Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/fyeqm5m3WC0OZUiE48Vv74Xlp7A.roa
File: fyeqm5m3WC0OZUiE48Vv74Xlp7A.roa (raw, json)
Hash identifier: CjK4afyUz7Eg27Y62ZsqbZYjYd0eXjDm3sghsHcX6fc=
Subject key identifier: 7F:27:AA:9B:99:B7:58:2D:0E:65:48:84:E3:C5:6F:EF:85:E5:A7:B0
Certificate issuer: /CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Certificate serial: 018E7EE98D4987E653084760810386065999
Authority key identifier: 3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/fyeqm5m3WC0OZUiE48Vv74Xlp7A.roa
Signing time: Wed 27 Mar 2024 07:56:59 +0000
ROA not before: Wed 27 Mar 2024 07:56:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 64289
IP address blocks: 194.105.76.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 26 May 2024 07:23:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8e:7e:e9:8d:49:87:e6:53:08:47:60:81:03:86:06:59:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fd30d8a7e12fc7bf62e0c121e7cc226dea53b9b
Validity
Not Before: Mar 27 07:56:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7f27aa9b99b7582d0e654884e3c56fef85e5a7b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:92:4a:0f:11:ed:bd:33:9e:0d:97:bd:43:87:
b4:6e:4e:82:5f:9d:0d:89:d0:61:fd:a3:64:d9:a1:
75:fc:71:19:b0:36:52:d1:da:9d:1a:7e:e7:d0:d1:
b4:63:5f:1d:3d:18:fa:9e:56:88:ad:a0:bf:e8:9a:
ed:e1:ab:7d:e5:35:7d:65:48:08:b6:45:e0:25:de:
4f:e5:25:ab:90:ad:02:2d:cb:47:69:64:18:8f:16:
af:b6:1e:8e:1b:6f:70:da:8f:28:cc:46:01:52:56:
1a:20:29:8e:6b:0b:fc:c1:8b:43:14:0e:01:33:06:
22:6b:54:9f:9e:c5:f1:36:cb:73:0b:63:49:bb:76:
77:4e:32:e6:a7:9c:67:ac:7a:ba:8c:98:31:b9:76:
37:80:3e:cb:00:b8:53:fc:02:fa:7a:91:c1:37:7b:
90:5a:28:f9:1c:3a:6f:c1:b9:41:2e:af:1e:99:ee:
42:0e:d7:f4:58:19:e5:76:f3:3f:d6:e1:71:3b:53:
8a:31:61:07:5a:af:64:97:2b:6c:25:c3:a6:e4:e4:
d9:7b:74:f4:cf:5a:1a:51:90:83:7a:a4:56:1f:bb:
49:4d:c6:05:91:3e:6d:1c:d1:6b:72:80:61:eb:b9:
12:0e:bf:26:6a:78:b7:c0:de:0c:61:15:4e:f2:ec:
a4:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:27:AA:9B:99:B7:58:2D:0E:65:48:84:E3:C5:6F:EF:85:E5:A7:B0
X509v3 Authority Key Identifier:
keyid:3F:D3:0D:8A:7E:12:FC:7B:F6:2E:0C:12:1E:7C:C2:26:DE:A5:3B:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P9MNin4S_Hv2LgwSHnzCJt6lO5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/fyeqm5m3WC0OZUiE48Vv74Xlp7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/49dc00-97e2-4628-ae39-41228e39ff7c/1/P9MNin4S_Hv2LgwSHnzCJt6lO5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.105.76.0/22
Signature Algorithm: sha256WithRSAEncryption
89:b9:4d:1f:66:40:18:e3:60:b2:a3:6a:04:00:c8:40:e1:63:
8c:25:8a:6e:17:59:61:a1:16:fa:94:7e:3c:e1:5f:d0:3b:0f:
ac:d8:42:0a:aa:32:ea:67:07:ac:20:9e:d4:b6:b5:1f:b2:ed:
4d:a1:55:2a:fb:d2:10:ec:38:39:f1:61:ad:d1:4b:df:f8:a2:
ff:6d:f0:4d:2b:0a:68:0c:12:f8:75:ca:e3:56:3c:4a:3f:89:
59:71:ff:9f:f3:ed:a4:cc:75:fb:17:e9:8b:21:d6:a6:51:f4:
67:53:b6:6c:93:ec:68:8e:8f:27:4a:d9:63:e7:38:1f:f3:d7:
58:26:8d:1b:82:3e:88:ae:bb:94:ae:fa:ff:93:20:af:e1:7e:
7b:5f:4f:50:8f:b9:4d:2d:9f:ad:02:fe:33:17:e0:ac:f8:6c:
2d:ca:f8:61:49:25:9f:c2:ea:b3:fd:4f:59:c6:be:4b:94:b7:
fd:ec:fa:98:38:50:08:09:72:e3:57:e6:9c:50:4c:db:2b:f4:
f8:32:eb:39:ab:41:3e:e8:3c:45:10:ed:a6:57:71:ba:8e:4a:
44:cb:96:50:af:a5:6d:64:98:a6:ac:ab:52:09:f9:51:35:17:
32:bf:6e:b6:70:c1:11:11:84:63:88:ec:e2:c1:b6:d7:a8:81:
5c:49:84:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 19:14:55 2025 by rpki-client