Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/fkRQ9NJ0jiLpyIAaKHTgrMzkK6g.roa
File: fkRQ9NJ0jiLpyIAaKHTgrMzkK6g.roa (raw, json)
Hash identifier: 8MjmxBUlVy1pmUC2RC4GSsuKvYQZlbqOexvPamX720s=
Subject key identifier: 7E:44:50:F4:D2:74:8E:22:E9:C8:80:1A:28:74:E0:AC:CC:E4:2B:A8
Certificate issuer: /CN=bd19d4535c7e62b921e859e6557b821f278e716a
Certificate serial: 018CC4930D25649F2D17B030D6EF2A36E5B4
Authority key identifier: BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/fkRQ9NJ0jiLpyIAaKHTgrMzkK6g.roa
Signing time: Mon 01 Jan 2024 10:30:20 +0000
ROA not before: Mon 01 Jan 2024 10:30:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 185.23.6.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:49:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:0d:25:64:9f:2d:17:b0:30:d6:ef:2a:36:e5:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd19d4535c7e62b921e859e6557b821f278e716a
Validity
Not Before: Jan 1 10:30:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7e4450f4d2748e22e9c8801a2874e0accce42ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7a:2c:66:8f:75:b1:74:d1:b2:30:5f:d9:9b:
e1:2a:97:8b:13:0b:da:9e:8b:f2:45:76:b6:4c:31:
da:78:09:f8:1d:cc:86:6e:1b:64:e3:6d:88:9e:ff:
c3:1c:93:4a:2e:c9:34:f1:d9:0c:da:24:3b:0f:2c:
67:91:e2:14:3b:52:e1:c7:11:8d:eb:34:ce:50:a5:
cc:b4:e6:64:18:31:3b:79:12:14:6f:09:11:94:ee:
4a:f4:5b:a5:04:c1:4d:62:8f:50:00:b9:c4:73:fc:
a9:8f:6b:d4:99:4c:ec:96:f5:12:fa:0e:5e:a0:b3:
2d:7c:91:11:04:97:7d:4e:4f:df:f0:b1:81:8a:03:
21:5f:9a:57:14:45:22:a0:af:ed:59:2d:f8:46:aa:
e8:cc:43:76:5e:7b:08:6f:62:48:17:76:9e:53:be:
07:1a:4c:8f:e0:82:45:b8:0f:f8:31:4a:82:8f:0f:
08:fb:b3:7f:82:d1:c0:cb:9b:42:6c:27:d2:a5:99:
c9:4b:8d:58:e4:16:a7:be:92:60:0b:34:3d:2d:41:
16:77:c7:c2:d9:99:89:e0:04:22:bc:4a:60:15:f2:
c4:58:8b:6e:ed:9d:5e:26:7b:ad:1d:4c:56:78:13:
50:ac:5a:e0:a1:48:2f:32:d9:f8:55:4d:34:14:40:
fb:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:44:50:F4:D2:74:8E:22:E9:C8:80:1A:28:74:E0:AC:CC:E4:2B:A8
X509v3 Authority Key Identifier:
keyid:BD:19:D4:53:5C:7E:62:B9:21:E8:59:E6:55:7B:82:1F:27:8E:71:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/fkRQ9NJ0jiLpyIAaKHTgrMzkK6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/2599f9-6f76-4db6-bca7-c1331f49fc09/1/vRnUU1x-Yrkh6FnmVXuCHyeOcWo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.23.6.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:5b:b4:a0:77:e8:02:f2:d2:5f:26:f5:9c:aa:1f:52:7b:c2:
b3:36:5f:d0:91:9f:f3:91:de:e5:4d:6c:c7:58:00:ac:f5:b4:
2c:c7:c6:5a:51:1d:6b:7c:c2:4a:ae:2e:da:98:62:46:1b:a0:
8c:e0:3c:b4:e8:33:4e:89:34:30:23:81:5b:bb:47:7c:5b:7f:
fa:ec:bf:d1:41:ec:6c:1d:c5:4e:81:a6:56:dd:d8:e1:81:23:
57:a3:8e:fe:0c:db:63:b3:c2:42:5c:29:58:07:40:7a:35:dd:
56:ca:4b:b7:f3:05:89:50:e9:e9:91:11:d0:5f:e1:c9:03:b1:
d5:79:0e:1a:97:92:e4:0b:6b:e4:a2:10:35:d9:5c:93:f2:64:
56:51:84:dd:3b:07:5f:83:1f:2b:23:12:17:e9:30:64:3b:23:
ae:08:f6:30:aa:7e:4d:96:8f:f3:34:bf:c9:4c:bb:7c:0d:95:
dd:ed:fe:a1:37:78:07:3b:5f:20:5e:80:35:cd:2c:2d:d7:9a:
50:f7:b1:45:7a:66:67:c8:8a:a8:38:47:7c:6e:43:a9:21:40:
13:7a:df:c1:d9:48:48:f2:95:af:d6:6c:27:1b:2f:0a:1d:81:
92:61:79:96:8c:f0:22:29:e8:88:79:1f:52:47:ff:43:45:c4:
03:ab:09:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:19 2025 by rpki-client