Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/EEPwGNzhEMLpvqTDesmeQw-5V1Y.roa
File: EEPwGNzhEMLpvqTDesmeQw-5V1Y.roa (raw, json)
Hash identifier: 7bD4AHU6C1V86DoqA/GXyGQMGkuFBhFb0M9ZyCFCfrw=
Subject key identifier: 10:43:F0:18:DC:E1:10:C2:E9:BE:A4:C3:7A:C9:9E:43:0F:B9:57:56
Certificate issuer: /CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Certificate serial: 019681687CC146484B5F387E3E07E43955B0
Authority key identifier: 4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/EEPwGNzhEMLpvqTDesmeQw-5V1Y.roa
Signing time: Tue 29 Apr 2025 11:57:10 +0000
ROA not before: Tue 29 Apr 2025 11:57:10 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212238
IP address blocks: 185.244.104.0/24 maxlen: 24
2a13:b4c1::/32 maxlen: 32
Validation: Failed, certificate revoked on Thu 08 May 2025 20:33:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:68:7c:c1:46:48:4b:5f:38:7e:3e:07:e4:39:55:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f14112d05e9d876149d2778d48edaaa324db0a5
Validity
Not Before: Apr 29 11:57:10 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1043f018dce110c2e9bea4c37ac99e430fb95756
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5c:45:4c:33:39:d3:d1:a2:6b:4d:31:c4:79:
7e:65:a2:50:d5:3e:ca:92:da:17:68:c4:7b:d2:ca:
9f:5b:31:92:bd:ba:88:21:2d:45:9b:22:e0:32:c3:
f7:04:7e:15:20:89:9e:5f:7a:bc:4a:14:ff:33:01:
27:6c:65:1c:24:07:43:81:43:fe:76:f4:c8:9b:45:
13:f2:f1:b6:00:9b:e2:68:54:90:e4:d3:68:8d:e7:
37:de:a8:4d:1e:a5:67:df:b1:d7:10:c9:27:84:81:
1d:db:e0:08:57:38:27:b1:b0:7f:27:40:38:dc:1f:
59:a9:e7:31:9c:84:da:64:81:95:86:0e:b0:42:01:
ff:92:c4:0a:98:19:10:7a:81:36:3c:93:36:e0:81:
ab:90:ff:10:43:0d:3e:94:ef:46:02:41:1b:39:87:
7d:cd:6d:09:9f:d4:d6:a8:7c:91:57:88:eb:c6:a8:
e1:ce:b3:90:2f:18:ba:f2:63:21:f5:dc:d0:ec:6b:
ed:0a:c7:02:14:e4:00:e0:e0:08:4e:30:f2:15:66:
f6:52:f9:fc:bb:e0:67:f9:31:cc:1a:cb:cf:45:88:
fd:30:cc:cd:e0:a4:b1:84:0e:09:92:1b:87:e1:d1:
a8:c5:e0:42:de:a7:b8:d9:e9:c2:3e:1d:f9:c6:00:
6d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:43:F0:18:DC:E1:10:C2:E9:BE:A4:C3:7A:C9:9E:43:0F:B9:57:56
X509v3 Authority Key Identifier:
keyid:4F:14:11:2D:05:E9:D8:76:14:9D:27:78:D4:8E:DA:AA:32:4D:B0:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TxQRLQXp2HYUnSd41I7aqjJNsKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/EEPwGNzhEMLpvqTDesmeQw-5V1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/3caa51-7a21-499d-a545-bafbdfc8132a/1/TxQRLQXp2HYUnSd41I7aqjJNsKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.104.0/24
IPv6:
2a13:b4c1::/32
Signature Algorithm: sha256WithRSAEncryption
34:78:ce:e6:27:7a:22:9d:08:ce:77:e0:2d:93:2b:d3:53:04:
2c:bd:81:17:5c:67:f3:47:56:d4:7b:cd:86:1f:2c:53:3a:5d:
1f:06:24:8c:b9:a6:87:1e:7c:31:3b:50:bd:44:68:31:3e:97:
f4:ee:95:4b:df:be:b2:88:7c:78:f2:dd:9c:b1:a2:22:88:70:
16:fe:57:f4:af:e1:76:0e:a5:21:b2:52:44:fc:2d:3f:2b:92:
c9:7b:a0:87:14:b2:7a:5b:d4:3e:11:01:73:78:ca:58:3d:a3:
4c:2b:35:cd:3d:af:4a:03:d9:ad:0e:32:9d:b1:db:1a:8f:6b:
a1:c8:e3:72:e9:51:f1:70:9b:de:16:44:19:5c:3b:4c:a4:e8:
cb:ca:14:34:2d:91:3f:2c:3a:b1:e7:25:ae:ff:e1:5c:75:33:
26:de:57:f1:d8:38:13:88:9a:b0:d0:39:19:c3:35:cb:7c:6c:
37:49:c2:b9:67:f6:04:2c:c5:3e:b5:a2:7c:48:9d:53:05:c8:
45:46:f8:9b:b0:b8:7d:f2:dc:72:b2:e3:32:7c:f7:7f:f8:84:
0a:26:1f:99:19:50:90:1f:df:8f:54:3f:cb:df:3b:4e:d4:f5:
08:21:1e:81:d1:bc:0b:8e:d7:f3:76:50:16:23:a2:83:8f:47:
9f:ea:f3:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 20:45:53 2025 by rpki-client