Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ew7lt3wJ9ZTyycjnAWrL3X1gbA4.roa
File: ew7lt3wJ9ZTyycjnAWrL3X1gbA4.roa (raw, json)
Hash identifier: Odi907PD56xwt/qD+yIQxe3kERx+sd4YY3l34EUF2SQ=
Subject key identifier: 7B:0E:E5:B7:7C:09:F5:94:F2:C9:C8:E7:01:6A:CB:DD:7D:60:6C:0E
Certificate issuer: /CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Certificate serial: 01929536887F45627530BCBA1B187D7CCAEB
Authority key identifier: F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ew7lt3wJ9ZTyycjnAWrL3X1gbA4.roa
Signing time: Wed 16 Oct 2024 12:03:51 +0000
ROA not before: Wed 16 Oct 2024 12:03:51 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214526
IP address blocks: 178.239.144.0/24 maxlen: 24
185.215.228.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 20 Oct 2024 11:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:95:36:88:7f:45:62:75:30:bc:ba:1b:18:7d:7c:ca:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f13533399f55eb52e6b2200c7cae4272b74d6464
Validity
Not Before: Oct 16 12:03:51 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7b0ee5b77c09f594f2c9c8e7016acbdd7d606c0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fa:41:8b:e3:99:0d:b6:b5:ac:be:5c:83:15:
ab:e1:09:ea:49:c2:7c:70:1f:b4:12:9b:cc:8f:68:
a9:48:82:27:43:d6:2c:16:c9:5b:80:d3:00:83:9f:
27:b9:de:b3:9b:8e:b3:05:78:73:52:0a:2f:ae:65:
a6:1d:7e:8f:d4:3a:ac:82:52:04:25:98:25:6e:d9:
24:85:c2:db:26:a7:b3:25:7d:37:2f:d5:2a:53:77:
d7:5c:57:55:86:9b:1a:6d:bc:59:b8:e7:14:5a:15:
81:65:3f:4a:5c:0a:ff:6e:c4:a5:99:de:24:e0:a1:
cd:c5:ef:f9:5a:41:13:4a:e6:38:6d:1a:fb:a3:64:
9e:38:3c:57:7c:bb:3e:0f:b7:dd:cb:5a:8f:f1:7e:
50:5d:04:ae:7d:14:46:9d:c1:01:4d:b4:1c:fe:5f:
ee:d1:0e:ed:bc:0e:09:af:4c:7a:64:8f:2f:92:60:
3a:02:1e:e2:af:08:73:74:6a:a1:36:4d:9f:c5:72:
ca:8a:3a:7a:2a:cc:a6:d6:e5:3c:ef:ab:39:ab:e0:
de:d0:9b:67:61:d2:e5:2d:66:19:50:f6:6b:7a:81:
1b:77:06:e4:93:09:dc:07:46:2e:b1:44:68:b3:6c:
ed:05:20:f0:fc:a3:95:37:03:46:45:bb:7f:4e:d3:
d8:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:0E:E5:B7:7C:09:F5:94:F2:C9:C8:E7:01:6A:CB:DD:7D:60:6C:0E
X509v3 Authority Key Identifier:
keyid:F1:35:33:39:9F:55:EB:52:E6:B2:20:0C:7C:AE:42:72:B7:4D:64:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/ew7lt3wJ9ZTyycjnAWrL3X1gbA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/844eeb-cdf1-47f1-bcfa-989166881969/1/8TUzOZ9V61LmsiAMfK5CcrdNZGQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.144.0/24
185.215.228.0/24
Signature Algorithm: sha256WithRSAEncryption
07:17:45:e7:09:9b:c5:93:39:cf:a4:10:74:5c:f6:4c:f3:95:
d7:7a:c0:66:13:14:c9:cc:17:5c:5e:ed:75:28:ea:06:46:2f:
26:7b:22:95:67:e9:57:ab:c0:1d:eb:d5:bd:37:b3:4b:7e:f0:
9e:ab:2d:22:82:a1:88:14:2d:03:b8:a4:08:ab:e7:3a:21:83:
f0:33:5d:44:8c:9d:a5:f4:56:e2:96:9d:66:ab:e3:7e:b8:be:
25:73:6e:ee:46:81:d4:91:39:be:e9:35:86:69:fc:13:30:26:
a9:b1:91:f2:e2:39:b8:a3:3a:34:74:1e:1e:7d:86:66:90:9c:
30:b3:df:b8:b8:58:18:aa:71:66:e0:8b:c1:d6:67:17:18:a7:
91:57:c9:92:15:7d:fe:7c:21:02:0a:4c:25:db:5a:04:07:da:
b4:91:5d:1f:01:4c:db:0d:04:5c:99:72:14:44:2e:df:66:b0:
c7:f5:6a:c4:f1:f8:65:e8:1e:07:c6:c4:63:c2:a3:fb:0e:a3:
06:76:d9:f7:73:2d:9d:20:f6:6e:49:39:e1:f2:3c:47:b5:8f:
37:c6:0b:24:f0:2e:3e:ea:e2:19:82:29:ec:e5:6c:ec:2c:cb:
3f:8b:30:25:b9:ce:51:8c:3a:7f:f1:89:b7:2e:32:54:6a:0e:
43:89:27:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:17 2025 by rpki-client