Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/M0hsBmSYGq4pIuyOLUIJRgJHLV8.roa
File: M0hsBmSYGq4pIuyOLUIJRgJHLV8.roa (raw, json)
Hash identifier: EkRxYbEWEyZL8EGZwycgc2Q20mkvC8kjZEp6aD4whtk=
Subject key identifier: 33:48:6C:06:64:98:1A:AE:29:22:EC:8E:2D:42:09:46:02:47:2D:5F
Certificate issuer: /CN=af1eee22c5015363118a71d26a9463dc9374ba28
Certificate serial: 01915D13C5C59C6CAE55C7264E681324F1A8
Authority key identifier: AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/M0hsBmSYGq4pIuyOLUIJRgJHLV8.roa
Signing time: Fri 16 Aug 2024 21:24:22 +0000
ROA not before: Fri 16 Aug 2024 21:24:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212177
IP address blocks: 80.75.219.0/24 maxlen: 24
2a03:f980::/29 maxlen: 29
Validation: Failed, certificate revoked on Mon 26 Aug 2024 20:18:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:5d:13:c5:c5:9c:6c:ae:55:c7:26:4e:68:13:24:f1:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af1eee22c5015363118a71d26a9463dc9374ba28
Validity
Not Before: Aug 16 21:24:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=33486c0664981aae2922ec8e2d42094602472d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ad:0f:8a:98:da:63:73:9f:50:0c:2e:1c:53:
41:6c:ce:46:72:1f:76:4f:48:46:ef:ac:9c:07:93:
dd:48:ff:f5:0e:7b:e9:35:8e:59:8a:a5:4a:7a:13:
a6:3e:f7:d9:a9:b7:0c:a4:2d:d0:2c:c5:2c:86:60:
1d:8e:df:69:d4:79:f8:35:4e:05:99:be:95:0d:79:
f9:f2:15:c0:4f:be:f4:ef:dd:89:dd:28:f6:51:56:
f1:a1:00:94:02:8f:76:86:53:9c:9f:74:d9:54:f4:
5d:f6:a6:61:f0:c7:f8:36:c2:51:29:8e:c7:f7:83:
7d:24:25:82:1f:aa:a5:4a:ad:b1:09:43:80:0d:94:
3c:13:05:22:1d:80:7d:40:bd:b6:8a:d5:47:ec:6a:
7a:b1:ab:5a:1f:79:f1:b3:d9:0a:31:83:f4:84:4c:
6b:e1:cf:47:03:d5:78:f4:9b:1e:b6:a5:6f:79:08:
00:6e:ed:10:66:43:b9:7c:27:07:d2:95:5d:34:dc:
d3:9f:4b:ac:0f:58:f5:8a:e9:c2:17:10:50:42:37:
de:36:77:2f:0b:d8:39:3a:d6:87:eb:7d:1e:58:da:
4c:bc:2f:9c:8d:f6:16:22:67:c2:5d:b3:59:84:84:
fa:d0:50:35:e5:b5:b9:b0:4a:c9:e6:da:c9:a8:9a:
13:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:48:6C:06:64:98:1A:AE:29:22:EC:8E:2D:42:09:46:02:47:2D:5F
X509v3 Authority Key Identifier:
keyid:AF:1E:EE:22:C5:01:53:63:11:8A:71:D2:6A:94:63:DC:93:74:BA:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rx7uIsUBU2MRinHSapRj3JN0uig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/M0hsBmSYGq4pIuyOLUIJRgJHLV8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/fdc2f4-2222-4f1b-a5e5-b2178ef2f82f/1/rx7uIsUBU2MRinHSapRj3JN0uig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.75.219.0/24
IPv6:
2a03:f980::/29
Signature Algorithm: sha256WithRSAEncryption
4c:fd:dc:61:e4:06:38:93:d6:61:01:91:43:21:3e:9a:70:12:
ba:80:6c:b6:ad:19:0a:e7:4b:e6:e1:6f:ed:b1:fa:01:95:53:
04:96:2a:2b:94:35:56:ec:08:e5:a3:b5:94:be:e4:6a:b5:84:
1c:28:6e:bb:fa:e6:6d:81:3a:9a:6c:1e:98:1e:38:07:7a:9c:
e4:d8:22:6b:85:34:6f:1c:81:48:5c:b3:a2:1b:ff:a9:ca:8c:
40:99:6f:d4:ef:93:f5:0a:7a:e4:36:51:5f:86:42:88:c5:17:
dc:76:4b:a5:87:7b:0a:7c:2f:32:76:c3:30:3d:8a:e8:bb:15:
cc:87:be:1e:03:18:80:0b:be:85:f9:7a:e1:4e:58:bb:55:fe:
0e:5c:c0:30:8d:5a:6a:70:ad:60:3f:c3:38:5f:b0:e5:68:26:
77:f6:83:ee:e0:18:10:3f:e0:61:26:f4:c7:a5:b0:b5:7b:47:
da:07:d0:c0:0d:8c:cc:d9:36:a0:ba:36:3a:5f:e9:63:7c:a1:
21:53:d2:86:74:72:92:e5:b7:2f:1b:82:81:44:e0:7c:2e:97:
03:44:96:42:f6:48:d0:fa:7c:b7:4b:77:93:ee:dd:73:66:bd:
0d:a5:30:b6:ae:e5:19:6a:08:dc:d9:97:66:39:83:c8:df:6a:
c2:c9:35:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:50:25 2025 by rpki-client