Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/ekF18_zJhwZ5sUmQpeyVsorX4To.roa
File: ekF18_zJhwZ5sUmQpeyVsorX4To.roa (raw, json)
Hash identifier: 1xykR0DXY2jJEsBqRvhJvS/2KCvgN5s6bV6xu+c6Nqk=
Subject key identifier: 7A:41:75:F3:FC:C9:87:06:79:B1:49:90:A5:EC:95:B2:8A:D7:E1:3A
Certificate issuer: /CN=43e0a364131841056d48b2d788ea00ca4b91db56
Certificate serial: 0195F0396BAC8560B93CA15BC996F4DB87CA
Authority key identifier: 43:E0:A3:64:13:18:41:05:6D:48:B2:D7:88:EA:00:CA:4B:91:DB:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q-CjZBMYQQVtSLLXiOoAykuR21Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/ekF18_zJhwZ5sUmQpeyVsorX4To.roa
Signing time: Tue 01 Apr 2025 07:20:49 +0000
ROA not before: Tue 01 Apr 2025 07:20:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48254
IP address blocks: 45.8.224.0/24 maxlen: 24
45.8.225.0/24 maxlen: 24
45.8.226.0/24 maxlen: 24
45.8.227.0/24 maxlen: 24
185.146.164.0/24 maxlen: 24
185.146.165.0/24 maxlen: 24
185.146.166.0/24 maxlen: 24
185.146.167.0/24 maxlen: 24
185.151.28.0/24 maxlen: 24
185.151.29.0/24 maxlen: 24
185.151.30.0/24 maxlen: 24
185.151.31.0/24 maxlen: 24
194.38.52.0/24 maxlen: 24
194.38.53.0/24 maxlen: 24
194.38.54.0/24 maxlen: 24
2a07:7800::/29 maxlen: 48
2a07:7800::/48 maxlen: 48
2a07:7800:1::/48 maxlen: 48
2a07:7800:2::/48 maxlen: 48
2a07:7800:3::/48 maxlen: 48
2a07:7800:4::/48 maxlen: 48
2a07:7800:5::/48 maxlen: 48
2a07:7800:6::/48 maxlen: 48
2a07:7800:7::/48 maxlen: 48
2a07:7800:8::/48 maxlen: 48
2a07:7800:9::/48 maxlen: 48
2a07:7800:10::/48 maxlen: 48
2a07:7800:11::/48 maxlen: 48
Validation: Failed, certificate revoked on Thu 10 Apr 2025 14:21:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:f0:39:6b:ac:85:60:b9:3c:a1:5b:c9:96:f4:db:87:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43e0a364131841056d48b2d788ea00ca4b91db56
Validity
Not Before: Apr 1 07:20:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a4175f3fcc9870679b14990a5ec95b28ad7e13a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1e:db:a9:30:5a:ba:4e:b4:f3:7b:8b:2d:60:
ef:1f:6a:da:04:7f:6e:c0:75:78:49:40:92:60:1c:
e9:ea:ee:9a:fc:9a:c2:f0:aa:9d:0e:d0:17:93:b3:
ef:35:35:3d:08:85:16:e1:c4:5f:53:df:7f:61:19:
32:d8:5e:1c:93:97:fe:1c:79:15:34:46:94:91:76:
81:b6:cf:6a:4e:0c:5a:dd:66:c4:3b:42:c0:78:6d:
b5:59:5a:68:9a:26:94:b8:c5:72:a4:37:ed:5c:f7:
db:50:be:8e:f0:30:d2:e9:e6:34:bf:ae:58:5f:90:
4f:b4:86:44:0f:dc:45:32:fd:fe:df:3e:96:84:3d:
40:74:bb:72:bb:89:b5:0b:ec:a5:40:d4:8e:f9:98:
a5:66:33:a7:78:77:3b:4e:4f:d7:46:c4:91:cc:07:
8b:48:db:59:15:d4:5c:77:44:7e:b8:29:23:be:2a:
9d:d0:04:c9:2f:42:19:98:29:f2:13:d7:67:e5:69:
9f:67:24:27:50:ca:e2:e9:03:aa:0c:5f:77:1e:fd:
3f:93:d0:e4:8c:f3:6b:98:5c:02:e0:a8:e6:4a:d8:
89:ba:27:24:12:03:17:9c:0d:9d:9f:e0:e3:94:92:
2c:8b:f3:44:ec:c1:ef:ae:21:d8:05:a5:43:28:fc:
0e:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:41:75:F3:FC:C9:87:06:79:B1:49:90:A5:EC:95:B2:8A:D7:E1:3A
X509v3 Authority Key Identifier:
keyid:43:E0:A3:64:13:18:41:05:6D:48:B2:D7:88:EA:00:CA:4B:91:DB:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q-CjZBMYQQVtSLLXiOoAykuR21Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/ekF18_zJhwZ5sUmQpeyVsorX4To.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/9cbb06-b4da-4c94-b418-4b081cc2b39a/1/Q-CjZBMYQQVtSLLXiOoAykuR21Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.224.0/22
185.146.164.0/22
185.151.28.0/22
194.38.52.0-194.38.54.255
IPv6:
2a07:7800::/29
Signature Algorithm: sha256WithRSAEncryption
aa:24:35:2b:d2:ce:37:91:93:24:11:f4:50:e6:79:2e:42:a2:
a4:ce:1f:09:f0:fb:0a:60:8d:d6:fb:ec:a0:01:1c:cc:34:15:
5c:16:c9:39:67:a8:50:75:59:b8:b7:6f:7a:5c:6b:b3:63:62:
ce:5e:1c:9b:e9:bb:98:e0:bd:f4:25:e2:9b:67:59:6a:cb:65:
1b:68:c8:9a:13:46:e5:8e:d9:5c:f2:4f:b9:ba:84:9c:87:9c:
0d:ac:12:40:a9:ab:25:3e:5b:a0:c4:34:fb:50:6d:0e:4a:e1:
cd:18:32:60:c6:be:f2:19:84:d5:88:89:4d:ce:78:41:e1:2c:
76:6d:cd:14:fa:a2:4a:06:7c:92:75:1d:d3:71:97:6a:b3:5f:
f1:0f:40:7d:d2:39:76:00:64:9a:58:0d:86:94:6f:c9:a6:8a:
44:26:7e:2b:51:f1:ba:a4:5e:7f:89:6d:ac:b7:d9:75:4e:b9:
53:d3:f0:bf:b7:f9:8b:30:94:d9:40:4d:35:94:9a:6a:10:ee:
3c:3b:59:e9:38:3b:a0:82:bf:d6:d5:42:87:c7:55:c0:f0:e5:
1f:3c:85:fd:e9:23:58:55:1d:eb:a9:e6:7f:d5:dd:fc:0f:9f:
92:ae:33:e3:ce:ac:e9:92:2f:16:a0:0a:1a:3d:1c:e8:a0:d8:
9c:b2:9d:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:55:25 2025 by rpki-client