Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/taWovHFkhOp18TnNaQBoWxNvx2A.roa
File: taWovHFkhOp18TnNaQBoWxNvx2A.roa (raw, json)
Hash identifier: Fl6rFLjafY4S6gKXHIMqb3V74LTXKdQ6rPN1y3DksbQ=
Subject key identifier: B5:A5:A8:BC:71:64:84:EA:75:F1:39:CD:69:00:68:5B:13:6F:C7:60
Certificate issuer: /CN=73c69d04583500c5ef81136831237593e0bb86ce
Certificate serial: 018CC3488CA2C10D39079C91AA362597D16C
Authority key identifier: 73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/taWovHFkhOp18TnNaQBoWxNvx2A.roa
Signing time: Mon 01 Jan 2024 04:29:20 +0000
ROA not before: Mon 01 Jan 2024 04:29:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24961
IP address blocks: 185.244.25.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 04 Mar 2024 16:17:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:48:8c:a2:c1:0d:39:07:9c:91:aa:36:25:97:d1:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73c69d04583500c5ef81136831237593e0bb86ce
Validity
Not Before: Jan 1 04:29:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b5a5a8bc716484ea75f139cd6900685b136fc760
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:51:fc:89:08:57:7f:79:3b:fe:20:aa:a2:4e:
d3:f2:36:aa:f4:fb:d2:6a:d0:0a:67:20:de:a5:2e:
10:36:6f:2c:0e:59:21:a9:ea:8f:a4:b6:16:92:c4:
31:8f:27:53:c2:01:bc:fa:09:2d:eb:ce:69:7f:6b:
e9:d3:69:bb:cd:2b:3c:88:0a:3e:99:89:93:d9:de:
56:0c:cd:a9:0e:62:32:13:d5:15:cf:f0:0e:ad:a0:
7e:2b:04:7f:39:40:3b:aa:1f:fc:c6:3e:8d:db:54:
3d:32:92:92:c7:84:be:43:a0:26:de:68:bf:b4:ff:
e3:1e:cc:66:56:33:28:ff:88:f2:3f:d6:95:93:c4:
43:92:9d:15:37:b8:fb:43:c5:4a:74:1f:e3:ec:08:
6d:51:05:79:3d:b5:ad:57:07:7f:b2:ee:48:3c:3e:
3d:90:84:65:36:2b:25:9c:33:27:4e:0f:ca:41:9b:
bf:8e:a7:3e:a5:80:82:da:69:c0:d6:d3:fc:9a:8f:
54:65:e9:f2:04:fb:9f:9a:b8:2d:4b:1a:89:bb:e1:
8f:e0:47:58:5d:53:98:7b:d3:a5:6c:08:6e:b6:e9:
29:d3:f4:59:48:bb:c4:58:a4:35:79:45:d5:12:52:
b7:d7:94:55:be:8f:34:08:25:9e:d4:71:09:ef:b9:
7c:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:A5:A8:BC:71:64:84:EA:75:F1:39:CD:69:00:68:5B:13:6F:C7:60
X509v3 Authority Key Identifier:
keyid:73:C6:9D:04:58:35:00:C5:EF:81:13:68:31:23:75:93:E0:BB:86:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8adBFg1AMXvgRNoMSN1k-C7hs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/taWovHFkhOp18TnNaQBoWxNvx2A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6f6ce2-e6ee-4e2a-905d-f9cb0a7b206c/1/c8adBFg1AMXvgRNoMSN1k-C7hs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.244.25.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:90:55:ea:1f:4f:bc:fc:80:2d:4a:56:92:b3:44:fb:bb:37:
