Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Eu93hE7LddxB2Q83VQwRKI2igY8.roa
File: Eu93hE7LddxB2Q83VQwRKI2igY8.roa (raw, json)
Hash identifier: Fzd9+2LS8rZ9soDUaa3i3RIfY1yI2yLOy4iN664iWTc=
Subject key identifier: 12:EF:77:84:4E:CB:75:DC:41:D9:0F:37:55:0C:11:28:8D:A2:81:8F
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0194714358BAFE3B4D72910C7C75F40A5A32
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Eu93hE7LddxB2Q83VQwRKI2igY8.roa
Signing time: Thu 16 Jan 2025 22:37:06 +0000
ROA not before: Thu 16 Jan 2025 22:37:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215727
IP address blocks: 45.136.0.0/24 maxlen: 32
45.136.1.0/24 maxlen: 32
45.136.2.0/24 maxlen: 32
45.136.3.0/24 maxlen: 32
128.0.119.0/24 maxlen: 32
185.117.20.0/24 maxlen: 32
185.117.21.0/24 maxlen: 32
185.117.22.0/24 maxlen: 32
185.117.23.0/24 maxlen: 32
185.211.48.0/24 maxlen: 32
185.211.49.0/24 maxlen: 32
185.211.50.0/24 maxlen: 32
194.36.100.0/24 maxlen: 32
194.36.101.0/24 maxlen: 32
194.36.102.0/24 maxlen: 32
194.124.64.0/24 maxlen: 32
194.124.65.0/24 maxlen: 32
194.124.66.0/24 maxlen: 32
194.124.67.0/24 maxlen: 32
195.85.68.0/24 maxlen: 32
195.85.69.0/24 maxlen: 32
195.85.70.0/24 maxlen: 32
195.85.71.0/24 maxlen: 32
Validation: Failed, certificate revoked on Sun 19 Jan 2025 23:13:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:71:43:58:ba:fe:3b:4d:72:91:0c:7c:75:f4:0a:5a:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 16 22:37:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=12ef77844ecb75dc41d90f37550c11288da2818f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c9:61:b9:0c:dd:c8:f2:86:9f:97:fc:02:d8:
4a:00:76:fe:99:cd:7a:03:86:d6:2c:01:5f:6b:61:
58:3b:0b:f3:6b:fb:1d:ce:9a:cc:87:36:73:b2:cf:
85:66:1a:f7:d6:47:64:1c:f0:9f:3d:7d:9d:55:ac:
a5:9f:f0:59:c5:29:bb:6d:ef:4d:f3:51:be:cf:a9:
50:6f:66:46:d9:09:e1:22:aa:64:5f:eb:2b:71:71:
15:d4:47:d7:54:4f:ad:03:d1:39:ab:51:8e:19:6b:
b4:88:90:ee:14:0d:56:f5:76:ce:b5:33:3f:42:04:
77:d1:38:da:d0:cf:4b:41:a3:80:8a:77:91:ee:08:
af:d1:90:3d:9f:75:d5:be:dc:cb:9b:bf:b8:16:a7:
f1:7f:85:f8:c6:22:86:3f:71:8d:de:92:ef:46:5f:
2b:e4:77:7e:d3:0e:b7:62:3d:71:d5:a4:b6:3e:e2:
46:1c:4d:ad:f3:29:96:91:8a:11:ce:48:99:d8:50:
e9:9b:25:b2:80:98:b9:de:04:46:af:39:99:c2:1d:
13:1e:9e:6d:c7:ad:0d:46:db:b0:19:50:6d:da:cc:
bd:c3:f1:ec:ea:66:ef:92:71:28:89:34:c8:17:d1:
3a:8e:b0:f4:29:7b:6b:e7:db:a8:d3:bc:6a:cf:77:
07:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:EF:77:84:4E:CB:75:DC:41:D9:0F:37:55:0C:11:28:8D:A2:81:8F
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/Eu93hE7LddxB2Q83VQwRKI2igY8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.0.0/22
128.0.119.0/24
185.117.20.0/22
185.211.48.0-185.211.50.255
194.36.100.0-194.36.102.255
194.124.64.0/22
195.85.68.0/22
Signature Algorithm: sha256WithRSAEncryption
7f:da:a9:e4:71:98:d6:c3:5d:4e:7b:1f:ed:f4:c1:e8:d9:0b:
0d:14:7e:79:2c:8e:6f:4e:31:14:4c:18:67:3c:95:15:ba:3e:
72:58:88:ae:18:61:49:30:a3:38:62:78:9c:96:03:13:fb:fd:
0e:25:67:f0:89:34:90:3c:21:ac:60:93:6a:47:cf:5e:82:f7:
0d:75:36:63:a4:06:aa:3b:f0:dc:9f:94:da:36:30:99:f7:51:
df:e5:30:8a:2c:83:82:50:84:1d:23:ce:e0:33:b2:05:37:3d:
41:63:67:62:33:05:a4:67:9a:0d:09:17:8e:80:c5:96:3f:be:
0e:e1:3f:06:6a:58:8e:99:f4:ff:f3:e8:c3:13:ac:9c:68:98:
9f:62:91:4c:ca:ab:c2:4e:0c:4a:6c:d5:b4:c2:71:ec:56:29:
e9:d9:00:9b:ac:63:27:b5:95:f3:ff:79:93:ca:60:18:87:3f:
37:46:4e:b2:3f:02:4c:de:7a:f0:48:8b:ef:4e:bb:80:5a:3c:
ee:9c:23:a1:53:02:1f:ab:d3:cf:9e:91:e9:11:af:d2:97:a2:
dc:fb:80:3d:d7:bb:58:19:3a:21:df:57:7e:91:c2:4b:7e:7f:
87:63:e3:bd:1f:cd:65:b5:55:fb:06:fe:cd:ea:ab:d3:43:e2:
4a:7b:ac:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 13:32:04 2025 by rpki-client