Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/t0WpllcZJ5WaYAbTay2jWPlqFTo.roa
File: t0WpllcZJ5WaYAbTay2jWPlqFTo.roa (raw, json)
Hash identifier: T6vfAKORJ1wmOE/H28q8n384GGB9C+lFpTdO3SF9ioo=
Subject key identifier: B7:45:A9:96:57:19:27:95:9A:60:06:D3:6B:2D:A3:58:F9:6A:15:3A
Certificate issuer: /CN=7ebb888f2b99de9972e2446eba058ab8e2cd7b3f
Certificate serial: 018FF1BBA15274A88DD7A719C8FDEE03B3C7
Authority key identifier: 7E:BB:88:8F:2B:99:DE:99:72:E2:44:6E:BA:05:8A:B8:E2:CD:7B:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fruIjyuZ3ply4kRuugWKuOLNez8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/t0WpllcZJ5WaYAbTay2jWPlqFTo.roa
Signing time: Fri 07 Jun 2024 08:05:56 +0000
ROA not before: Fri 07 Jun 2024 08:05:56 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201032
IP address blocks: 185.77.89.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 07 Jun 2024 15:18:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f1:bb:a1:52:74:a8:8d:d7:a7:19:c8:fd:ee:03:b3:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ebb888f2b99de9972e2446eba058ab8e2cd7b3f
Validity
Not Before: Jun 7 08:05:56 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b745a996571927959a6006d36b2da358f96a153a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e5:cf:80:19:41:60:84:c7:36:37:1b:65:6e:
82:76:09:27:a5:db:b9:2a:8e:aa:1f:4e:03:cf:62:
17:d8:a6:61:09:4a:d5:ad:f6:ef:1e:79:00:df:65:
89:88:3b:45:d8:8a:d6:05:7c:69:d4:eb:f4:fa:d6:
4e:e8:f5:6a:11:31:2e:7d:e9:19:0a:d7:5b:d0:a0:
fa:0a:bb:0f:57:9f:00:7e:bf:c0:b4:a7:b7:4b:44:
5d:4b:22:05:a7:03:c8:19:6e:e5:8d:a7:38:4f:25:
62:65:63:cc:d2:0f:e4:5b:2a:f8:27:fc:6f:8b:56:
c2:7e:8e:6b:8c:4f:a6:77:8e:a3:dd:e4:9b:a6:ec:
71:37:a2:5e:24:9b:54:ba:85:b7:16:29:8c:23:e1:
d8:da:ee:2d:b4:6c:89:9d:42:38:da:78:49:db:32:
e5:7a:8a:22:bc:4c:79:5c:0c:f1:77:4d:f0:a9:ba:
a0:83:5b:3e:6e:9b:ed:8a:4c:8b:fe:70:c5:57:c5:
9f:ed:ee:7a:dc:6f:01:8f:f3:64:d9:ba:23:36:18:
39:17:29:5b:34:34:79:1a:80:27:11:13:7f:6d:1f:
bf:5d:32:93:e2:7d:67:c8:17:b4:c8:c7:de:ba:99:
4d:73:a2:13:ef:45:bb:92:b3:66:9e:e0:45:36:c5:
6f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:45:A9:96:57:19:27:95:9A:60:06:D3:6B:2D:A3:58:F9:6A:15:3A
X509v3 Authority Key Identifier:
keyid:7E:BB:88:8F:2B:99:DE:99:72:E2:44:6E:BA:05:8A:B8:E2:CD:7B:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fruIjyuZ3ply4kRuugWKuOLNez8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/t0WpllcZJ5WaYAbTay2jWPlqFTo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/e1b34a-f388-4ddd-92cd-e1c0a4d04917/1/fruIjyuZ3ply4kRuugWKuOLNez8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.77.89.0/24
Signature Algorithm: sha256WithRSAEncryption
76:3e:a4:20:0b:c5:f4:2e:fa:c7:2e:d0:f0:c3:be:93:40:a6:
e3:a2:4b:cf:dc:b2:c4:bd:97:f5:ef:87:b7:2c:9d:3d:a7:6c:
2a:ed:ed:0a:8f:00:2a:5d:92:d3:68:ac:d1:31:24:b6:64:2e:
b8:52:21:a6:a3:7f:2f:74:7e:ed:91:1b:87:5f:50:09:54:23:
ad:cb:6c:56:88:01:0b:a2:bd:cb:ea:b3:d8:ca:96:2c:d6:e8:
3e:e9:67:4f:79:87:c7:0f:8b:9c:cc:fd:5d:d9:f7:29:e8:73:
df:46:ec:39:49:3f:7a:33:5f:6c:8e:ae:19:3d:a4:c8:ea:53:
77:cf:ed:71:e7:48:5e:38:e7:50:78:09:7c:9b:73:b2:eb:24:
05:e2:5b:3a:16:a9:6b:90:ab:a3:01:57:19:e6:fa:72:17:9d:
2d:53:d4:40:87:77:9a:ec:9a:d1:b3:e2:ae:cc:85:5e:df:a2:
4a:44:6d:f3:3d:a6:cc:54:4f:77:d2:33:44:09:6e:3b:e8:ae:
31:33:b9:50:0a:6d:1e:37:83:4f:d2:43:94:f5:d3:3d:19:f0:
b9:07:82:41:86:34:21:fd:55:c0:4d:ec:3d:22:ac:89:8a:62:
ad:c6:d3:ed:9e:e5:ff:75:ff:1c:d0:8e:a4:b2:0a:1f:2e:5a:
d7:20:14:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 13:51:26 2025 by rpki-client