Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/g7fHNRncuiezv0YQV-O-sIJUCXM.roa
File: g7fHNRncuiezv0YQV-O-sIJUCXM.roa (raw, json)
Hash identifier: gp9yzBqT+Tg8qQJiMtChNSxQi09sZn72I79JYtCuecE=
Subject key identifier: 83:B7:C7:35:19:DC:BA:27:B3:BF:46:10:57:E3:BE:B0:82:54:09:73
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 018CC5DC9BC2FA51FB0531D9F490050F5300
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/g7fHNRncuiezv0YQV-O-sIJUCXM.roa
Signing time: Mon 01 Jan 2024 16:30:18 +0000
ROA not before: Mon 01 Jan 2024 16:30:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57428
IP address blocks: 164.215.101.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 15 Mar 2024 15:20:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:dc:9b:c2:fa:51:fb:05:31:d9:f4:90:05:0f:53:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Jan 1 16:30:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83b7c73519dcba27b3bf461057e3beb082540973
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:1f:0b:e8:36:6e:60:98:ed:91:e5:9c:fd:6a:
50:55:05:64:cc:ac:ac:eb:c5:09:2a:2c:18:90:31:
14:20:ed:36:40:10:2d:23:b7:6c:e9:b7:06:ac:04:
22:30:f4:cb:13:42:6d:94:f9:86:85:4f:8f:7d:02:
1f:fc:95:a7:44:0d:7b:09:f3:ab:22:26:7d:e7:a8:
04:6c:63:4f:a0:45:5e:70:46:62:20:0b:e6:53:2b:
82:ee:a9:7e:75:5c:a1:07:c8:05:9d:38:01:da:e0:
04:17:40:10:30:57:13:1a:1e:79:16:b7:7f:54:f3:
6e:02:4c:97:58:2f:9c:83:ae:58:00:4f:4c:4a:f1:
37:28:79:e5:89:a3:c8:59:1d:35:b5:57:61:dd:3d:
72:c9:a3:7a:5d:2d:4f:c1:4b:31:9b:79:e2:12:85:
66:e7:0d:ab:c5:bd:62:f3:72:af:4e:e2:8b:e6:dd:
a4:d3:8c:2f:6c:bd:4a:bc:33:af:17:fc:dd:c3:da:
f7:f5:95:a8:e5:9b:91:5b:a6:59:88:d0:4b:76:cc:
f4:31:dc:b6:b0:53:ba:43:d2:b4:2f:d3:83:df:5c:
ee:26:af:56:a0:20:03:61:58:4f:3a:14:b4:07:0e:
5e:d1:ca:25:3f:5f:5b:30:dd:5e:59:40:88:e2:a8:
8c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:B7:C7:35:19:DC:BA:27:B3:BF:46:10:57:E3:BE:B0:82:54:09:73
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/g7fHNRncuiezv0YQV-O-sIJUCXM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
164.215.101.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:91:32:e9:f8:7d:6f:15:7e:21:d6:34:3b:b0:1b:ea:6e:9b:
88:fc:4a:f1:9e:e9:cd:74:66:a7:1e:55:26:23:4c:ef:58:6a:
86:0e:25:91:26:f9:31:24:28:8d:04:bc:72:f0:05:53:64:cb:
90:6a:7c:23:f9:11:a9:89:d3:2b:0a:12:73:e6:76:44:69:07:
ad:03:b1:87:33:a4:d1:74:4e:79:3c:6f:d4:82:aa:fd:a3:d9:
be:d5:5f:61:79:0f:00:d5:7f:08:81:fa:6d:92:c5:45:7f:0e:
bd:f3:04:03:e0:b3:e2:ae:22:7f:58:3a:e6:6d:50:ae:35:9b:
cb:98:3c:a1:f2:6e:e3:cb:82:fb:c2:a6:a1:f2:4c:76:2e:df:
ed:6a:3b:18:26:6c:ce:f7:f8:15:4e:87:86:43:96:94:75:d2:
a3:32:4c:ff:d1:f2:01:f0:b4:d5:15:64:14:83:01:f4:84:11:
6c:db:08:07:aa:ab:06:1e:5c:a2:db:6f:4e:bc:65:ee:62:9d:
ce:e8:0e:96:26:2a:0f:e8:fa:ad:0d:8f:57:9e:a7:c0:54:a4:
b6:ea:3e:17:9b:54:31:44:35:d3:53:5a:80:a8:d0:73:25:68:
03:c3:ac:cd:d5:67:a4:37:87:b0:46:2d:8f:a6:b0:8c:f3:3e:
c8:84:4e:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:38 2025 by rpki-client