Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/eO5GahcE-OhWqZlI0Q9zBxKGzRw.roa
File: eO5GahcE-OhWqZlI0Q9zBxKGzRw.roa (raw, json)
Hash identifier: jRuYg+K0rXhbEQ7FTBJApAd0l2Qjo+RvMj7mPK5e0y0=
Subject key identifier: 78:EE:46:6A:17:04:F8:E8:56:A9:99:48:D1:0F:73:07:12:86:CD:1C
Certificate issuer: /CN=826605b4d27f13968e8794e6ef091223748817d8
Certificate serial: 0193E7A8CE1D329871BD04A32D6EFC22A610
Authority key identifier: 82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/eO5GahcE-OhWqZlI0Q9zBxKGzRw.roa
Signing time: Sat 21 Dec 2024 05:20:19 +0000
ROA not before: Sat 21 Dec 2024 05:20:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7979
IP address blocks: 192.95.83.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 23:48:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e7:a8:ce:1d:32:98:71:bd:04:a3:2d:6e:fc:22:a6:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=826605b4d27f13968e8794e6ef091223748817d8
Validity
Not Before: Dec 21 05:20:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=78ee466a1704f8e856a99948d10f73071286cd1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a7:14:e0:02:11:a2:c0:bc:ea:f2:ae:ea:fe:
c1:3d:90:cf:7a:64:14:1a:02:4f:b3:29:e0:33:e3:
68:81:aa:e8:6f:1e:fe:07:3c:56:36:9b:e9:d2:37:
11:4b:3a:9e:c8:90:6c:6d:3f:49:f2:68:6c:59:46:
d9:1a:6c:80:b8:13:c0:a6:7d:33:ce:4f:72:ad:f8:
89:03:8e:4b:f0:2c:21:14:21:19:0c:d4:05:8e:30:
13:35:e9:23:65:19:bf:08:b9:7c:8e:e4:3e:73:ee:
ef:c1:e5:e6:29:e0:47:95:4f:ad:80:7a:bf:d2:2b:
7f:a8:45:6c:8e:e9:84:f4:b4:eb:bc:2a:ba:b8:73:
38:0d:00:b4:5a:08:9b:80:85:2c:05:60:3d:26:7a:
d7:76:69:c9:32:ec:c5:d0:20:b9:fd:95:4b:76:c9:
62:88:1a:d4:71:13:7d:95:ee:0f:ae:d6:c1:2e:9b:
4d:9e:47:9c:ab:25:2d:84:5a:18:23:a0:c8:2c:60:
81:c9:69:01:4b:7f:53:ef:04:d9:e3:cb:6e:8e:cb:
d7:c4:ed:77:c8:2d:6f:db:b7:e6:92:90:93:af:fb:
fc:6d:8d:00:7c:49:d0:12:d2:f7:de:48:ca:df:70:
d5:a8:a5:25:6f:95:10:56:a6:02:53:4c:45:25:4a:
0f:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:EE:46:6A:17:04:F8:E8:56:A9:99:48:D1:0F:73:07:12:86:CD:1C
X509v3 Authority Key Identifier:
keyid:82:66:05:B4:D2:7F:13:96:8E:87:94:E6:EF:09:12:23:74:88:17:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/eO5GahcE-OhWqZlI0Q9zBxKGzRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/fbcc32-33c8-41ff-89fa-2d1918ba1c0e/1/gmYFtNJ_E5aOh5Tm7wkSI3SIF9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.95.83.0/24
Signature Algorithm: sha256WithRSAEncryption
84:5c:c0:85:ae:92:fa:69:7c:31:d7:40:d9:f7:2f:91:36:1a:
1a:27:bb:59:0f:ca:c4:76:bd:fa:27:64:b2:9f:38:89:b7:2a:
ca:1b:b6:81:51:14:3e:f2:5e:0d:b8:1d:96:0e:06:a6:80:ff:
2c:ce:9d:fe:ac:63:6d:53:13:4a:c2:9d:8f:49:7a:8c:a9:e8:
1e:1d:a1:37:00:59:8d:50:4b:a8:1b:43:95:cd:7a:da:56:91:
e7:00:1b:5f:52:74:31:0a:5d:6e:c7:2c:f1:e3:b8:5a:d5:f9:
0b:04:d8:b0:4c:51:2c:65:71:97:97:36:4e:4e:4a:c1:a7:a1:
69:e5:b5:e3:fd:1a:bf:bf:96:a3:32:e9:a1:30:3f:fd:51:0c:
11:c6:11:1c:3d:3f:bf:df:2e:71:6a:2e:17:7d:f6:a1:d5:e0:
ed:fc:2b:19:8a:e8:47:28:78:7a:56:d7:60:61:26:5a:84:2f:
b1:9d:24:83:ff:40:58:44:9c:72:6a:fc:98:de:0c:4e:55:ad:
28:ec:61:c8:4b:e2:20:1b:97:c0:1f:dc:d1:3d:92:a2:99:75:
48:d0:f1:92:a6:84:1f:31:60:28:ca:9a:1f:57:55:af:e3:69:
2b:13:fb:88:54:7b:29:9c:10:a8:bd:d2:ff:7c:61:7d:12:4f:
3a:d9:70:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 08:02:49 2025 by rpki-client