Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/96-tp8Jnkgjm66nGEoRvAzLlusU.roa
File: 96-tp8Jnkgjm66nGEoRvAzLlusU.roa (raw, json)
Hash identifier: O+nxK8rVNvCvq/h6ta/Vll7OPWb3fmqj7ZHH1RCiVrY=
Subject key identifier: F7:AF:AD:A7:C2:67:92:08:E6:EB:A9:C6:12:84:6F:03:32:E5:BA:C5
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 0193F856E7BDA44B27375AAF88142FCBB773
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/96-tp8Jnkgjm66nGEoRvAzLlusU.roa
Signing time: Tue 24 Dec 2024 11:04:25 +0000
ROA not before: Tue 24 Dec 2024 11:04:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 199669
IP address blocks: 109.196.166.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 19:48:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:f8:56:e7:bd:a4:4b:27:37:5a:af:88:14:2f:cb:b7:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Dec 24 11:04:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f7afada7c2679208e6eba9c612846f0332e5bac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:c8:ca:09:3f:b1:31:79:41:98:76:0f:0b:70:
dc:24:3a:f3:aa:2a:d7:27:e2:9c:8f:26:f8:4e:63:
2f:fc:2a:1e:82:c7:80:57:a1:bb:59:ef:0d:19:71:
fa:cd:f3:4a:e6:e4:fe:d7:d0:ea:4b:ed:cc:ca:82:
e4:be:16:a1:28:ce:40:21:88:7f:3b:e7:b8:e0:b1:
fe:67:62:1e:e0:a4:5a:df:66:ba:0d:d1:0d:35:ad:
5b:6a:06:e6:3b:6c:3f:d1:c0:db:c5:71:8a:f2:a4:
b3:d4:69:e6:f6:93:24:71:32:ac:2a:87:83:90:4d:
2a:8f:f4:70:13:21:49:2b:f5:b5:17:a0:82:31:06:
85:31:8a:ed:8f:c1:f7:fa:04:cc:6e:8c:59:be:1a:
b2:b5:d4:8b:3b:cb:56:54:21:8f:93:e0:2a:f6:84:
00:94:8d:32:f4:b2:be:ab:b0:d3:56:3b:e9:85:46:
69:db:44:b2:b7:5f:fd:16:74:38:07:c8:77:a3:c7:
1f:bf:88:58:c2:97:7f:2f:20:37:ef:65:8f:ba:57:
84:06:1a:1b:75:bc:e1:d1:b5:e7:e2:fd:e9:a2:92:
81:c0:a8:6e:b9:5d:e7:89:6a:ab:cb:86:ee:10:ab:
1a:51:07:72:28:0d:78:10:6e:47:13:9c:b4:b8:ae:
f6:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:AF:AD:A7:C2:67:92:08:E6:EB:A9:C6:12:84:6F:03:32:E5:BA:C5
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/96-tp8Jnkgjm66nGEoRvAzLlusU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.196.166.0/24
Signature Algorithm: sha256WithRSAEncryption
67:d0:c2:42:77:9c:22:bd:13:74:3e:59:6d:7a:92:b2:ef:ad:
3b:87:c3:38:b1:7e:de:63:07:88:0f:d3:ca:bb:10:ce:e4:ac:
cd:35:d5:04:f6:e9:86:6c:a8:22:27:33:c6:83:52:bd:3f:7d:
a7:f9:ba:dc:73:a0:ed:83:88:33:1a:63:42:7d:6f:a8:92:ca:
3b:de:0a:44:e8:69:e8:7a:c5:df:c1:6a:8a:21:56:cd:ce:13:
f9:f9:35:1a:12:d3:93:67:ae:be:31:73:b8:99:b7:eb:a3:12:
3e:d9:e5:06:b8:bb:dd:38:df:8f:b9:fb:c4:be:ac:54:8f:16:
e3:4b:d8:4d:63:c9:fe:9e:ee:ad:ac:82:50:5b:60:f2:60:27:
04:28:ed:82:94:78:79:29:b2:29:21:70:11:6e:df:b8:a1:d5:
86:d9:51:0d:29:b7:24:27:71:76:6d:b5:2c:21:0a:c2:72:e4:
05:57:33:30:e4:73:5d:ed:a6:6b:d8:f8:ff:68:f7:16:11:f7:
86:62:8b:18:c2:21:1b:d8:55:a3:5d:f1:2f:ab:83:07:b3:2d:
ae:58:ba:df:14:fa:98:3d:7e:05:a5:9a:7f:f9:e8:42:56:42:
95:45:8f:f6:fc:d6:25:e8:37:e7:28:6a:21:87:b9:e2:00:06:
e0:2a:32:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:24 2025 by rpki-client