Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/0SSTVIHB-jv4sJfXtm_hwtGsZUw.roa
File: 0SSTVIHB-jv4sJfXtm_hwtGsZUw.roa (raw, json)
Hash identifier: tY20etRKcoCImCvzK3HYqMlV7KJAn5ZKXlI1ZRRlCak=
Subject key identifier: D1:24:93:54:81:C1:FA:3B:F8:B0:97:D7:B6:6F:E1:C2:D1:AC:65:4C
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 018DF2E2D505D86FD4CFA1B572D4ACBC7A3A
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/0SSTVIHB-jv4sJfXtm_hwtGsZUw.roa
Signing time: Thu 29 Feb 2024 03:22:48 +0000
ROA not before: Thu 29 Feb 2024 03:22:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201575
IP address blocks: 14.102.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 16:59:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f2:e2:d5:05:d8:6f:d4:cf:a1:b5:72:d4:ac:bc:7a:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Feb 29 03:22:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d124935481c1fa3bf8b097d7b66fe1c2d1ac654c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3c:e4:5a:1e:ea:c3:d2:f4:5c:2b:48:d3:6a:
35:40:5e:16:4b:01:f0:63:2a:08:f1:81:a7:d2:78:
0f:2e:01:46:09:b9:eb:7b:0e:7a:07:a2:87:dc:ab:
31:bf:e8:b2:8a:fa:8f:5e:7d:90:45:7f:25:00:eb:
10:a1:f7:4e:75:ae:58:37:0a:31:8b:72:86:04:5e:
17:76:a6:75:e0:c0:bb:cc:62:47:dc:da:cf:f0:1b:
28:06:a6:68:d4:26:1b:9b:84:ca:d2:dd:67:c0:0e:
1e:17:09:37:03:83:93:a9:81:1c:f5:0d:cc:2a:f8:
59:5f:34:ea:1c:7d:d4:48:5e:cd:e3:3e:f7:69:6a:
2f:7b:d9:37:dc:a4:d6:07:b0:ee:48:b3:19:1d:e0:
90:a9:ca:4a:05:22:db:f9:e6:a3:ba:10:f9:88:34:
01:fc:23:59:e8:cc:85:05:a8:21:38:d1:41:7b:39:
b7:8d:a4:2a:73:36:7a:81:cb:1e:49:7d:22:a0:b3:
1c:9e:7d:02:8d:58:67:59:3a:d1:d3:44:bb:65:ee:
bd:72:8c:03:14:6e:45:70:67:01:c0:ec:66:d0:eb:
0c:2a:5c:f9:42:65:cf:39:97:25:5f:c4:68:f1:24:
78:75:a2:2f:3b:94:f9:ca:39:68:57:f4:64:75:d8:
0c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:24:93:54:81:C1:FA:3B:F8:B0:97:D7:B6:6F:E1:C2:D1:AC:65:4C
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/0SSTVIHB-jv4sJfXtm_hwtGsZUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
14.102.236.0/24
Signature Algorithm: sha256WithRSAEncryption
16:e1:82:a1:65:57:3b:40:7e:ba:e3:6b:d6:17:8d:20:3b:14:
28:0a:87:0b:61:5e:b8:75:3e:90:05:da:68:56:f4:c2:f1:ff:
6c:3f:24:a6:30:aa:07:df:03:a7:88:c2:34:e8:e6:b0:a3:3d:
7a:30:71:8e:7d:be:5d:ce:6c:84:f7:70:6f:c6:d2:95:61:ff:
88:5d:03:be:e3:d2:81:20:60:c2:95:7d:c1:01:b1:07:c4:b5:
5a:54:3d:e5:e1:83:c0:10:76:c2:0c:7d:8d:20:9b:cb:06:f2:
5f:c3:4a:f2:71:14:8f:1d:83:c7:da:c2:6c:46:b7:68:43:cc:
d7:6b:84:5d:3a:8c:6e:d9:7f:99:9c:d8:c7:db:11:ed:00:9a:
87:dc:ba:dc:f1:5b:99:43:4a:a1:ec:76:cb:79:3c:e9:ab:98:
c4:f5:79:48:44:2f:12:6e:f6:67:6d:47:65:1b:4f:23:46:fe:
92:87:18:14:cf:f2:fd:ce:77:d9:b6:0e:3d:5d:d7:94:08:ba:
fb:4e:dc:c0:b3:e3:13:13:58:4f:50:a0:8f:9f:b7:58:52:a9:
d2:b2:38:67:92:ad:f2:87:cd:1b:aa:7e:18:a7:7d:22:bc:d2:
c5:a0:c8:23:be:ca:e1:bb:14:ce:b0:d7:c8:08:e0:79:c2:12:
d8:b6:ae:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:10:37 2025 by rpki-client