Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/EYSQoKZSr5N79uhBnNog5aI-yE0.roa
File: EYSQoKZSr5N79uhBnNog5aI-yE0.roa (raw, json)
Hash identifier: vS7t5AzyXpsBJjpXeIMYpnLFA1f/QcpIadWObpU3L2k=
Subject key identifier: 11:84:90:A0:A6:52:AF:93:7B:F6:E8:41:9C:DA:20:E5:A2:3E:C8:4D
Certificate issuer: /CN=e30f8894f308172ace92fbe6052eec23853eadad
Certificate serial: 018D5130F650412B6A0AF13FE1320AA97BAD
Authority key identifier: E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/EYSQoKZSr5N79uhBnNog5aI-yE0.roa
Signing time: Sun 28 Jan 2024 17:49:39 +0000
ROA not before: Sun 28 Jan 2024 17:49:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3920
IP address blocks: 77.247.111.0/24 maxlen: 24
117.18.118.0/24 maxlen: 24
117.55.202.0/24 maxlen: 24
117.55.203.0/24 maxlen: 24
185.53.91.0/24 maxlen: 24
212.237.231.0/24 maxlen: 24
2a13:adc0::/48 maxlen: 48
2a13:adc0:1::/48 maxlen: 48
2a13:adc0:2::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 22 Aug 2024 15:26:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:51:30:f6:50:41:2b:6a:0a:f1:3f:e1:32:0a:a9:7b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e30f8894f308172ace92fbe6052eec23853eadad
Validity
Not Before: Jan 28 17:49:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=118490a0a652af937bf6e8419cda20e5a23ec84d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:72:54:c4:36:0b:d2:13:4a:5a:a2:ae:dd:74:
b7:9f:53:82:05:03:4f:48:31:91:5b:94:b7:74:19:
b8:b7:ca:86:14:d0:19:24:3a:9f:99:df:57:e7:e1:
22:4f:23:4d:bc:b3:48:20:c0:98:a9:54:4d:a2:89:
35:c9:fc:f1:22:0d:b3:ef:f1:89:dc:90:8f:ec:59:
1c:6f:07:7b:1a:7f:08:17:e2:85:aa:81:0b:d7:57:
f1:b5:72:ea:89:04:aa:a8:6a:45:b2:59:6a:93:36:
66:cf:34:83:aa:41:6c:70:62:2b:b1:58:ac:03:da:
06:7f:ef:04:6c:8d:f6:d0:3a:fc:10:7b:a4:d9:29:
8c:53:e3:0b:1a:6d:7a:5e:45:8c:52:21:fa:3a:44:
54:b7:7a:d5:c8:ff:22:b8:8b:31:ba:2f:26:d6:cf:
c0:26:02:b2:0e:52:2b:19:59:e9:b7:ad:0d:af:62:
9d:4e:9f:0f:09:92:f6:b3:c8:dc:ad:7d:5a:82:d3:
4d:f2:37:11:6d:cc:15:25:98:c8:98:9c:86:b8:48:
f6:b9:08:32:d2:bc:7c:2e:46:bc:a2:ac:23:bb:5b:
c4:4e:7e:8f:81:9a:f3:65:90:7a:f0:fd:c5:4c:2e:
1a:a2:58:98:a5:09:25:3c:46:7a:83:fd:86:65:ef:
58:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:84:90:A0:A6:52:AF:93:7B:F6:E8:41:9C:DA:20:E5:A2:3E:C8:4D
X509v3 Authority Key Identifier:
keyid:E3:0F:88:94:F3:08:17:2A:CE:92:FB:E6:05:2E:EC:23:85:3E:AD:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4w-IlPMIFyrOkvvmBS7sI4U-ra0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/EYSQoKZSr5N79uhBnNog5aI-yE0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/587460-eab7-40d9-a512-3e660d0252db/1/4w-IlPMIFyrOkvvmBS7sI4U-ra0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.247.111.0/24
117.18.118.0/24
117.55.202.0/23
185.53.91.0/24
212.237.231.0/24
IPv6:
2a13:adc0::-2a13:adc0:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
66:3e:05:81:0c:d0:df:85:39:0c:f5:bb:2b:ef:b9:0e:aa:51:
5d:4c:54:04:01:e5:23:0a:65:da:08:52:17:1d:92:20:6b:8f:
f6:89:4c:73:c7:26:24:b9:84:c4:52:2b:43:74:df:1b:72:91:
fa:c7:5e:56:c1:9e:6b:89:14:97:54:d8:79:74:7a:99:16:c1:
03:52:f5:6f:df:35:e5:e6:3e:16:21:9a:e5:65:50:5f:cd:64:
d1:b3:b3:47:fc:0c:b4:bd:41:f0:9e:3b:e0:7f:b8:dc:62:61:
31:7a:d9:db:68:26:bb:19:aa:6a:4e:48:3d:a6:71:d2:9e:8f:
1d:be:82:32:83:7a:f5:4c:26:82:52:28:42:1a:b1:08:35:c7:
a6:9a:e4:06:bb:e0:aa:9b:a3:81:69:e2:52:66:05:78:8c:36:
cb:3f:01:09:07:7b:5d:b7:eb:fa:7f:cf:0a:a4:12:2b:57:51:
d8:09:c8:48:b7:da:6a:bd:d2:44:c4:0e:bd:f6:64:db:4f:e6:
b5:bb:6a:83:23:5a:a9:05:c3:4c:5d:12:1b:80:f3:83:84:0d:
53:b5:d9:da:ab:49:9e:fe:eb:b4:d2:e5:7e:8f:c3:1c:71:ef:
9e:0f:00:96:2e:0d:11:2e:51:d3:fe:22:fd:8f:9e:01:6a:e9:
4a:c7:d4:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:12 2025 by rpki-client