Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/d8esjmPuOYPxE8UnDfFWDgFKYaU.roa
File: d8esjmPuOYPxE8UnDfFWDgFKYaU.roa (raw, json)
Hash identifier: pab1Mik3MN6c/gaXQhPiY9hDZxlZnfUCSPaGfJz7dU8=
Subject key identifier: 77:C7:AC:8E:63:EE:39:83:F1:13:C5:27:0D:F1:56:0E:01:4A:61:A5
Certificate issuer: /CN=5975d519de239cf164cb94a6660c2530ceaef254
Certificate serial: 0191028BFAD185616DBA63042A01D0050AAF
Authority key identifier: 59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/d8esjmPuOYPxE8UnDfFWDgFKYaU.roa
Signing time: Tue 30 Jul 2024 07:30:13 +0000
ROA not before: Tue 30 Jul 2024 07:30:13 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6830
IP address blocks: 85.11.167.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Nov 2024 09:12:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:02:8b:fa:d1:85:61:6d:ba:63:04:2a:01:d0:05:0a:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5975d519de239cf164cb94a6660c2530ceaef254
Validity
Not Before: Jul 30 07:30:13 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=77c7ac8e63ee3983f113c5270df1560e014a61a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:97:41:af:64:ac:bc:7e:2a:c0:ef:1f:c9:ed:
a1:c8:3f:7f:78:3d:60:f1:99:96:c5:43:4f:49:a0:
4e:1a:e7:ef:a3:6b:56:0d:96:d1:0d:48:2e:eb:24:
78:56:ae:bf:d9:90:b5:0c:a0:33:bc:12:d9:3a:19:
f1:b1:80:8e:db:1a:dc:92:e2:f0:6c:72:4a:bc:5a:
50:a1:d3:7e:b4:e0:e2:cc:16:f2:7d:88:3d:7f:e4:
94:0d:a1:d1:f6:f3:d1:3e:f3:bc:79:78:a4:fd:bc:
a1:ee:4d:ae:71:a6:82:d7:a7:6d:8f:bc:ed:ee:4a:
34:9e:14:a0:2c:62:db:1f:2d:71:32:fa:12:d5:0c:
f1:e0:09:97:26:cc:39:87:27:11:1c:45:63:e5:f0:
ef:c2:68:e8:43:ff:d6:80:96:38:40:f4:78:97:06:
f5:4f:77:1c:b7:4a:50:a7:41:92:33:ff:24:d2:7a:
b2:ba:0f:8d:4a:81:32:23:9d:54:b9:18:a6:45:f2:
50:a1:21:20:39:0d:24:e6:15:1e:e6:66:cd:6f:71:
a1:88:c6:43:f5:3c:77:3b:69:9a:b4:07:d9:59:4b:
11:2f:60:1e:2f:23:91:46:81:3a:44:f0:32:6c:a4:
9e:16:8f:06:bb:38:cc:23:13:27:ee:23:a8:62:00:
c1:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:C7:AC:8E:63:EE:39:83:F1:13:C5:27:0D:F1:56:0E:01:4A:61:A5
X509v3 Authority Key Identifier:
keyid:59:75:D5:19:DE:23:9C:F1:64:CB:94:A6:66:0C:25:30:CE:AE:F2:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WXXVGd4jnPFky5SmZgwlMM6u8lQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/d8esjmPuOYPxE8UnDfFWDgFKYaU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/0c0c37-b401-401b-aa65-2cc675726975/1/WXXVGd4jnPFky5SmZgwlMM6u8lQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.11.167.0/24
Signature Algorithm: sha256WithRSAEncryption
93:97:bb:62:04:49:8a:78:24:69:34:bb:a8:ce:5b:dc:db:03:
20:d2:31:44:0c:13:8d:6c:47:2b:01:27:6e:41:5c:35:90:97:
5b:a5:64:84:97:bc:f3:4d:f1:dd:c7:41:6d:9c:e3:86:64:b5:
dc:dd:27:29:05:9c:e3:33:a5:6d:23:ee:da:a6:36:34:25:66:
da:4c:b2:32:93:cf:c4:42:7d:74:79:10:8c:b8:a4:48:c2:5c:
9a:3e:19:ad:6f:2f:d2:29:e6:98:21:a8:37:88:1e:b0:88:1b:
5e:49:52:a2:88:45:a2:27:86:54:42:43:85:15:5d:c3:82:8d:
a4:11:86:b0:f6:3f:57:89:0f:55:f3:40:4c:0a:fc:21:74:88:
39:b1:0b:9f:38:0d:8a:4b:71:b7:ed:bd:e4:95:6a:8f:26:ba:
28:16:2d:cf:07:50:46:3a:e0:ea:c2:47:78:87:95:92:f7:e2:
07:e3:c4:5b:1f:2f:db:8e:63:d9:72:68:30:ef:21:1c:fe:e8:
e2:98:99:65:8c:3c:f0:c4:d8:a6:7b:80:02:67:6e:db:78:45:
b3:28:98:7e:ff:00:42:5c:10:dd:e3:67:71:cc:c7:1a:53:44:
43:2e:65:be:63:7a:81:7c:17:5b:04:25:f6:ee:4a:f2:c9:f8:
a9:57:df:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 07:56:44 2025 by rpki-client