Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/2Eklj8EyjGsr3GJsznNO-bMEpfw.roa
File: 2Eklj8EyjGsr3GJsznNO-bMEpfw.roa (raw, json)
Hash identifier: 21qMm/w2w1GOSSy0QAnRMy8s7xQoPLF4p2JiiVG9uIE=
Subject key identifier: D8:49:25:8F:C1:32:8C:6B:2B:DC:62:6C:CE:73:4E:F9:B3:04:A5:FC
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018CC5DCA0160C450585C7C4E41192A0320D
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/2Eklj8EyjGsr3GJsznNO-bMEpfw.roa
Signing time: Mon 01 Jan 2024 16:30:19 +0000
ROA not before: Mon 01 Jan 2024 16:30:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 212607
IP address blocks: 5.10.248.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 27 Mar 2024 12:51:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:a0:16:0c:45:05:85:c7:c4:e4:11:92:a0:32:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 16:30:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d849258fc1328c6b2bdc626cce734ef9b304a5fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:07:de:8f:88:7a:12:11:ec:05:c6:1e:b3:ee:
4d:96:25:bc:7d:53:b3:1f:4d:4c:a1:cb:0a:73:06:
19:cf:7b:58:51:a3:2b:87:6e:ed:d4:90:3f:0f:92:
c8:a0:b0:24:0c:27:11:08:29:8b:e4:f6:d3:59:11:
cb:a7:b8:9b:6a:dc:59:97:50:c4:98:33:17:f0:b6:
67:0f:0e:0b:63:8b:79:56:00:b4:bb:e8:85:90:00:
25:84:58:a3:77:24:d8:d9:93:bc:53:30:22:26:19:
5e:b5:33:04:5d:11:b8:35:59:64:a5:74:cb:7d:d5:
88:86:db:2c:83:ca:d1:3e:7f:f1:e1:a0:44:28:9e:
e7:59:8b:11:1a:5d:c2:e4:37:a5:7c:59:08:57:4f:
b6:61:36:da:03:7f:4c:b4:86:c2:0f:fa:3e:e0:be:
74:38:4d:6a:2a:a6:d1:ed:cd:07:42:5e:b0:05:0a:
cb:51:db:54:09:67:3f:2d:97:46:6e:52:0a:ee:08:
ee:24:53:5f:55:57:92:36:35:26:32:20:87:98:b4:
51:39:63:6e:20:ee:b5:eb:5b:67:ca:e2:ea:af:2d:
c2:40:d5:f0:2e:99:36:fd:ee:21:26:1e:1c:60:1f:
c1:ef:e2:55:4e:08:1b:09:6a:8e:06:ce:cd:44:a7:
0a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:49:25:8F:C1:32:8C:6B:2B:DC:62:6C:CE:73:4E:F9:B3:04:A5:FC
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/2Eklj8EyjGsr3GJsznNO-bMEpfw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.10.248.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:38:95:ce:a1:d8:95:6f:f8:24:92:10:18:a0:8d:39:a2:aa:
0a:5b:43:76:65:91:ed:e5:47:17:b5:a6:a8:c2:a1:c8:8b:44:
d5:0b:f3:70:9f:e4:36:57:dd:b3:2d:3d:7f:10:fd:21:fd:82:
de:a7:78:c9:a7:ad:10:77:e3:58:ae:3b:43:ed:ce:d2:a8:fc:
73:d7:64:b6:a0:61:e8:8c:6d:23:fb:9d:91:96:5b:9a:b5:19:
5e:66:d1:1d:08:13:f8:54:eb:ab:1b:3e:97:fa:d2:93:2b:7e:
f6:95:15:d3:ee:71:f8:9f:92:2b:84:3c:5c:cb:c4:cd:0e:f9:
f6:3b:81:4d:6e:73:cf:4e:5d:80:05:42:32:e8:29:f8:4d:64:
0f:2d:0c:fa:d4:2d:d7:18:55:67:8e:d8:bc:ed:1d:2f:5d:a3:
10:bc:84:6a:96:36:06:25:20:7f:16:74:5a:de:d1:0b:fc:60:
1a:94:72:94:69:d5:c7:b9:ec:67:52:40:9e:a9:4e:98:30:93:
38:f2:49:42:50:6d:19:39:b9:5b:98:d0:f3:94:9a:72:4a:64:
9c:e0:76:2d:89:2f:50:9d:64:5e:b5:fe:fd:bf:46:63:46:72:
3b:38:fb:60:45:0d:41:27:23:f9:a2:7b:1e:54:7d:00:36:05:
8e:e0:fc:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:54 2025 by rpki-client