:9a:3f:cd:f6:
23:87:8a:9d:9c:96:90:9b:7a:dd:a0:a1:56:be:75:5f:7d:de:
53:e6:1a:b4:0d:fd:b2:0e:c8:9d:f8:d6:77:f3:00:ce:a8:c8:
e0:68:e7:46:80:63:32:19:3c:e8:6e:99:ef:b1:47:47:6a:e8:
31:3a:e1:11:92:28:2b:dd:65:9d:78:a5:2b:89:fd:1c:fe:8d:
6b:3c:2c:46:80:d7:3c:75:92:5a:93:c6:bf:db:72:bf:77:6b:
d0:40:c5:45:a9:f0:f7:e7:26:69:52:aa:a8:0e:07:44:a0:49:
f9:60:54:6c:bc:02:c0:d6:72:c8:e2:34:d2:e4:14:fb:3e:e2:
8e:23:c4:06:1e:0e:1c:ba:23:d7:b9:a2:d9:71:4e:1f:f1:53:
4d:da:6a:4f:ff:8f:1b:b7:92:4d:24:be:0b:b0:26:12:63:df:
89:3b:a7:d4:6d:cf:af:5b:4f:38:bf:5c:0a:23:34:a6:b4:b6:
40:ef:9c:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:09:18 2025 by rpki-client