Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/4xA73Rd_T0BJfric0zz6SLWolKA.roa
File: 4xA73Rd_T0BJfric0zz6SLWolKA.roa (raw, json)
Hash identifier: cWiH5gZl0vEnNE9U5QVE2Uc6+AIDNufPH3stVoBx92U=
Subject key identifier: E3:10:3B:DD:17:7F:4F:40:49:7E:B8:9C:D3:3C:FA:48:B5:A8:94:A0
Certificate issuer: /CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Certificate serial: 01942747A0EFDF73A0F6C8EC898BC369148C
Authority key identifier: FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/4xA73Rd_T0BJfric0zz6SLWolKA.roa
Signing time: Thu 02 Jan 2025 13:49:52 +0000
ROA not before: Thu 02 Jan 2025 13:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203363
IP address blocks: 178.239.174.0/24 maxlen: 24
193.176.28.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 24 Feb 2025 04:38:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:a0:ef:df:73:a0:f6:c8:ec:89:8b:c3:69:14:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fd37cc8f16b3c6cbd3346aa3ed61771f3e83ac97
Validity
Not Before: Jan 2 13:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e3103bdd177f4f40497eb89cd33cfa48b5a894a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:6f:93:bd:15:89:92:19:b0:4d:21:2c:05:af:
21:dd:20:29:5f:db:c5:e3:3d:70:cc:a7:c1:25:58:
d5:9c:14:a4:46:33:3b:32:6c:b0:50:c5:a2:09:19:
bb:a1:b9:2e:07:c9:bc:a9:90:76:df:fd:52:17:9d:
ae:aa:6f:9c:04:b5:17:17:47:02:5b:f3:c1:8c:54:
fc:ab:e4:c1:f1:fa:21:78:6f:83:46:15:97:0c:a7:
62:f3:8a:e2:06:b9:24:69:74:dc:43:16:53:d5:af:
9a:60:01:e5:46:e7:77:58:4d:04:a5:25:47:c2:46:
9b:63:d2:e0:a1:ad:87:44:02:81:b6:1f:23:ab:45:
76:63:99:68:c5:dc:63:c8:ca:b4:e8:16:4c:fb:89:
ac:2f:3a:b9:c4:1b:70:84:7b:6b:0b:37:64:a9:4b:
06:0e:ff:a9:94:d7:87:c7:6a:b0:ed:07:0c:cf:9e:
16:7f:93:9b:13:1e:bc:3c:f9:6c:00:21:9f:3e:5f:
0f:8c:b6:b7:2d:ea:1b:cf:16:1e:71:ef:c2:80:74:
eb:e5:8c:8e:8b:ef:35:a7:26:3a:95:46:46:a5:0b:
ba:4b:aa:6d:13:dd:87:f6:6e:4f:1f:a1:f6:0a:d8:
4e:e9:be:72:69:9e:04:c5:b6:31:e0:48:c7:37:83:
14:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:10:3B:DD:17:7F:4F:40:49:7E:B8:9C:D3:3C:FA:48:B5:A8:94:A0
X509v3 Authority Key Identifier:
keyid:FD:37:CC:8F:16:B3:C6:CB:D3:34:6A:A3:ED:61:77:1F:3E:83:AC:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_TfMjxazxsvTNGqj7WF3Hz6DrJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/4xA73Rd_T0BJfric0zz6SLWolKA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05e17f-d31f-431f-a8bc-7e05ab41b6e4/1/_TfMjxazxsvTNGqj7WF3Hz6DrJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.239.174.0/24
193.176.28.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:f9:09:10:4a:6f:bc:53:45:69:10:19:d4:82:75:05:c1:ad:
fa:03:01:a2:37:ba:4b:ff:69:3b:d6:ba:5b:ad:fb:ec:68:0a:
0b:37:7e:76:2a:4c:81:1a:16:95:4d:29:a3:b9:cc:df:31:26:
5a:05:3a:47:7b:5a:a6:18:7b:8a:d8:20:48:90:b3:38:9f:95:
fd:a4:98:96:53:ad:64:56:8f:f9:18:81:74:59:24:c2:65:87:
ab:51:1a:17:0d:12:80:a7:95:1c:c4:1a:6d:d8:74:2a:4e:cc:
b0:fb:71:20:34:86:ca:8a:30:69:d9:a6:46:72:4d:fd:2c:39:
51:67:21:90:14:5c:e3:1c:c2:bd:4b:90:b7:8b:eb:9d:9e:da:
c6:de:ff:68:a0:b0:4c:9e:9d:03:52:8c:79:21:05:cc:be:0d:
d9:0d:c6:9f:b1:1e:d1:ac:04:9f:f5:03:da:0e:6b:87:c4:c6:
04:bf:04:1e:08:8d:29:7f:64:34:82:b4:c4:34:50:d5:75:b9:
d8:3e:18:28:04:ad:4f:77:7b:5d:8e:e3:13:ab:17:7e:93:f8:
07:f3:40:6f:56:06:f1:da:76:8c:ea:f8:9c:a0:37:80:34:1e:
c4:ad:b6:84:7d:4f:00:b4:82:6e:11:b8:80:4b:ae:17:f1:c2:
81:e3:f0:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 01:37:50 2025 by rpki-client