Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/Nb2PARco4JJx5BU9FYYvHOhCzQs.roa
File: Nb2PARco4JJx5BU9FYYvHOhCzQs.roa (raw, json)
Hash identifier: xwsJPJNLqRiLNGeG6d1mg4+3QYVpyn1+qyvhHiMNI90=
Subject key identifier: 35:BD:8F:01:17:28:E0:92:71:E4:15:3D:15:86:2F:1C:E8:42:CD:0B
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 01946B23F6F1A66122740AE0B32F94C7AEF6
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/Nb2PARco4JJx5BU9FYYvHOhCzQs.roa
Signing time: Wed 15 Jan 2025 18:05:06 +0000
ROA not before: Wed 15 Jan 2025 18:05:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215287
IP address blocks: 77.111.97.0/24 maxlen: 24
77.111.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 29 Jan 2025 00:17:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:6b:23:f6:f1:a6:61:22:74:0a:e0:b3:2f:94:c7:ae:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Jan 15 18:05:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=35bd8f011728e09271e4153d15862f1ce842cd0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:69:27:a4:eb:08:e1:03:1d:1c:b9:81:d2:fb:
20:0f:2f:cd:db:97:1f:7f:7b:68:95:e1:46:39:a5:
29:93:d6:20:91:18:e7:59:9f:4a:d2:d9:ae:99:8c:
3b:7d:52:d5:86:fa:be:d8:af:34:94:92:aa:01:f0:
b5:6e:6b:54:86:2b:98:0c:b2:e1:a0:a2:ed:cb:a2:
7e:c4:a4:f9:74:53:87:5b:d4:5f:db:85:92:c2:cb:
12:48:b3:08:66:30:f0:d4:7e:8d:75:96:11:dc:57:
ec:8b:e8:47:43:f1:ef:a0:46:67:35:9d:2e:68:07:
83:0a:b3:15:71:82:8f:00:1b:ce:1a:57:42:7f:13:
3a:34:8e:4a:01:4e:40:4e:ce:1c:74:dc:3f:1e:b5:
c6:20:e6:2d:65:13:9f:8b:91:31:de:0f:f3:24:ec:
c0:96:2e:e6:48:79:df:a9:d6:5f:9e:35:fa:f8:30:
8f:e5:c8:29:be:da:57:33:47:6d:55:43:ae:08:77:
78:97:8d:fb:ac:62:79:29:04:33:3d:4a:79:16:42:
7c:83:d2:05:ca:79:29:3a:72:3d:c6:2a:e6:04:5d:
8b:c1:57:4c:d4:4b:23:53:85:6f:c8:db:b1:09:59:
09:6a:2c:bf:a7:14:a4:f7:2a:11:d0:35:da:6a:2c:
c1:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:BD:8F:01:17:28:E0:92:71:E4:15:3D:15:86:2F:1C:E8:42:CD:0B
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/Nb2PARco4JJx5BU9FYYvHOhCzQs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.111.97.0/24
77.111.107.0/24
Signature Algorithm: sha256WithRSAEncryption
56:93:b9:f1:a7:64:c7:dc:02:85:ab:e5:7f:31:96:63:62:f6:
67:3b:79:6b:95:db:c2:fc:de:e8:6f:db:14:37:0d:6a:90:4e:
1a:f4:a3:cd:8b:e4:d0:f4:60:81:4a:12:c9:e8:fd:02:0a:cd:
63:5c:68:87:cb:99:de:df:d6:d2:f4:9e:02:1b:a4:a2:33:49:
30:30:7c:9c:81:ec:0b:3b:84:64:28:60:6b:0a:be:e3:5f:81:
bf:8a:b5:89:e1:6a:b6:00:cb:f9:cc:16:5b:2b:44:23:80:a2:
81:55:ec:6b:ea:dd:a2:e8:6f:9b:13:a6:68:bc:04:65:29:4f:
98:b8:10:f5:ae:47:a4:d8:0e:30:b6:59:e7:7a:11:cf:30:c8:
29:19:e3:c9:ba:67:5c:b6:13:78:ae:15:9c:87:3e:1d:d2:d1:
72:ac:67:5f:66:5a:50:25:50:99:9a:dd:5c:82:4f:16:fa:d8:
ed:15:ec:35:fc:e4:aa:a7:78:8c:e2:e2:28:8a:5e:34:a8:1c:
78:a8:1b:c4:9f:32:87:12:13:bb:af:22:93:cd:6e:a5:6e:c3:
cc:a9:84:ac:35:7f:0e:60:06:83:63:49:65:7a:38:3d:61:f2:
f1:6a:dc:88:67:55:47:6b:d7:a8:11:ad:d8:ac:2c:7e:60:2a:
db:a8:f1:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:28 2025 by rpki-client