Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/0-eN5koDTrZROT93HTieWF5CHwc.roa
File: 0-eN5koDTrZROT93HTieWF5CHwc.roa (raw, json)
Hash identifier: zkTKAAmPfX9loCX5iw8s8e2z7kVU7V0y6u8kOBYeVmI=
Subject key identifier: D3:E7:8D:E6:4A:03:4E:B6:51:39:3F:77:1D:38:9E:58:5E:42:1F:07
Certificate issuer: /CN=c755702467770ed69b367b77bbe640bc6db4153e
Certificate serial: 01941838BCB7DD267E37EA9147D652654F10
Authority key identifier: C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/0-eN5koDTrZROT93HTieWF5CHwc.roa
Signing time: Mon 30 Dec 2024 15:39:19 +0000
ROA not before: Mon 30 Dec 2024 15:39:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 7155
IP address blocks: 213.209.176.0/20 maxlen: 24
213.209.184.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 01 Jan 2025 09:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:18:38:bc:b7:dd:26:7e:37:ea:91:47:d6:52:65:4f:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c755702467770ed69b367b77bbe640bc6db4153e
Validity
Not Before: Dec 30 15:39:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d3e78de64a034eb651393f771d389e585e421f07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:1f:37:26:e0:42:e0:1b:78:18:9b:dc:8d:f2:
30:fb:40:f3:3c:96:61:e1:c0:93:11:30:d5:e9:40:
13:15:68:e3:cb:41:3b:99:cd:68:1e:54:f8:b9:6b:
d6:34:bd:89:e7:9a:b0:cf:69:83:9d:ad:bf:07:aa:
e1:c0:be:0a:12:00:a6:7d:2b:ca:73:b9:d9:be:c8:
a7:94:78:fc:5b:58:20:4e:58:de:8a:9f:cb:8f:92:
2c:23:62:e6:bc:5f:a2:0d:4e:4d:99:1d:d7:41:71:
a0:6a:0f:2a:24:4d:4f:a7:0c:85:19:cc:a5:33:99:
67:8e:50:87:38:18:e4:c5:11:a6:9f:2a:a9:d6:4d:
56:b1:3d:48:c6:b5:b8:3a:2d:f1:5e:61:f3:a0:09:
1d:7f:dc:c6:9b:5b:fb:e6:33:1d:cc:05:9d:39:0d:
26:0d:fa:bd:af:e2:58:c3:e8:f9:4f:24:02:06:dc:
4a:fd:c1:fe:5c:c8:3c:33:af:2a:59:4c:98:f9:a4:
0b:3d:57:58:4b:3a:59:09:0d:72:7a:68:31:dd:21:
7b:33:3f:ad:55:65:e8:af:a2:03:94:48:45:3e:ed:
82:13:b2:de:91:c4:d1:31:0b:cd:2b:e2:0f:41:7c:
58:b2:75:e9:b1:4b:81:f5:20:b5:9a:f8:97:92:36:
39:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:E7:8D:E6:4A:03:4E:B6:51:39:3F:77:1D:38:9E:58:5E:42:1F:07
X509v3 Authority Key Identifier:
keyid:C7:55:70:24:67:77:0E:D6:9B:36:7B:77:BB:E6:40:BC:6D:B4:15:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x1VwJGd3DtabNnt3u-ZAvG20FT4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/0-eN5koDTrZROT93HTieWF5CHwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/243f91-8747-4981-9cbf-1d373499924e/1/x1VwJGd3DtabNnt3u-ZAvG20FT4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.209.176.0/20
Signature Algorithm: sha256WithRSAEncryption
25:79:c6:79:2d:b3:fe:0e:c2:8a:72:ec:4e:18:86:ff:27:de:
a5:54:29:82:b6:75:7f:4f:d7:7f:b3:3a:35:fb:43:4c:66:3f:
6e:46:69:de:79:7b:4e:b6:1e:51:cd:fd:bf:f3:6d:b6:a0:0d:
8d:bf:64:10:b5:a9:b9:c6:b1:47:e8:0a:7e:f5:1b:77:e1:39:
5a:b4:0b:e3:c7:30:1c:a4:f8:f4:f8:21:68:ca:e7:a1:e1:e2:
5d:32:8e:15:46:89:3b:10:a1:03:02:cc:f6:7b:73:d3:bf:01:
d3:82:a0:17:6c:72:60:c4:d3:61:6c:ff:95:4c:53:fb:c0:f2:
e9:a5:6e:09:eb:d2:9c:a9:0e:5b:b3:4f:5a:be:ab:4f:d3:da:
db:41:8f:69:76:34:d9:0a:46:67:89:bc:37:b6:e3:1e:1a:c9:
56:5d:b9:ce:be:78:d8:64:56:59:ba:56:f0:1c:5c:5f:84:7d:
82:d6:36:9c:25:a7:2c:3d:77:04:de:e3:5f:eb:c4:49:4a:5e:
a0:ba:2d:2f:7e:c9:1d:fb:bd:4c:b9:1a:3f:29:4b:3a:45:c7:
f7:fd:e2:8c:e3:e6:89:42:b2:27:a1:8e:ee:2e:04:b2:be:8b:
ec:42:13:82:ab:4c:7c:c4:80:6e:74:89:d6:60:b1:d4:e1:c9:
93:72:c6:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:11:25 2025 by rpki-client