50:2b:fc:c2:2b:7d:d8:9e:8b:ef:b4:58:6a:6e:ee:f9:06:a2:
66:20:5c:e0:a2:24:29:61:3a:fc:54:f2:b4:b2:26:b2:c8:8f:
00:11:9f:f1:cb:57:0e:cd:0a:fb:2e:3d:b4:a5:85:e5:0c:4a:
9b:64:0b:a2:0e:ea:21:80:f7:c4:2b:89:9d:13:b0:d3:63:40:
38:7f:b7:bc:45:f0:d3:0d:80:fb:90:7b:17:52:34:3d:2f:da:
65:85:cf:58:85:29:25:d4:8a:38:31:83:a6:6a:e6:3e:22:66:
b7:c0:a6:3c:1f:f8:62:c7:0e:16:54:84:75:19:73:cd:da:13:
f6:25:03:20:ae:bd:5a:12:fc:2a:43:12:d1:57:00:92:5e:b4:
d7:3d:4e:f5:c2:5c:15:4d:5b:3d:b8:2d:1d:10:13:b5:e1:75:
2a:75:f1:ab:d8:30:2b:b7:5f:f0:a5:53:85:aa:5f:8b:59:2b:
69:90:70:8f:35:2f:aa:a0:dc:c2:d9:1c:62:82:84:8e:b9:fb:
94:46:82:f7:6e:56:5b:bf:fe:9f:fa:1a:fd:dd:ba:65:ba:47:
f5:2a:99:49:30:69:b7:f9:21:c5:ee:7c:93:21:6f:62:4e:cd:
a2:11:af:54
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzDSIyiwQ05B5yRqjYll9FsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDczYzY5ZDA0NTgzNTAwYzVlZjgxMTM2ODMxMjM3NTkzZTBi
Yjg2Y2UwHhcNMjQwMTAxMDQyOTIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiNWE1YThiYzcxNjQ4NGVhNzVmMTM5Y2Q2OTAwNjg1YjEzNmZjNzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhVH8iQhXf3k7/iCqok7T8jaq9PvS
atAKZyDepS4QNm8sDlkhqeqPpLYWksQxjydTwgG8+gkt685pf2vp02m7zSs8iAo+
mYmT2d5WDM2pDmIyE9UVz/AOraB+KwR/OUA7qh/8xj6N21Q9MpKSx4S+Q6Am3mi/
tP/jHsxmVjMo/4jyP9aVk8RDkp0VN7j7Q8VKdB/j7AhtUQV5PbWtVwd/su5IPD49
kIRlNislnDMnTg/KQZu/jqc+pYCC2mnA1tP8mo9UZenyBPufmrgtSxqJu+GP4EdY
XVOYe9OlbAhutukp0/RZSLvEWKQ1eUXVElK315RVvo80CCWe1HEJ77l8UwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLWlqLxxZITqdfE5zWkAaFsTb8dgMB8GA1UdIwQY
MBaAFHPGnQRYNQDF74ETaDEjdZPgu4bOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQt
ZjljYjBhN2IyMDZjLzEvdGFXb3ZIRmtoT3AxOFRuTmFRQm9XeE52eDJBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83OC82ZjZjZTItZTZlZS00ZTJhLTkwNWQtZjljYjBhN2IyMDZj
LzEvYzhhZEJGZzFBTVh2Z1JOb01TTjFrLUM3aHM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAufQZMA0G
CSqGSIb3DQEBCwUAA4IBAQA/kFXqH0+8/IAtSlaSs0T7uzdQK/zCK33YnovvtFhq
bu75BqJmIFzgoiQpYTr8VPK0siayyI8AEZ/xy1cOzQr7Lj20pYXlDEqbZAuiDuoh
gPfEK4mdE7DTY0A4f7e8RfDTDYD7kHsXUjQ9L9plhc9YhSkl1Io4MYOmauY+Ima3
wKY8H/hixw4WVIR1GXPN2hP2JQMgrr1aEvwqQxLRVwCSXrTXPU71wlwVTVs9uC0d
EBO14XUqdfGr2DArt1/wpVOFql+LWStpkHCPNS+qoNzC2RxigoSOufuURoL3blZb
v/6f+hr93bplukf1KplJMGm3+SHF7nyTIW9iTs2iEa9U
-----END CERTIFICATE-----
Generated at Mon Mar 4 19:43:29 2024 by rpki-client on console-fra.rpki-client.org