Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/eQ_8uYbu98FMn6uXOnT4WkIXI5c.roa
File: eQ_8uYbu98FMn6uXOnT4WkIXI5c.roa (raw, json)
Hash identifier: G0u364nz/nVe4MOizUdM1XV7sfVderJk6vK0Dg0DhQs=
Subject key identifier: 79:0F:FC:B9:86:EE:F7:C1:4C:9F:AB:97:3A:74:F8:5A:42:17:23:97
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 0191B28A21F9E730F360C40E8A676522415D
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/eQ_8uYbu98FMn6uXOnT4WkIXI5c.roa
Signing time: Mon 02 Sep 2024 11:41:22 +0000
ROA not before: Mon 02 Sep 2024 11:41:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201186
IP address blocks: 185.113.138.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:b2:8a:21:f9:e7:30:f3:60:c4:0e:8a:67:65:22:41:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Sep 2 11:41:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=790ffcb986eef7c14c9fab973a74f85a42172397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ee:37:8e:53:51:87:88:b2:3a:4d:11:e2:f2:
20:7f:65:a7:41:76:1b:11:b0:46:4e:f2:87:fc:6f:
86:a0:04:7c:20:ed:6b:28:34:67:bd:ad:f1:9c:fd:
43:66:a6:8a:41:59:04:13:f3:70:dd:db:3d:cb:34:
9c:c7:e1:65:cf:19:12:c1:47:a3:1c:1c:fb:46:11:
8e:b6:57:9a:8b:f6:55:07:c0:ff:af:c4:06:d4:79:
3f:c4:2a:9d:07:49:76:d9:8b:5d:06:dd:f4:cc:b6:
39:e0:f7:61:8a:ba:5f:70:e4:69:8e:43:07:0a:a1:
c5:c3:84:0c:4a:3f:e3:0b:57:5a:d7:bf:89:37:65:
4f:98:cb:b5:58:72:5b:e2:d7:97:29:26:03:e7:fc:
7b:57:aa:51:94:2e:f0:f8:70:f4:5e:45:c8:95:9f:
86:98:e2:11:6d:40:dd:c6:af:c9:7a:68:11:96:46:
23:c1:a0:93:f3:40:31:82:dc:ee:d2:23:06:00:b0:
48:a9:ed:f8:cd:c1:a2:ce:2b:37:10:11:05:0b:01:
4c:d2:00:aa:0c:a9:9a:30:57:16:61:31:3b:2c:d7:
6a:02:e1:57:93:f3:02:b1:a1:82:0a:63:b9:c3:83:
56:dc:ec:75:d9:51:25:2b:9a:b7:bd:65:96:b8:6d:
6a:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:0F:FC:B9:86:EE:F7:C1:4C:9F:AB:97:3A:74:F8:5A:42:17:23:97
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/eQ_8uYbu98FMn6uXOnT4WkIXI5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.113.138.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:a7:ed:3e:41:f4:a5:1b:1d:15:4a:5a:a6:fb:73:6f:4e:7d:
34:4f:70:82:b7:44:99:ca:4a:48:09:f9:b5:9e:88:0f:a2:cf:
a2:64:11:6d:5f:6d:08:8c:43:2b:1a:66:07:32:95:98:c6:22:
e4:42:bd:d2:b3:48:55:e1:ff:ba:fd:ef:a8:64:cd:9d:10:8c:
37:63:a8:be:51:e6:91:d4:ec:77:42:81:3f:a5:d7:4a:42:df:
cb:aa:56:6c:bf:e7:ce:1f:d0:29:04:96:61:de:8c:ba:ad:8e:
93:95:ff:1a:e1:e9:3a:b5:a5:85:99:29:57:9f:53:8a:49:ff:
ea:5a:4e:5b:70:e6:37:a8:39:46:8d:31:82:3f:be:69:0b:6e:
d1:7f:dc:b5:51:ff:19:3f:d8:92:bf:bf:86:12:1e:0b:96:30:
b2:c3:ed:70:99:23:12:d0:ba:83:1d:91:ff:da:57:83:f2:76:
98:a8:50:b6:d5:dc:6e:7d:da:a5:f1:05:df:38:68:da:b0:8e:
cd:fc:1c:89:94:97:2a:b8:40:85:1f:bc:7b:22:be:b8:20:68:
5a:43:02:3c:ff:39:b6:8c:02:7d:46:d0:9e:7b:d3:ee:d4:2d:
83:a1:f7:5c:8d:f1:6f:f8:43:18:1e:6a:68:83:ee:41:d4:2f:
55:e6:18:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:32:16 2025 by rpki-client