Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/c7fSlywhQu0F6TSTmcm4NwN0ar8.roa
File: c7fSlywhQu0F6TSTmcm4NwN0ar8.roa (raw, json)
Hash identifier: ecMy12xh6bwUWRV5/CxWttC66eKWqEs2+32VAQK8jZo=
Subject key identifier: 73:B7:D2:97:2C:21:42:ED:05:E9:34:93:99:C9:B8:37:03:74:6A:BF
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 019200AECF06584B7DAF399290C9ADBDC29D
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/c7fSlywhQu0F6TSTmcm4NwN0ar8.roa
Signing time: Tue 17 Sep 2024 15:51:49 +0000
ROA not before: Tue 17 Sep 2024 15:51:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 5.180.33.0/24 maxlen: 24
85.209.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 18 Sep 2024 07:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:00:ae:cf:06:58:4b:7d:af:39:92:90:c9:ad:bd:c2:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Sep 17 15:51:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73b7d2972c2142ed05e9349399c9b83703746abf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:43:e4:b2:e8:68:51:24:d8:bf:ac:71:28:ab:
ba:67:39:55:d2:7a:53:d7:e5:7c:04:dd:57:d0:ce:
ef:b1:a3:1f:a9:d6:10:1b:1b:fc:bf:5d:77:1d:5a:
5b:77:c2:7a:9f:81:25:d3:b6:e1:66:6b:3e:9f:bf:
62:ad:51:ad:49:77:7f:73:a3:6d:56:0f:78:52:ee:
c4:b6:5c:13:e6:91:55:4c:5d:a0:c0:18:08:24:ac:
bb:94:76:ac:00:f4:f8:b1:1a:90:d2:15:a5:c7:90:
4f:82:50:d2:33:0f:de:d5:04:d5:97:80:32:57:61:
d0:1b:b0:c2:fa:d1:0a:de:45:20:59:20:2f:ed:84:
d9:0b:c1:98:fb:9c:f2:2f:95:38:b8:b5:99:dc:bf:
3e:fd:53:8b:55:a7:21:ca:96:07:5e:b3:6e:4d:37:
6b:47:11:2e:0b:04:e1:fe:3b:05:d4:f9:73:5a:49:
08:6a:a9:fb:dc:5c:45:cf:d2:f4:a8:be:78:13:05:
f1:ca:f5:35:6e:aa:97:26:df:87:6c:c3:6f:5a:07:
31:78:0b:6b:58:ec:38:c3:ea:51:31:49:f1:62:56:
89:8c:40:0e:9f:1a:57:5b:6c:93:ed:5b:19:db:e1:
0e:6a:cb:6b:18:cd:b0:f4:9e:2d:b2:18:31:a6:57:
e6:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B7:D2:97:2C:21:42:ED:05:E9:34:93:99:C9:B8:37:03:74:6A:BF
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/c7fSlywhQu0F6TSTmcm4NwN0ar8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.33.0/24
85.209.161.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:5c:04:2c:d8:e3:a4:fa:7d:fc:c8:18:39:69:88:5c:94:df:
02:f5:1e:4c:7e:0c:1e:c3:cc:61:ca:78:20:22:84:2b:aa:40:
87:b0:94:52:42:ad:80:96:fa:e6:78:3b:67:c0:31:66:fe:25:
52:c6:c5:bf:eb:b0:e0:bc:5b:24:48:8e:d3:78:74:7e:24:d5:
3b:f6:d3:3b:25:2e:bd:93:c9:16:66:ab:d4:c2:b2:7f:66:8b:
c3:53:60:18:20:10:00:d2:f1:7d:c6:72:4e:c1:1d:60:4b:ba:
92:66:ba:62:6e:70:33:bb:aa:3f:60:9c:f7:f9:ba:12:7b:22:
72:b0:6d:a6:e9:f2:74:0f:7c:3a:33:6e:2a:d1:f3:dd:08:8f:
9a:d1:3a:96:aa:52:33:03:67:21:a7:74:7a:f5:72:7b:39:d4:
5e:79:d5:eb:a8:e8:ff:58:1b:8e:68:59:f9:00:5b:9e:10:1f:
5b:83:fa:4c:00:46:0e:dc:f2:f7:87:b0:83:57:0b:ca:bb:11:
7f:4f:3b:f5:b0:cb:c1:75:09:4e:07:01:ee:51:9f:c4:2b:b8:
e5:48:f9:12:8b:39:20:cc:35:ba:d0:70:f3:90:64:4c:58:bf:
34:e3:ee:6e:26:02:f0:b4:25:6f:8c:3d:ff:16:b7:33:8c:73:
2b:64:28:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:23:48 2025 by rpki-client