Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/E3an4Mf59eH7HiI-l2158scdeMM.roa
File: E3an4Mf59eH7HiI-l2158scdeMM.roa (raw, json)
Hash identifier: TeKohVY6+4TOPmloJXrH+MEwJB5CCEUFe/YMs4UJFwc=
Subject key identifier: 13:76:A7:E0:C7:F9:F5:E1:FB:1E:22:3E:97:6D:79:F2:C7:1D:78:C3
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 01936793F5133EC860801D015EABD7F528ED
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/E3an4Mf59eH7HiI-l2158scdeMM.roa
Signing time: Tue 26 Nov 2024 08:26:09 +0000
ROA not before: Tue 26 Nov 2024 08:26:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203971
IP address blocks: 185.129.95.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 28 Nov 2024 11:28:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:67:93:f5:13:3e:c8:60:80:1d:01:5e:ab:d7:f5:28:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Nov 26 08:26:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1376a7e0c7f9f5e1fb1e223e976d79f2c71d78c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:7c:cc:42:75:a7:28:c9:b5:29:91:cd:1c:f2:
f4:4d:7a:16:97:a6:16:5a:7d:0d:7f:2d:1a:2b:12:
2c:00:38:d3:b8:25:3b:62:9c:2c:c1:92:5c:30:5c:
50:31:9a:e6:f1:28:72:da:a5:d3:f4:e5:21:08:39:
a6:69:cd:84:40:e3:72:40:55:ec:cd:1a:24:da:e1:
4b:ff:31:80:09:79:b2:c1:a0:45:ae:32:7f:63:55:
22:b2:b2:9a:cc:b4:82:d7:a9:79:0c:ad:fa:f0:db:
01:d4:01:c3:2d:31:97:2f:b2:b3:d8:47:e1:88:93:
76:04:8c:e3:df:6a:66:78:e0:86:4c:b8:d3:f7:9a:
61:85:7f:fb:29:97:5b:50:87:cf:44:a9:58:58:ab:
7e:e6:fd:28:b0:e7:8b:39:ad:da:a1:ac:7e:34:cd:
3b:2b:32:c2:e8:d3:9d:7a:d3:4d:38:c8:55:56:bd:
32:c0:09:fa:c6:d5:15:14:fc:01:d9:77:4a:ea:1f:
47:51:ee:97:54:b0:1e:b6:2c:be:d0:ba:d8:73:5c:
12:7b:08:e6:05:32:ba:1f:98:fd:cb:3c:83:a0:cc:
9e:47:19:12:c5:9e:bc:f5:03:56:42:49:c3:1f:67:
bb:6c:a7:7d:f7:cc:11:26:ff:9c:96:92:a5:b2:6c:
02:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:76:A7:E0:C7:F9:F5:E1:FB:1E:22:3E:97:6D:79:F2:C7:1D:78:C3
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/E3an4Mf59eH7HiI-l2158scdeMM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.129.95.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:34:1f:fd:5c:d0:c8:71:e5:9b:48:5d:c8:59:47:3f:f4:80:
90:28:47:d3:64:93:63:69:17:cb:04:16:60:99:6a:90:78:73:
73:c0:6b:4a:54:8b:d1:91:28:98:0b:d3:1d:9f:21:aa:dc:06:
f9:13:51:89:3b:49:42:e8:c5:9f:4e:dd:26:28:3f:db:5b:ca:
69:d9:b9:95:9b:3e:dc:f6:7d:a5:5c:e5:83:ca:eb:29:55:e3:
ff:a5:f3:93:dc:47:76:8d:21:a5:a4:49:86:48:04:fd:af:0d:
e7:9b:84:ca:b9:22:4b:78:d9:bb:45:0c:0b:61:bf:79:16:26:
05:74:7d:2e:95:aa:c1:70:ab:8b:bc:88:6f:46:27:2d:16:08:
2e:85:2d:d6:fa:09:71:1f:8c:ab:38:ef:65:bd:3a:b7:50:3e:
5f:82:2c:d4:cd:f7:a2:d2:22:26:81:4d:b4:b8:43:3d:10:c4:
48:bb:6e:63:28:a5:3e:de:e8:c8:54:ed:c3:7e:ab:60:22:93:
b0:22:f1:79:a6:01:f5:f2:6a:d4:6f:19:44:78:5b:bc:9e:12:
3c:e1:c4:84:16:1e:16:25:81:fe:fc:45:b9:ce:b5:20:c5:b4:
03:79:e4:81:f8:e7:4a:ca:ea:be:9a:36:30:a9:ab:20:9b:1c:
27:18:20:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:24:07 2025 by rpki-client