Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/N6p1LEJJzSqqn9mvhUp8alKX2Sg.roa
File: N6p1LEJJzSqqn9mvhUp8alKX2Sg.roa (raw, json)
Hash identifier: 6DPFgC/VRTUKdx0KJUnVpdXrMNgtZzAMUrtjXsDarDA=
Subject key identifier: 37:AA:75:2C:42:49:CD:2A:AA:9F:D9:AF:85:4A:7C:6A:52:97:D9:28
Certificate issuer: /CN=e1477072b91af5c3f3bfe69743243e7cda3ae879
Certificate serial: 01902B595ABF21D83973FACF6674374AF071
Authority key identifier: E1:47:70:72:B9:1A:F5:C3:F3:BF:E6:97:43:24:3E:7C:DA:3A:E8:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4Udwcrka9cPzv-aXQyQ-fNo66Hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/N6p1LEJJzSqqn9mvhUp8alKX2Sg.roa
Signing time: Tue 18 Jun 2024 12:36:34 +0000
ROA not before: Tue 18 Jun 2024 12:36:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9009
IP address blocks: 185.145.235.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 02 Jul 2024 17:47:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:2b:59:5a:bf:21:d8:39:73:fa:cf:66:74:37:4a:f0:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e1477072b91af5c3f3bfe69743243e7cda3ae879
Validity
Not Before: Jun 18 12:36:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=37aa752c4249cd2aaa9fd9af854a7c6a5297d928
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:c8:09:a1:3e:20:eb:a2:2c:51:27:0f:fa:88:
f9:e5:42:21:5d:66:81:25:a3:58:33:42:9f:3a:b4:
75:c6:cf:d8:58:38:5f:b4:10:38:b8:25:cb:bb:c8:
a0:53:f7:8d:ac:ed:7d:fc:ba:2b:af:71:e5:f1:8b:
c0:35:cf:ab:ff:4c:ad:b2:dc:a1:9a:10:34:9a:71:
f7:bc:42:1f:1b:e9:7c:a3:30:ad:ae:36:4a:7d:b1:
f5:9b:80:64:20:6c:b1:09:01:93:fb:29:19:4b:11:
7c:86:c8:65:e4:5f:c9:f3:34:5b:e8:4f:58:93:c6:
53:8b:2b:d8:9b:6b:c8:8d:bf:3c:4d:0f:a7:b9:99:
ba:29:13:b7:ca:94:4b:7f:95:dc:12:01:39:3a:16:
fe:83:8e:36:8c:ef:68:23:f0:65:e7:c4:8a:80:9a:
bb:ad:f8:c8:d3:ab:67:f1:22:d1:36:68:48:4b:8e:
ae:b1:b2:1e:bd:35:e9:b6:2d:ec:30:a4:e9:42:f5:
64:78:64:3c:60:0a:92:af:de:85:6c:df:2f:8f:32:
36:18:00:d6:2a:90:42:3d:93:6f:71:70:bc:cb:62:
e4:68:2a:d5:32:cd:0f:20:a8:67:3d:f3:a6:37:cd:
ed:27:6d:f5:17:fc:00:ff:3b:c7:11:4b:fa:fb:2a:
44:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:AA:75:2C:42:49:CD:2A:AA:9F:D9:AF:85:4A:7C:6A:52:97:D9:28
X509v3 Authority Key Identifier:
keyid:E1:47:70:72:B9:1A:F5:C3:F3:BF:E6:97:43:24:3E:7C:DA:3A:E8:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4Udwcrka9cPzv-aXQyQ-fNo66Hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/N6p1LEJJzSqqn9mvhUp8alKX2Sg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/7494bf-8acd-4e43-86ce-e7c8cf3af5de/1/4Udwcrka9cPzv-aXQyQ-fNo66Hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.235.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:3f:11:8d:f5:c1:db:25:1b:89:cc:73:f7:e2:95:a2:56:52:
70:93:12:28:0a:c6:c1:1f:4b:08:a1:37:21:fd:c7:41:28:2d:
75:b6:a3:00:80:db:5f:6a:c1:ba:67:9d:a7:a0:6d:a9:53:59:
31:b6:6f:73:c4:1b:78:61:6d:f6:61:9c:48:bc:97:e1:ed:11:
0c:22:6d:3a:78:d6:9b:e4:a3:1c:50:b5:e8:b9:51:af:69:ab:
01:11:df:6a:2f:00:55:23:96:74:53:f6:4d:65:70:80:9e:85:
c7:69:aa:f9:40:96:ba:48:10:2d:79:6b:da:62:2b:72:37:fa:
53:0c:d7:86:14:3a:53:13:a2:d9:11:fa:62:95:28:48:7c:7b:
02:9f:27:7a:fa:f8:31:18:a0:18:ff:c2:45:ce:57:a9:5f:67:
64:f5:91:6a:7b:49:f5:5b:17:f3:94:03:95:47:d2:a8:d3:09:
b8:81:fc:a6:e3:2c:44:f2:f6:1b:ee:47:79:2c:8e:32:cf:9f:
32:1e:42:8d:9a:76:aa:96:59:55:9e:91:df:49:89:5c:0f:ba:
00:38:ae:cf:7f:88:ee:93:06:6d:2e:4e:44:aa:cf:8b:36:4b:
e2:22:ce:eb:d5:bd:25:49:b8:c7:3a:54:fe:e8:26:04:fd:89:
9b:e7:bf:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:54:06 2025 by rpki-client