Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/6EZrHt5YGKXHui6g1a9qUyv97Jk.roa
File: 6EZrHt5YGKXHui6g1a9qUyv97Jk.roa (raw, json)
Hash identifier: kr6wWx+knCC/B563f5+ittByBspRq+BztRw6rvg9aeg=
Subject key identifier: E8:46:6B:1E:DE:58:18:A5:C7:BA:2E:A0:D5:AF:6A:53:2B:FD:EC:99
Certificate issuer: /CN=a8d534ba3cb424cf5c5e3ba254ba2325080658b0
Certificate serial: 01924D4D0F2C918FD2E98287026F23B9A85C
Authority key identifier: A8:D5:34:BA:3C:B4:24:CF:5C:5E:3B:A2:54:BA:23:25:08:06:58:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qNU0ujy0JM9cXjuiVLojJQgGWLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/6EZrHt5YGKXHui6g1a9qUyv97Jk.roa
Signing time: Wed 02 Oct 2024 12:55:48 +0000
ROA not before: Wed 02 Oct 2024 12:55:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 29802
IP address blocks: 185.171.161.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 03:49:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:4d:4d:0f:2c:91:8f:d2:e9:82:87:02:6f:23:b9:a8:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8d534ba3cb424cf5c5e3ba254ba2325080658b0
Validity
Not Before: Oct 2 12:55:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8466b1ede5818a5c7ba2ea0d5af6a532bfdec99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:7a:6f:de:13:30:70:ec:7e:61:d1:88:36:
f0:98:f0:6b:7e:7d:7a:48:36:57:35:35:0a:a7:bb:
44:7f:96:ca:7d:62:88:ce:0e:8a:fc:09:5c:9c:d8:
97:e4:79:64:7b:a5:0f:e6:38:44:71:d3:7b:d7:ce:
99:bb:75:17:ff:02:8a:f2:8b:1b:74:3d:dc:f1:7f:
75:c3:42:3b:46:e9:75:cb:7f:7c:09:55:cf:e8:4a:
21:28:1b:4d:9c:47:8c:58:1c:43:dc:9a:b3:ac:4e:
96:df:f0:1e:75:6b:dd:4b:1c:51:21:f2:5e:aa:85:
eb:75:cc:20:d9:0c:2b:0d:c9:59:6d:0c:01:e2:3d:
8a:ec:69:c7:fc:5c:e4:17:22:84:d6:08:74:07:b4:
db:bd:4f:32:3c:89:19:e9:8d:97:c1:db:70:24:5d:
99:84:c7:33:bf:36:72:69:1e:6b:89:ef:06:df:5e:
ee:3b:90:e9:62:0b:0a:ec:7a:2b:d4:6e:9e:af:86:
36:a6:fa:b5:77:57:2b:d4:b0:24:fd:80:cb:b5:6b:
e2:77:bf:b8:2d:90:c9:29:a4:71:4d:1b:8d:4f:00:
84:e7:f6:ff:4a:68:d9:16:03:04:79:79:74:a8:87:
e6:f7:7f:a1:6c:27:86:9b:02:c2:57:e8:29:b4:d2:
82:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:46:6B:1E:DE:58:18:A5:C7:BA:2E:A0:D5:AF:6A:53:2B:FD:EC:99
X509v3 Authority Key Identifier:
keyid:A8:D5:34:BA:3C:B4:24:CF:5C:5E:3B:A2:54:BA:23:25:08:06:58:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qNU0ujy0JM9cXjuiVLojJQgGWLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/6EZrHt5YGKXHui6g1a9qUyv97Jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/73724a-1d0a-49c3-ac67-e77aed6f6e3a/1/qNU0ujy0JM9cXjuiVLojJQgGWLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.171.161.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:1a:0f:18:45:87:0e:d3:3b:3d:47:4d:e1:44:42:c0:08:d9:
7d:f0:a2:08:b7:ce:8d:8f:6e:dc:ca:f9:e9:af:e3:4b:af:4b:
3b:7d:ae:58:b0:ad:33:48:d8:40:b0:28:12:9b:a9:05:c3:c0:
ef:7f:36:75:c7:cf:d5:8c:b6:aa:7d:31:7b:df:04:65:ec:2f:
4e:16:64:3f:26:d1:46:b9:2f:ea:4a:79:84:fc:24:79:85:cd:
ab:38:97:a0:ec:f9:b8:e2:cc:b3:e1:91:bf:63:9d:1a:70:74:
17:75:43:d3:54:10:c9:0a:40:c4:87:a5:81:78:e1:6b:d3:f3:
04:19:bc:06:a1:ff:0f:63:84:b8:74:21:0f:1a:3e:f5:5c:2f:
2e:10:79:79:22:af:11:30:eb:7c:b3:b3:9b:93:06:98:41:a4:
c5:d3:eb:67:15:0a:73:5a:af:d4:5c:2f:c7:1c:10:d6:d2:c8:
17:b0:dc:49:8d:a9:4f:fd:41:de:96:79:8e:4d:f8:db:a3:7d:
6b:fb:5b:27:d6:35:fb:2e:2c:ba:af:de:c3:49:49:ed:55:e2:
99:f7:85:55:91:90:39:4f:ce:86:1d:30:fd:58:39:21:0f:19:
44:72:49:09:92:88:55:c1:f7:4a:51:a6:4f:94:ce:0f:11:36:
2f:a9:14:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:07:04 2025 by rpki-client