Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/moFOw02mTgQun9WLZ2bOep-tiyE.roa
File: moFOw02mTgQun9WLZ2bOep-tiyE.roa (raw, json)
Hash identifier: Akwd6G8JLtzzCFROTOJMZyWeQRIbLiR6r21g7yRGMyA=
Subject key identifier: 9A:81:4E:C3:4D:A6:4E:04:2E:9F:D5:8B:67:66:CE:7A:9F:AD:8B:21
Certificate issuer: /CN=e6faa0d2f5dec0201f55e40979c1909b6db77c3b
Certificate serial: 018FE74BAECF2B706E234D24C36EBEDBDC4A
Authority key identifier: E6:FA:A0:D2:F5:DE:C0:20:1F:55:E4:09:79:C1:90:9B:6D:B7:7C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5vqg0vXewCAfVeQJecGQm223fDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/moFOw02mTgQun9WLZ2bOep-tiyE.roa
Signing time: Wed 05 Jun 2024 07:27:27 +0000
ROA not before: Wed 05 Jun 2024 07:27:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 197075
IP address blocks: 37.77.160.0/21 maxlen: 24
45.156.60.0/23 maxlen: 23
45.156.62.0/23 maxlen: 23
46.31.104.0/21 maxlen: 24
81.29.176.0/22 maxlen: 23
185.25.234.0/23 maxlen: 23
185.37.116.0/22 maxlen: 23
185.47.138.0/24 maxlen: 24
185.59.20.0/22 maxlen: 23
185.186.12.0/22 maxlen: 23
185.246.95.0/24 maxlen: 24
2a02:2420::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 13 Aug 2024 14:41:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:e7:4b:ae:cf:2b:70:6e:23:4d:24:c3:6e:be:db:dc:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6faa0d2f5dec0201f55e40979c1909b6db77c3b
Validity
Not Before: Jun 5 07:27:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=9a814ec34da64e042e9fd58b6766ce7a9fad8b21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:da:7f:50:a5:d3:24:9d:4a:97:a6:10:a7:1e:
0c:49:11:76:41:cc:71:50:7f:7f:fa:da:e2:da:04:
08:88:99:f1:b1:32:94:52:40:3b:68:53:47:a5:e5:
28:ea:c0:f7:95:bc:2e:05:29:7b:d9:25:8e:ea:80:
c1:57:0f:45:1d:f9:0d:0c:5a:ac:ef:c4:82:b1:58:
1d:95:db:88:20:28:42:32:33:22:35:4d:83:73:fd:
c0:2b:22:d8:36:73:d2:52:a9:08:b6:9c:97:b9:4c:
2f:26:7d:86:10:b4:15:4d:78:f1:b4:d1:ee:84:5e:
a9:bb:07:bd:b5:7b:70:24:cc:67:db:c5:a1:25:da:
42:2d:39:1d:40:a7:91:66:30:de:b1:5a:a5:b2:97:
22:a9:8e:8b:29:ec:67:25:6d:c1:07:63:c5:cb:5c:
52:ac:3c:2d:27:03:3b:75:1f:2c:e6:96:f8:35:74:
03:d6:67:8f:00:e6:8f:3a:0a:a2:e1:10:08:09:d8:
3e:6d:1f:df:c4:3a:d0:ab:d8:79:30:0b:74:57:9c:
60:0a:63:00:a9:0d:77:9d:ca:d9:d0:4a:32:65:a0:
e5:0a:a8:b7:b2:fc:91:60:45:84:72:3b:36:3b:1e:
9d:6f:52:ca:8c:4e:4d:63:59:bc:9d:47:24:4d:ea:
31:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:81:4E:C3:4D:A6:4E:04:2E:9F:D5:8B:67:66:CE:7A:9F:AD:8B:21
X509v3 Authority Key Identifier:
keyid:E6:FA:A0:D2:F5:DE:C0:20:1F:55:E4:09:79:C1:90:9B:6D:B7:7C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5vqg0vXewCAfVeQJecGQm223fDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/moFOw02mTgQun9WLZ2bOep-tiyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/097748-5cc8-450f-9fbb-8c8d10e8eabc/1/5vqg0vXewCAfVeQJecGQm223fDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.77.160.0/21
45.156.60.0/22
46.31.104.0/21
81.29.176.0/22
185.25.234.0/23
185.37.116.0/22
185.47.138.0/24
185.59.20.0/22
185.186.12.0/22
185.246.95.0/24
IPv6:
2a02:2420::/32
Signature Algorithm: sha256WithRSAEncryption
82:d9:13:ed:4a:2c:b6:74:69:15:d0:77:f2:3a:e8:52:4d:cc:
4c:cc:86:97:bb:06:2e:a5:54:f2:bd:5c:36:b3:b6:64:ca:0a:
59:fb:1a:67:da:93:ed:74:d2:92:b4:6f:37:32:df:f9:56:75:
7c:59:9b:27:6b:5c:2a:ef:d1:1a:36:fe:e5:d1:66:0a:54:7b:
75:63:e9:ba:c6:61:dd:61:f0:29:ed:5a:5d:e8:fc:4a:03:ee:
52:84:44:fa:16:23:f3:05:85:9c:1b:b4:9f:d0:84:91:20:22:
7d:1b:44:26:7a:1b:e7:9f:6f:0c:2d:52:ea:17:db:da:c2:c7:
a8:6c:38:1c:8b:a0:e0:93:d5:c5:a5:3d:eb:c6:24:8d:73:d7:
19:f5:01:1c:10:00:41:1a:f3:ca:90:f2:b6:e4:45:58:7d:ab:
1f:cb:fc:ec:a7:13:88:cd:7c:7c:aa:b6:43:7b:8b:52:45:f8:
5f:c6:a7:6c:e8:f0:29:18:12:33:66:4c:9d:8f:af:01:21:46:
74:3e:ac:2c:91:92:07:5e:6a:69:95:39:5e:c6:0d:06:20:a8:
3e:a1:d8:00:22:8c:20:9a:f2:45:d7:9e:fd:e3:11:ff:82:04:
e9:6f:d3:c8:1d:63:a3:61:c3:c8:cf:d3:13:17:12:3d:22:c7:
69:67:9c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:40 2025 by rpki-client