Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Vo1OLCJ3y3BZe3NMp3W8XBbxkfE.roa
File: Vo1OLCJ3y3BZe3NMp3W8XBbxkfE.roa (raw, json)
Hash identifier: ix4LZwqMxyAtM5Po/yeD2tECrYH5iMpZjaKZyi5QkkI=
Subject key identifier: 56:8D:4E:2C:22:77:CB:70:59:7B:73:4C:A7:75:BC:5C:16:F1:91:F1
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 0193540A6F57423C480AE88ACA4C48177070
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Vo1OLCJ3y3BZe3NMp3W8XBbxkfE.roa
Signing time: Fri 22 Nov 2024 13:23:10 +0000
ROA not before: Fri 22 Nov 2024 13:23:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215638
IP address blocks: 185.21.255.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:53:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:54:0a:6f:57:42:3c:48:0a:e8:8a:ca:4c:48:17:70:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Nov 22 13:23:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=568d4e2c2277cb70597b734ca775bc5c16f191f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:e3:8d:e5:90:08:ec:da:fa:0e:fc:65:22:91:
ac:35:c3:9f:03:93:15:44:90:31:4c:70:c6:a4:84:
05:25:8d:d7:99:81:a3:dd:04:a7:fa:0b:75:d7:80:
fd:4d:dd:89:0a:24:8f:4a:a3:01:5d:8a:2e:f9:f8:
28:c7:01:b0:52:58:a3:28:20:d1:f2:7b:ac:14:d7:
8f:36:7d:0c:bd:13:60:62:7b:43:81:50:e5:b0:e3:
c0:cc:9b:9c:1f:ab:42:98:05:91:62:48:49:41:f8:
e1:7f:40:df:2a:68:a6:47:bc:21:28:c6:05:1e:89:
14:36:a8:22:8d:3a:7d:0f:e0:51:be:31:73:6d:e5:
3f:21:11:c6:a0:09:12:a1:dd:a9:04:c4:b5:c9:d0:
a4:d5:30:47:60:dd:7d:dc:d0:4b:4b:7d:78:8f:b3:
f2:03:26:f7:fc:03:94:bd:2e:fa:07:ee:c4:7f:92:
2c:91:af:5a:9f:68:ae:8d:92:6b:c9:df:8c:a7:72:
3d:6d:8e:74:26:4f:2a:1e:fd:b3:7d:ef:38:81:87:
0c:f7:c1:e3:66:a9:ac:40:cb:24:ae:20:01:1c:b2:
e3:de:92:79:b2:92:9a:8c:49:e9:1f:db:0b:75:3b:
05:10:35:56:8f:f2:a4:03:84:d6:c9:85:2a:96:2f:
ef:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:8D:4E:2C:22:77:CB:70:59:7B:73:4C:A7:75:BC:5C:16:F1:91:F1
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/Vo1OLCJ3y3BZe3NMp3W8XBbxkfE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.255.0/24
Signature Algorithm: sha256WithRSAEncryption
26:05:ea:f9:65:33:8e:a9:73:4f:46:95:5a:43:58:18:c4:2b:
7d:18:da:96:bc:ed:90:03:7d:e7:c0:2a:e1:b5:47:19:f4:6f:
58:f4:65:89:5c:07:00:e4:a4:6f:6f:e9:cc:5a:66:55:ca:b0:
da:38:60:05:77:ce:9d:60:f1:28:c1:49:4f:93:d5:66:a0:b3:
41:73:45:68:fa:19:7c:d6:2b:c6:d3:be:08:57:a4:66:16:08:
c9:d4:29:1a:b4:a4:e3:8a:89:4c:9f:80:88:28:67:70:84:79:
fc:f0:37:c3:95:63:20:50:da:2b:4e:f7:59:a0:39:a6:95:14:
82:5b:e7:5a:85:cb:17:93:0f:db:ca:a5:81:46:f5:40:ef:0b:
d8:71:1b:b0:76:41:09:7d:ac:58:2b:ae:45:bd:22:07:29:4f:
d7:15:1f:ed:17:d0:58:1d:bb:41:c0:5a:4b:47:fe:f3:09:aa:
48:4f:c6:77:c8:42:ad:71:1a:44:48:2a:5f:c5:00:b7:bf:77:
8d:a1:10:81:bc:6e:e2:c3:53:46:38:4b:4b:7e:7c:22:2b:da:
67:2a:7d:2c:27:7c:f9:ec:87:00:3e:1c:1c:c6:08:ee:b6:94:
b7:be:0e:ad:a3:b3:30:e2:a2:32:4e:3b:39:b7:d6:ab:37:05:
82:51:92:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:37 2025 by rpki-client