Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2wH27Oi_GBTYg_OtRkdzyU8SK-w.roa
File: 2wH27Oi_GBTYg_OtRkdzyU8SK-w.roa (raw, json)
Hash identifier: GM8XE2rg1ZEppX/+u5txRpOArvnEV/1cyk7JlbN4YMk=
Subject key identifier: DB:01:F6:EC:E8:BF:18:14:D8:83:F3:AD:46:47:73:C9:4F:12:2B:EC
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0194140329E2147044C932A3FBE8123810C5
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2wH27Oi_GBTYg_OtRkdzyU8SK-w.roa
Signing time: Sun 29 Dec 2024 20:02:19 +0000
ROA not before: Sun 29 Dec 2024 20:02:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216221
IP address blocks: 82.152.176.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:14:03:29:e2:14:70:44:c9:32:a3:fb:e8:12:38:10:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Dec 29 20:02:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=db01f6ece8bf1814d883f3ad464773c94f122bec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:54:82:b7:a9:1b:02:81:10:83:3c:2d:e5:94:
67:cb:72:ac:f2:62:52:5c:89:2f:ac:a2:94:00:47:
6f:42:20:68:ec:c2:dd:85:31:73:1a:87:a9:07:b5:
4f:ce:35:57:8d:53:81:f7:de:24:d1:24:45:af:1c:
49:f9:6e:a4:73:af:d9:53:f2:22:5d:4d:7a:7f:c8:
9a:b9:d3:c1:e9:e1:1a:c2:bf:5b:4d:4b:d1:99:a6:
37:c8:34:7b:68:dd:30:a5:44:aa:0b:e4:7f:a1:92:
05:ed:ea:c8:37:f5:9f:52:7a:9e:8c:9b:dd:7f:c3:
e4:ca:29:f7:bf:62:3f:b4:a7:f0:f5:47:e0:08:0f:
17:e1:a1:ce:67:e2:0a:30:e3:d8:58:07:e2:90:ec:
88:31:40:3b:b4:7d:29:13:b5:a9:4e:ac:27:ee:1c:
4f:61:37:de:6f:a1:59:e5:4b:51:bc:89:dd:12:77:
3a:a1:ec:fb:08:4b:0f:cd:6e:a3:dc:3e:04:92:37:
c5:2c:9b:c5:2c:9a:2f:ea:4d:7a:d8:11:fb:b4:44:
19:2c:6f:89:ae:82:28:bc:a5:4d:3b:54:f5:e3:e3:
53:0d:fb:ed:75:3f:ef:dd:b8:9d:7d:f1:87:49:57:
f7:6a:94:59:ad:07:a6:b3:85:03:7f:df:0b:2f:dd:
49:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:01:F6:EC:E8:BF:18:14:D8:83:F3:AD:46:47:73:C9:4F:12:2B:EC
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/2wH27Oi_GBTYg_OtRkdzyU8SK-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.152.176.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:94:2c:5a:d3:2f:c5:42:db:c4:0b:32:9c:71:ec:7b:73:c5:
7b:90:5d:c4:45:09:88:7c:65:74:e3:2f:81:77:7f:47:e3:69:
18:28:80:d8:d5:0d:5f:01:d1:5e:d9:da:eb:f9:02:14:b0:bb:
fc:57:1d:23:b0:9b:91:31:b7:7f:d4:7b:42:cf:49:6c:d4:9d:
5d:64:48:15:98:5b:40:d7:dd:89:77:2f:0b:1c:06:75:a0:50:
55:b7:86:46:47:4e:e6:4d:3d:38:54:28:63:6d:68:b9:10:7c:
55:54:37:7a:29:91:0c:b8:63:26:82:55:32:5d:8b:2f:a4:45:
5f:f2:24:0b:34:06:4a:f1:d1:06:07:7a:54:d0:7e:22:08:f6:
8a:98:de:25:63:cd:33:cf:ab:5e:58:9b:71:b9:a6:65:6f:2d:
97:6b:7a:ad:a9:dd:09:83:1d:04:87:b9:30:a5:ae:f9:6a:06:
b9:c0:5a:b4:68:97:65:8a:a5:b2:a1:b8:42:c1:81:3e:e0:be:
ae:3f:e1:61:89:7e:a4:b8:5d:22:4d:bf:53:3a:94:b9:3d:1e:
43:2d:b2:3d:2f:90:14:0e:98:f2:26:30:dd:f1:3d:61:d3:e0:
77:b1:b1:1b:28:4a:b6:9a:3d:8e:2b:14:8e:e2:92:6e:1c:45:
ae:56:d8:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:21:58 2025 by rpki-client