Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/OLoCFeVI1vJ7zEwxsQpppzDMxbA.roa
File: OLoCFeVI1vJ7zEwxsQpppzDMxbA.roa (raw, json)
Hash identifier: GBDXHXlic2PrVCZmjh+/zoWyOn07TMElazDeWHxqLUg=
Subject key identifier: 38:BA:02:15:E5:48:D6:F2:7B:CC:4C:31:B1:0A:69:A7:30:CC:C5:B0
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 0192E3D10D2EFD0986F299294A987A35CE24
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/OLoCFeVI1vJ7zEwxsQpppzDMxbA.roa
Signing time: Thu 31 Oct 2024 18:23:01 +0000
ROA not before: Thu 31 Oct 2024 18:23:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20473
IP address blocks: 94.229.220.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 13:48:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:e3:d1:0d:2e:fd:09:86:f2:99:29:4a:98:7a:35:ce:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: Oct 31 18:23:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38ba0215e548d6f27bcc4c31b10a69a730ccc5b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9e:55:21:b8:a2:07:4f:b0:14:b2:16:e6:2d:
5c:f9:78:1b:48:cf:87:72:1d:fd:ac:92:bd:d4:44:
cd:93:e3:64:8d:9b:7c:b2:38:78:f2:4c:0b:66:bd:
7a:11:2f:15:1f:6e:d2:5b:31:41:8e:69:3f:86:10:
53:bd:e8:e0:05:23:23:70:c7:e1:dc:d8:91:b0:05:
9c:1d:c3:b7:52:d1:1f:b1:47:fb:94:0f:e2:95:2f:
94:39:4c:08:46:77:bc:70:e0:60:4c:25:43:bd:7f:
1d:83:29:16:02:64:64:3c:fb:86:8b:51:db:d0:b9:
85:2f:45:7a:ee:c5:da:ae:67:04:6b:e1:ee:b6:15:
57:00:74:25:72:2c:4d:07:94:84:c6:4e:b6:8a:fb:
dc:d8:5d:76:1c:69:f9:16:9c:7f:f3:fb:b3:53:38:
37:6f:d7:f8:5d:ad:b9:65:c1:86:e6:e0:a6:4c:fb:
7b:4d:18:82:5d:b8:62:1a:31:ea:89:c9:81:18:f2:
28:33:ca:1c:0d:e9:37:3e:8c:bf:4a:1c:7c:14:ba:
a2:49:38:0a:cb:f3:f8:41:38:46:00:02:bf:93:dd:
24:50:cf:bf:ff:23:46:c9:b6:f8:7a:d9:bf:a8:7a:
f4:8f:cc:99:1e:d3:7c:5b:47:ed:36:ae:19:52:16:
f8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:BA:02:15:E5:48:D6:F2:7B:CC:4C:31:B1:0A:69:A7:30:CC:C5:B0
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/OLoCFeVI1vJ7zEwxsQpppzDMxbA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.229.220.0/24
Signature Algorithm: sha256WithRSAEncryption
31:63:ec:c9:0a:18:01:6a:57:71:57:b1:80:cb:91:67:7f:21:
e4:b6:15:b5:73:be:b3:fe:41:92:d5:fc:62:81:89:3a:30:35:
47:a9:4b:65:ed:bc:69:e4:5c:7b:f7:d2:e3:0a:40:8d:7a:53:
36:a5:d5:60:73:bf:5b:d9:80:e4:8a:a3:0a:6e:66:6e:bf:b1:
c5:67:cf:b4:1f:7e:1d:21:b1:77:04:78:57:a7:42:5a:37:53:
64:d1:a5:00:2d:da:b1:77:cd:62:b2:68:56:26:05:a0:ce:7a:
e7:d1:ba:30:ec:58:58:ec:49:73:f1:e2:7a:2a:12:b0:6a:ae:
30:02:be:3d:af:db:0a:6a:fa:dc:07:c8:b9:1a:36:f2:60:0a:
39:4c:22:79:75:2b:89:30:b0:81:42:9f:9a:06:8e:62:2f:61:
9c:a6:e7:fc:24:f8:ca:0f:88:ae:c5:ef:66:df:fa:54:e0:60:
4f:75:bc:2b:94:06:25:12:bc:bd:ea:43:e8:13:97:2e:80:f8:
c2:dc:3d:cb:42:92:91:3e:bc:b9:69:26:57:2e:3e:8a:68:7a:
d0:fc:90:51:ab:09:8d:51:bc:ef:c5:17:02:fc:3b:6b:6f:ce:
43:df:18:67:0a:9d:73:fc:43:04:ca:90:b0:73:33:a5:1c:c8:
17:5c:c5:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:26:02 2025 by rpki-client