Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/ESkPt2UiJMayCeZa5lhRj8RD3ZA.roa
File: ESkPt2UiJMayCeZa5lhRj8RD3ZA.roa (raw, json)
Hash identifier: CxrqVEOENsHFLfwdWXrvNtmw8gFSBhlC5EdE1nqvM0Y=
Subject key identifier: 11:29:0F:B7:65:22:24:C6:B2:09:E6:5A:E6:58:51:8F:C4:43:DD:90
Certificate issuer: /CN=e316318247d211841f9620a9a1130010ddb486f2
Certificate serial: 0194181F1A4F6C28B03BD888B4DE6554D5F5
Authority key identifier: E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/ESkPt2UiJMayCeZa5lhRj8RD3ZA.roa
Signing time: Mon 30 Dec 2024 15:11:18 +0000
ROA not before: Mon 30 Dec 2024 15:11:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20648
IP address blocks: 91.231.156.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:18:1f:1a:4f:6c:28:b0:3b:d8:88:b4:de:65:54:d5:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e316318247d211841f9620a9a1130010ddb486f2
Validity
Not Before: Dec 30 15:11:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11290fb7652224c6b209e65ae658518fc443dd90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9d:52:d9:00:da:cd:d2:f8:10:32:dc:7b:c4:
7a:6d:45:d3:e2:ca:a8:d5:ba:3d:a2:88:3a:df:16:
17:37:d9:f9:ca:ca:b1:70:89:f7:1d:30:3b:b0:d7:
a4:da:45:7e:ab:12:ea:c3:e5:96:40:9e:58:02:f6:
ed:dc:23:1d:6b:ef:e6:f6:f9:68:2e:41:db:94:3f:
f0:5e:5a:ef:eb:c2:1e:f7:c0:78:43:20:0f:df:83:
82:f7:a5:ad:34:8d:d4:64:31:d9:a9:f9:66:ef:1f:
e7:b0:f0:8b:e7:c1:d3:ca:a3:19:09:11:0f:fa:31:
82:7a:6c:0d:91:32:27:6d:6c:f1:72:7b:37:ae:de:
c8:24:2c:56:5c:a5:b8:fd:e4:7c:f5:2a:68:86:60:
9c:3d:88:f2:f2:f9:1d:1f:40:bf:4f:87:7e:19:de:
c2:07:1f:31:d8:df:2e:7a:96:3a:1a:b5:ad:f6:5a:
75:b2:1f:c1:05:fd:83:0d:0c:6b:bc:81:d5:88:6d:
ed:ef:83:58:62:20:1f:58:2e:66:94:2e:86:24:12:
fd:8d:00:42:46:18:e7:48:10:b7:43:37:bd:9a:68:
13:6e:fd:71:a6:3c:b4:5a:43:2b:9c:2f:2c:17:18:
22:c0:bb:c2:d4:fd:f7:0a:b4:05:08:09:94:d0:3f:
8f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:29:0F:B7:65:22:24:C6:B2:09:E6:5A:E6:58:51:8F:C4:43:DD:90
X509v3 Authority Key Identifier:
keyid:E3:16:31:82:47:D2:11:84:1F:96:20:A9:A1:13:00:10:DD:B4:86:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xYxgkfSEYQfliCpoRMAEN20hvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/ESkPt2UiJMayCeZa5lhRj8RD3ZA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/ee42bb-1e49-4c21-a4d6-ec287e1d37e5/1/4xYxgkfSEYQfliCpoRMAEN20hvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.156.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:5b:23:ef:4e:aa:9f:76:c8:f5:f2:f8:f3:87:e7:ec:ae:bb:
34:82:fa:ce:3f:a5:fb:fe:c6:8d:a5:eb:c0:05:ab:4b:71:8e:
93:ca:d9:bf:e6:c4:09:41:5e:88:56:41:d6:3c:78:27:4d:c2:
22:4c:76:75:e5:72:07:b3:f4:a5:c4:bd:25:56:de:14:c6:e8:
7e:fe:df:88:11:3e:a5:77:b9:d5:bd:b6:f6:f0:b6:dd:1b:e8:
d3:08:0e:58:de:42:97:1a:e1:6c:61:b3:42:6a:03:b3:2f:8f:
d4:18:c1:cc:bb:1a:fb:98:16:90:b1:1c:8a:e0:cb:97:f4:4e:
c3:f0:35:7a:68:88:f8:48:f3:34:7d:d9:8b:f2:ad:86:8e:44:
d8:36:4f:b8:ac:82:6a:5d:c2:85:37:40:aa:c0:de:f5:d4:e2:
20:fc:15:1c:17:e6:0e:b2:43:66:20:c5:b6:58:f0:6e:17:0c:
79:1f:30:f0:3b:11:5e:0b:0b:27:a8:20:43:9a:fd:d9:ba:55:
e4:b0:6d:76:c6:b0:5d:80:6f:5d:9c:7d:60:73:ce:3d:07:98:
86:bd:20:d5:cb:63:59:3f:a6:c5:4a:bc:6b:13:6c:a2:96:9c:
26:0e:01:61:26:b5:31:e0:9c:4f:72:b8:62:4c:84:73:c5:a7:
54:e3:67:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:46:12 2025 by rpki-client