Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/E6lvLDV-zE4GtKtH9rtoh_4QL04.roa
File: E6lvLDV-zE4GtKtH9rtoh_4QL04.roa (raw, json)
Hash identifier: 8L6rLM+ntk/RycMbn6IjKIgptHtH4Z+WDMV1nWUfewk=
Subject key identifier: 13:A9:6F:2C:35:7E:CC:4E:06:B4:AB:47:F6:BB:68:87:FE:10:2F:4E
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0192B3650D61EA289B7818747672327C998B
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/E6lvLDV-zE4GtKtH9rtoh_4QL04.roa
Signing time: Tue 22 Oct 2024 08:43:17 +0000
ROA not before: Tue 22 Oct 2024 08:43:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203758
IP address blocks: 82.153.70.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 24 Oct 2024 07:46:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:b3:65:0d:61:ea:28:9b:78:18:74:76:72:32:7c:99:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Oct 22 08:43:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=13a96f2c357ecc4e06b4ab47f6bb6887fe102f4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:fc:64:ae:32:9a:7d:3f:ca:25:b4:a0:c7:7b:
d3:35:e6:5a:98:7f:6a:71:c2:30:61:78:2b:93:89:
48:80:cc:8b:c0:a3:62:81:89:9a:fc:95:7d:9d:04:
86:b8:1f:b1:50:de:2b:14:ef:0b:88:df:7c:9c:6a:
72:25:8a:f5:b6:5c:5e:4a:43:54:49:6c:c5:25:8e:
22:fb:0b:10:71:77:bb:87:23:8d:16:a3:e3:a4:07:
0b:b5:95:01:13:13:78:af:cd:42:87:6b:bc:c9:b6:
f0:56:71:a1:b6:77:f6:8e:3e:e1:3a:7b:70:4e:c0:
3e:70:08:f6:e8:9c:4b:fa:1a:e5:1d:59:14:b8:75:
1f:be:bd:01:a1:65:ea:aa:41:81:e4:01:93:da:2a:
18:f2:9b:ba:bb:4e:89:47:ab:da:d2:c8:45:8b:08:
e8:73:1f:f9:dc:07:a1:f5:1b:5d:dd:fc:1b:c9:ab:
3a:48:68:71:eb:30:cf:86:bd:3b:d5:c5:c1:85:df:
8f:b6:1a:64:53:82:75:c7:41:e3:fd:3e:6e:b5:3b:
c2:df:92:e8:a3:fe:63:55:12:4b:16:41:ad:1b:b5:
b4:07:5a:7e:88:93:70:25:cf:42:ae:ea:09:dc:4b:
8f:9a:9e:de:84:36:f5:c2:a9:1f:56:70:ac:b2:29:
83:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A9:6F:2C:35:7E:CC:4E:06:B4:AB:47:F6:BB:68:87:FE:10:2F:4E
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/E6lvLDV-zE4GtKtH9rtoh_4QL04.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.153.70.0/24
Signature Algorithm: sha256WithRSAEncryption
84:8d:45:54:ff:d4:18:32:9a:81:05:86:ef:38:1a:05:b3:3d:
84:7c:c5:a4:5e:54:75:bb:d4:14:a9:1f:bc:48:14:98:a7:c9:
ed:44:d1:13:c7:ed:ca:55:bd:ea:a0:6d:36:11:4e:54:df:ad:
4b:b5:96:1f:5a:5f:6b:3c:d2:58:1d:26:d5:f4:32:73:f4:b2:
ca:f6:f9:30:29:44:34:0d:81:79:db:e4:d0:a5:b6:05:d9:1c:
9a:a9:f7:f5:41:26:13:52:a6:82:ef:07:a0:bc:38:16:b4:fb:
57:52:ea:00:cb:95:5c:55:89:52:0a:fc:58:28:1f:ae:ae:3d:
b0:54:2e:f5:cc:4a:16:ac:eb:4a:9c:4d:e2:70:d6:e5:9a:49:
73:3c:91:4a:2b:7b:8e:f0:76:f4:6f:06:94:3c:76:5f:37:e5:
5f:0c:ea:a8:b7:79:53:50:a0:a6:c8:95:df:83:8f:15:df:ca:
58:72:60:3a:ac:58:f3:90:ca:03:1d:8e:47:f1:39:dd:ae:66:
b2:37:e1:f7:d5:f7:4a:19:c0:fe:80:27:54:3a:56:ff:f3:2e:
40:e2:46:9f:ec:df:e8:17:73:b6:e7:cf:43:75:01:0b:78:38:
bd:d2:6d:c9:7f:35:59:d9:93:13:01:96:ca:f3:76:31:c6:1d:
a2:2c:03:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:25:46 2025 by rpki-client