Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/e65K16z52hRBAMRVycISkXpbfSw.roa
File: e65K16z52hRBAMRVycISkXpbfSw.roa (raw, json)
Hash identifier: PbuYFFMGjxGygQtGZ2n1mD/f/GHF1FeD4AvV5Hk/kYQ=
Subject key identifier: 7B:AE:4A:D7:AC:F9:DA:14:41:00:C4:55:C9:C2:12:91:7A:5B:7D:2C
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 0192F43980C0183E7EDA8F56921935961BCA
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/e65K16z52hRBAMRVycISkXpbfSw.roa
Signing time: Sun 03 Nov 2024 22:51:01 +0000
ROA not before: Sun 03 Nov 2024 22:51:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 397423
IP address blocks: 89.213.173.0/24 maxlen: 24
109.176.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 17:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:f4:39:80:c0:18:3e:7e:da:8f:56:92:19:35:96:1b:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Nov 3 22:51:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7bae4ad7acf9da144100c455c9c212917a5b7d2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:6b:17:95:be:d3:fb:fd:a7:a2:b1:a4:7b:d0:
9c:ce:79:fb:24:7e:50:89:28:f2:26:aa:c8:31:c6:
f6:ba:5d:eb:70:70:9f:4b:b0:1b:45:80:da:2b:c7:
d4:19:25:b5:9a:18:cf:74:b4:b2:b6:d9:ba:a8:9a:
20:6a:59:85:77:31:be:11:b4:22:e8:11:c9:82:71:
51:04:4f:1a:b7:f1:c6:bc:ad:2a:16:7a:7d:71:1b:
a7:93:b0:65:41:f3:d0:88:3c:1c:f9:c1:5a:32:5a:
02:88:bf:83:50:d0:f7:af:ce:81:f2:93:bc:50:12:
5d:31:9c:3b:d1:4e:2f:1a:d7:0e:b8:48:0a:ba:f5:
f8:23:cd:f2:53:e6:3b:ab:13:e6:3c:30:d2:1a:da:
8d:24:bd:82:c4:54:23:00:fe:a8:d1:cd:82:31:29:
c4:d1:0d:c1:31:3c:97:e7:50:05:88:f5:31:dd:d1:
c5:55:96:cd:4e:fe:a9:bd:aa:a2:37:54:d6:69:92:
52:3a:7f:e9:f3:1a:66:1d:2c:c2:37:19:03:e7:d3:
e8:8f:4a:1f:a7:a2:2a:08:e1:61:4d:55:b0:3c:67:
9b:47:3f:f9:91:33:31:73:05:6f:f9:49:aa:71:22:
bf:16:aa:3d:03:4c:85:82:5c:d3:c0:db:21:22:5f:
c4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:AE:4A:D7:AC:F9:DA:14:41:00:C4:55:C9:C2:12:91:7A:5B:7D:2C
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/e65K16z52hRBAMRVycISkXpbfSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.213.173.0/24
109.176.18.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:93:87:f0:73:9c:fa:f1:8f:c9:23:1c:65:81:23:f7:78:0b:
e8:90:50:77:cd:1e:7a:d8:ca:9d:b0:da:1a:14:f8:02:ba:66:
e8:94:33:c7:c8:52:76:6e:42:cf:76:16:a1:a0:d8:fa:9a:f8:
8d:b4:c5:95:f0:ec:37:0d:b8:92:ed:29:63:7e:bb:47:67:31:
1d:35:86:c2:c9:16:62:ee:50:27:0b:ee:b8:48:04:44:a3:93:
92:a9:15:e4:72:33:f9:0c:81:42:88:66:83:53:e4:44:ec:ca:
3e:51:4a:3f:f4:7c:be:49:95:50:ef:5b:10:7f:87:2d:cb:f9:
f7:12:0b:ed:d7:1c:e2:35:5f:35:86:15:f9:ee:37:35:b2:01:
b4:59:e3:c8:1f:0e:09:a8:a4:ab:8a:c8:a2:a6:4a:a7:b4:81:
f0:6e:f4:c6:4c:11:20:eb:02:0e:6d:ba:dc:f9:56:b5:f9:3c:
05:57:26:33:65:5d:4b:5d:13:03:5d:6a:0f:41:e5:d6:55:45:
ad:2c:18:ca:4c:ee:1b:f4:5c:56:ec:64:c0:8b:f8:e5:fe:1f:
46:fe:d8:67:fb:0d:19:d2:a9:13:50:a0:62:cc:93:de:c8:ad:
e3:6a:6b:07:4f:98:fa:3a:8f:e4:9b:47:82:1e:9a:3c:28:4c:
61:07:96:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:50:16 2025 by rpki-client