Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/gExeeBqfEEms0sXUrorLDINChh4.roa
File: gExeeBqfEEms0sXUrorLDINChh4.roa (raw, json)
Hash identifier: 36+uTa897nYKhkYP+x6X2aLoQnOsBf/1Ja4Krmr6gbU=
Subject key identifier: 80:4C:5E:78:1A:9F:10:49:AC:D2:C5:D4:AE:8A:CB:0C:83:42:86:1E
Certificate issuer: /CN=fbf8cd5d24a08b5a8afb57c9e604d193bc8cae20
Certificate serial: 0191701D208AB072E465AFB5DCE986EA0FC5
Authority key identifier: FB:F8:CD:5D:24:A0:8B:5A:8A:FB:57:C9:E6:04:D1:93:BC:8C:AE:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/gExeeBqfEEms0sXUrorLDINChh4.roa
Signing time: Tue 20 Aug 2024 14:07:22 +0000
ROA not before: Tue 20 Aug 2024 14:07:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215202
IP address blocks: 185.138.214.0/23 maxlen: 23
185.138.215.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 15 Oct 2024 12:10:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:70:1d:20:8a:b0:72:e4:65:af:b5:dc:e9:86:ea:0f:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fbf8cd5d24a08b5a8afb57c9e604d193bc8cae20
Validity
Not Before: Aug 20 14:07:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=804c5e781a9f1049acd2c5d4ae8acb0c8342861e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:d3:e5:db:19:c5:db:aa:dd:c5:59:4f:ca:c3:
68:64:d4:7e:87:17:29:20:3d:b5:db:dc:7a:93:5a:
28:35:e1:67:64:fe:1f:72:2c:02:f7:e1:45:b5:63:
28:35:8f:7a:f3:14:87:14:43:68:36:72:70:aa:74:
c0:90:5e:91:5e:80:e6:a7:aa:9b:f7:8b:a1:1d:f2:
8f:d1:e7:64:c1:f5:b3:64:19:a5:85:60:5f:df:d7:
d0:ae:3f:b9:05:fa:ca:00:5e:69:20:c8:df:a4:35:
91:a7:f5:f3:d9:9c:5c:e1:45:54:44:76:a9:cd:49:
d7:09:16:fc:4d:14:0d:26:44:c0:63:e5:93:f2:2a:
49:52:7a:ff:f3:6b:14:16:4c:92:c6:16:f5:1b:67:
04:8e:4b:b2:ee:8a:02:0c:69:4e:a3:97:58:5d:ac:
43:cc:ac:bd:5d:a0:ae:af:42:ee:94:2e:c1:0d:a9:
d9:70:97:8d:9b:97:9f:29:91:f6:ab:3f:7c:3d:e9:
4e:12:6e:22:dd:0a:d3:11:e3:fa:71:20:eb:81:75:
88:2e:d0:3d:08:62:e9:eb:70:11:c8:82:c9:d8:2b:
63:a8:86:f0:c7:1a:04:52:08:9a:aa:fb:2b:89:6f:
1a:8f:ab:58:55:53:87:6c:89:5e:e0:bb:d6:e0:7d:
81:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:4C:5E:78:1A:9F:10:49:AC:D2:C5:D4:AE:8A:CB:0C:83:42:86:1E
X509v3 Authority Key Identifier:
keyid:FB:F8:CD:5D:24:A0:8B:5A:8A:FB:57:C9:E6:04:D1:93:BC:8C:AE:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/gExeeBqfEEms0sXUrorLDINChh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/eb3e9b-6db5-46c6-9aa1-eb87869bd1c9/1/1-_jNXSSgi1qK-1fJ5gTRk7yMriA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.138.214.0/23
Signature Algorithm: sha256WithRSAEncryption
47:92:87:a9:9e:e4:d2:5b:aa:ef:9d:c3:96:1c:c3:7c:ef:db:
3f:66:db:a3:5a:95:1e:89:eb:1a:49:b6:b4:68:bf:a2:21:d2:
99:c5:d6:11:bb:30:31:1d:d8:36:2c:44:a7:b8:d9:1b:68:3d:
81:96:60:76:07:84:26:8c:42:3c:58:8e:df:8b:70:26:b7:b3:
ae:8b:aa:e0:d0:f1:98:a5:7d:21:09:80:a8:13:a2:d2:a6:6e:
a1:b1:25:c4:ac:22:90:76:09:aa:8c:d1:4f:25:33:b1:fe:77:
c4:b7:b3:f2:92:0d:f7:d5:42:14:91:bb:6d:44:fc:9c:7d:6e:
28:f8:30:27:ba:67:05:f3:ad:65:14:ce:91:3f:40:17:ad:8b:
61:c5:a6:90:ad:c5:f0:17:17:43:47:30:fe:7d:ff:56:4a:f9:
0b:5b:5b:d6:5b:73:24:5f:f8:5e:89:2f:f0:11:8f:a2:ac:37:
7c:62:90:da:94:d1:be:f7:1c:aa:49:a8:4d:d2:fa:20:9a:14:
62:80:20:06:0c:9a:a2:9d:57:7b:39:54:13:76:36:1b:e7:f8:
e0:14:e1:b8:fd:fa:f7:12:4b:09:1c:4c:37:c7:35:9d:0c:c2:
7a:32:3d:76:94:15:f8:88:e8:ca:6e:61:c5:c2:0f:a0:ed:32:
88:8d:50:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:24 2025 by rpki-client