Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/gWoHJiZcurg8ZaFdaD4ilGA8aKE.roa
File: gWoHJiZcurg8ZaFdaD4ilGA8aKE.roa (raw, json)
Hash identifier: m1PhSdtBB0BWJlkHyG2FMMnyrxxxCeOIC9Dc8lGXFuU=
Subject key identifier: 81:6A:07:26:26:5C:BA:B8:3C:65:A1:5D:68:3E:22:94:60:3C:68:A1
Certificate issuer: /CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Certificate serial: 018D6BE4D9FA73203A784E816B0131F6ECAC
Authority key identifier: 6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/gWoHJiZcurg8ZaFdaD4ilGA8aKE.roa
Signing time: Fri 02 Feb 2024 22:16:16 +0000
ROA not before: Fri 02 Feb 2024 22:16:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210669
IP address blocks: 176.126.121.0/24 maxlen: 24
193.107.81.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 07:49:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:6b:e4:d9:fa:73:20:3a:78:4e:81:6b:01:31:f6:ec:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce97cf4d8d0bc17b3af1d62c4d71488661bd212
Validity
Not Before: Feb 2 22:16:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=816a0726265cbab83c65a15d683e2294603c68a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:78:d1:a9:51:de:77:2e:82:a7:21:8b:58:5e:
57:ad:66:52:73:0d:91:c1:dd:a0:72:48:0b:fe:9f:
49:0f:6f:81:ca:a2:c7:65:05:cc:c4:ab:b7:9b:c6:
d9:c1:c7:e1:21:82:6e:8c:5c:0b:b2:9e:cb:cc:28:
dc:13:26:dc:0c:d0:34:27:7e:f8:84:42:3d:07:00:
d3:e3:ee:eb:7a:e6:64:fe:aa:7c:6f:57:b9:f9:25:
bf:c7:16:41:6c:38:d1:bc:f4:d6:1a:e7:93:66:54:
c8:41:c9:24:81:97:2a:fb:14:72:13:b3:2b:5a:69:
ab:55:11:1f:ed:50:0f:58:62:78:5d:2d:9e:73:c8:
fb:26:e4:95:42:a3:b7:b3:f2:54:bd:22:64:cd:26:
d6:f0:aa:6e:02:c1:24:25:73:d6:42:4d:31:24:8a:
a5:8f:10:af:db:a1:4e:6c:e0:c2:02:65:21:bc:94:
d3:19:a0:c5:0d:dd:df:26:45:01:25:ac:89:d3:42:
4f:95:bb:f9:a5:0b:ef:6b:19:01:6d:88:8f:3b:d3:
80:6e:c3:42:9b:e8:f5:78:e1:d6:60:b6:f5:03:1b:
8e:22:b5:de:b7:45:af:9e:4f:02:27:fa:7e:75:63:
a5:b3:e1:be:4c:2f:99:e6:df:f0:dc:94:2d:63:75:
5a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:6A:07:26:26:5C:BA:B8:3C:65:A1:5D:68:3E:22:94:60:3C:68:A1
X509v3 Authority Key Identifier:
keyid:6C:E9:7C:F4:D8:D0:BC:17:B3:AF:1D:62:C4:D7:14:88:66:1B:D2:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOl89NjQvBezrx1ixNcUiGYb0hI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/gWoHJiZcurg8ZaFdaD4ilGA8aKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/e4ccb1-ca25-4099-8273-3993aa324e1f/1/bOl89NjQvBezrx1ixNcUiGYb0hI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.121.0/24
193.107.81.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:6b:7c:28:bf:79:54:8e:c2:ff:a0:f0:3d:f8:24:e0:53:7f:
6a:97:7e:f3:69:ad:60:46:e0:dd:65:b1:8b:fa:4d:fc:24:ad:
d9:a4:f0:f7:36:1c:c1:fd:27:c9:b0:02:46:5e:53:08:ba:92:
d7:f0:10:b3:ef:b0:5b:13:e6:75:86:b7:d2:8b:5d:db:ce:ca:
6d:08:6d:bf:73:c3:23:66:d9:6e:4c:9e:59:55:de:31:8f:03:
5b:bc:cf:82:e8:1e:5d:be:59:09:9c:b4:2d:1d:2c:bd:a1:07:
2a:eb:37:af:fd:f7:31:52:e4:06:9c:08:08:5b:b6:2e:c0:ea:
74:4d:5c:e0:4d:5e:33:96:a4:fc:0f:49:84:6f:4b:ee:b0:5d:
24:c1:d1:3f:e9:44:1e:58:5e:5b:8a:6a:44:b3:8d:73:21:1c:
c2:84:81:db:f4:c2:ef:7c:dc:e9:fa:96:86:30:ca:b8:29:0c:
e1:04:c0:e0:d2:56:17:1d:58:da:9b:5b:87:9a:7e:0f:c6:a7:
31:ee:87:2d:ee:b4:b3:8e:8d:68:c0:73:d5:1f:c6:0d:13:a6:
3c:22:03:57:b0:d4:d2:40:cf:ea:7f:63:40:53:c7:95:32:14:
43:e1:a9:70:7f:b5:21:65:a6:7c:78:e8:cd:55:1d:ac:a3:a2:
64:0f:0e:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 19:21:30 2025 by rpki-client