Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/cb1bc5-2c15-42f7-9ef2-5c99b683db0d/1/OFoiOAnOcEXf02XEEjYaSjTYkJg.roa
File: OFoiOAnOcEXf02XEEjYaSjTYkJg.roa (raw, json)
Hash identifier: PwWoe7LnR+GfVZTz1Thxo86xrrnDtdXmquJaeJF5G/0=
Subject key identifier: 38:5A:22:38:09:CE:70:45:DF:D3:65:C4:12:36:1A:4A:34:D8:90:98
Certificate issuer: /CN=6c844bd62cbfb5adccfb4dc16eca23cb5c9ddeb6
Certificate serial: 01942C795E99590BBDF2ABFEA5EFA05E161B
Authority key identifier: 6C:84:4B:D6:2C:BF:B5:AD:CC:FB:4D:C1:6E:CA:23:CB:5C:9D:DE:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIRL1iy_ta3M-03Bbsojy1yd3rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/cb1bc5-2c15-42f7-9ef2-5c99b683db0d/1/OFoiOAnOcEXf02XEEjYaSjTYkJg.roa
Signing time: Fri 03 Jan 2025 14:02:19 +0000
ROA not before: Fri 03 Jan 2025 14:02:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8075
IP address blocks: 93.174.248.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 03 Jan 2025 14:41:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:2c:79:5e:99:59:0b:bd:f2:ab:fe:a5:ef:a0:5e:16:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c844bd62cbfb5adccfb4dc16eca23cb5c9ddeb6
Validity
Not Before: Jan 3 14:02:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=385a223809ce7045dfd365c412361a4a34d89098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a8:1d:f1:d9:b7:69:44:d3:7f:0a:3f:ac:5d:
47:9c:ac:18:f8:30:3d:a4:7e:62:e3:85:07:7c:c9:
4f:6c:1f:a6:87:90:c6:3c:d4:65:d7:7c:66:a9:71:
b7:cb:7b:1e:36:44:88:f9:b1:4a:e6:2f:65:69:94:
60:d8:cf:01:56:8f:ff:cd:22:f8:6d:d6:05:86:f3:
74:f2:3c:14:32:a2:b2:3e:36:69:c0:02:9f:c5:1a:
10:00:ff:d2:5f:51:b5:f6:17:d5:73:e3:7b:e6:fd:
20:46:55:52:e4:bb:14:eb:df:c1:57:60:37:b3:c0:
0d:60:10:5b:44:9d:3c:6d:d7:51:05:2a:25:4d:1e:
5d:c9:22:41:77:c6:39:b8:31:32:d2:18:5e:d7:29:
47:50:d7:59:00:94:15:86:0d:65:44:6b:77:e0:57:
13:09:85:88:cd:e9:e6:96:d6:29:02:6b:96:95:cf:
cd:f8:7e:c2:82:7a:ff:f1:dd:83:13:47:44:e4:94:
c7:c8:a3:68:61:55:1f:84:0e:bf:94:e4:a7:b0:2a:
b9:51:24:d7:9d:c7:45:72:73:f1:66:01:10:84:82:
a7:23:18:8f:20:ab:6c:1f:45:3a:aa:4d:2e:44:91:
31:43:0e:20:b8:1a:f8:23:4a:80:80:cc:3a:6d:b9:
9f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:5A:22:38:09:CE:70:45:DF:D3:65:C4:12:36:1A:4A:34:D8:90:98
X509v3 Authority Key Identifier:
keyid:6C:84:4B:D6:2C:BF:B5:AD:CC:FB:4D:C1:6E:CA:23:CB:5C:9D:DE:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIRL1iy_ta3M-03Bbsojy1yd3rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/cb1bc5-2c15-42f7-9ef2-5c99b683db0d/1/OFoiOAnOcEXf02XEEjYaSjTYkJg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/cb1bc5-2c15-42f7-9ef2-5c99b683db0d/1/bIRL1iy_ta3M-03Bbsojy1yd3rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.174.248.0/21
Signature Algorithm: sha256WithRSAEncryption
42:80:48:3b:7b:0e:b1:bc:59:66:c4:f6:44:7a:88:87:6e:57:
68:a8:15:8d:06:86:ae:ba:ae:10:4c:4c:72:81:1a:7b:8d:a9:
79:b2:c8:dd:7c:38:05:d1:92:5c:95:25:36:52:60:8e:51:f1:
08:47:3f:cf:73:59:29:35:d5:29:f0:b0:61:05:1d:b0:d0:b3:
2f:8a:91:b5:9d:a5:e4:63:e7:97:9c:de:b5:12:29:d5:1d:63:
28:a0:e3:3f:77:41:c8:23:44:a2:f8:7b:90:3f:35:e1:78:19:
06:79:0e:82:fd:79:55:d5:b5:b6:8a:8a:fe:14:9c:30:86:9e:
c9:1f:8a:19:80:92:23:ff:f6:1b:b4:75:f4:60:a2:ed:bc:c9:
85:96:07:f9:24:50:02:81:e3:45:88:a7:79:ba:0a:c1:ae:2d:
a7:6f:34:1e:ef:53:eb:0d:42:86:fa:72:36:5c:9a:2e:34:fc:
0e:1e:15:46:15:2f:7d:a6:01:ff:e7:92:45:ff:a7:b8:cf:2f:
6d:7a:92:13:8c:bc:af:81:63:df:2c:75:75:fe:6b:29:05:c6:
ec:8e:a0:34:df:ac:f3:41:bc:69:6c:73:2f:7e:20:56:03:c4:
f0:df:17:42:27:4d:be:d2:17:00:f3:6c:ac:77:e4:ed:ce:a2:
b6:46:b8:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:15:28 2025 by rpki-client