Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/eZwqNS5RNMbWGiiXTrHf9b-hprw.roa
File: eZwqNS5RNMbWGiiXTrHf9b-hprw.roa (raw, json)
Hash identifier: gzbmUZlEKampCHFrn+glz9fMqgGnYcJ+SoVsIDZ7ER4=
Subject key identifier: 79:9C:2A:35:2E:51:34:C6:D6:1A:28:97:4E:B1:DF:F5:BF:A1:A6:BC
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 018CC79558484ECEA7435F57A491A8271F34
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/eZwqNS5RNMbWGiiXTrHf9b-hprw.roa
Signing time: Tue 02 Jan 2024 00:31:42 +0000
ROA not before: Tue 02 Jan 2024 00:31:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 56684
IP address blocks: 92.114.106.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:58:48:4e:ce:a7:43:5f:57:a4:91:a8:27:1f:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 2 00:31:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=799c2a352e5134c6d61a28974eb1dff5bfa1a6bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:5a:0f:ca:54:5f:68:88:14:7e:da:a6:a0:81:
41:75:b1:99:ae:20:63:c9:1f:d6:5a:72:6a:3d:50:
a7:48:79:54:9b:6f:7c:3e:7f:af:8a:cd:e7:0a:83:
ae:7d:7c:c8:c4:6e:d4:08:07:73:e0:e6:8b:43:36:
b2:95:13:b7:6f:7c:e1:68:c2:fb:d9:e6:7e:2e:a5:
af:05:e7:84:3f:26:94:f2:40:82:40:d6:c3:08:5a:
30:10:7d:20:c7:cf:ea:1d:71:f0:c6:30:ec:30:04:
42:5f:29:da:3b:71:d9:7a:fb:21:55:33:48:93:b7:
75:6e:b0:82:26:f7:cf:1d:b3:ec:a7:11:94:52:86:
08:93:f4:08:05:57:90:32:bb:fd:4e:b8:76:a7:69:
0f:81:3f:73:50:ec:36:d9:19:c8:30:77:0e:c6:23:
30:4e:17:09:90:29:06:c5:08:c1:f6:a4:ac:58:fa:
66:6a:8b:7d:d0:9b:4f:17:9d:a0:e6:6b:26:7a:49:
b5:0f:b9:8d:fb:6d:85:ee:7b:81:0f:61:cc:b1:41:
3e:65:6b:13:d1:7e:bd:d4:c7:52:a9:52:c2:6d:d1:
93:3b:d4:7d:cb:62:82:3a:df:d3:c4:1e:a1:ce:ec:
75:a1:24:45:20:f7:95:96:30:02:33:3a:0f:12:07:
d2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:9C:2A:35:2E:51:34:C6:D6:1A:28:97:4E:B1:DF:F5:BF:A1:A6:BC
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/eZwqNS5RNMbWGiiXTrHf9b-hprw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.114.106.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:6b:09:73:33:0b:f9:3c:97:c9:04:5e:e0:da:b2:cd:b1:04:
40:37:3d:89:fa:26:59:19:0b:b5:5c:4c:96:7b:5f:03:b8:b9:
8a:09:8a:c5:ce:ab:d4:2a:26:8c:ee:d2:29:db:eb:b2:5e:f7:
44:3a:93:e9:3d:c1:b0:3c:23:a1:9c:ef:c9:b3:38:a5:18:e9:
f2:58:59:aa:3d:14:56:c7:97:81:ee:da:a2:62:d6:93:42:41:
04:80:0b:d0:52:c5:19:da:0b:8c:97:28:51:f6:87:17:b7:78:
c2:3e:e6:e2:9d:c8:81:86:80:07:9e:e6:95:8b:99:76:22:77:
b1:9a:bd:ea:02:e8:e5:75:8a:06:6b:52:14:b4:9e:c3:35:68:
c9:eb:2a:00:c6:37:7b:84:cb:01:f3:ae:a2:3d:11:09:f8:fd:
78:19:57:68:06:eb:4c:e2:b6:ed:08:70:95:d8:7f:c9:9d:2d:
a5:de:17:da:f2:1a:1c:63:6b:f5:c8:f2:3d:99:6e:74:71:2e:
7e:ea:e3:aa:eb:c0:15:e4:10:2e:c2:97:09:8e:06:02:bf:7f:
81:1e:98:f6:10:2c:8c:af:5e:3f:8e:5c:91:49:e5:00:3a:f9:
b5:b3:fc:de:b8:ce:c7:c4:f5:4e:03:db:ab:3b:68:52:5b:b7:
d6:6e:53:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:10:20 2025 by rpki-client