Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/j5811T1dc0x1VkrCtr4Vlg9IKT0.roa
File: j5811T1dc0x1VkrCtr4Vlg9IKT0.roa (raw, json)
Hash identifier: aew9si6qq/LZPESYTw3GRNyr6R7QqvgVVgLwQKwvT+g=
Subject key identifier: 8F:9F:35:D5:3D:5D:73:4C:75:56:4A:C2:B6:BE:15:96:0F:48:29:3D
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0193E3C32DB2EE5529C9629FCFE1CE670E82
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/j5811T1dc0x1VkrCtr4Vlg9IKT0.roa
Signing time: Fri 20 Dec 2024 11:10:39 +0000
ROA not before: Fri 20 Dec 2024 11:10:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49418
IP address blocks: 185.218.137.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 17:50:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e3:c3:2d:b2:ee:55:29:c9:62:9f:cf:e1:ce:67:0e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 20 11:10:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8f9f35d53d5d734c75564ac2b6be15960f48293d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:35:20:b6:d7:0f:e6:74:19:5d:16:1e:ca:83:
99:34:41:6c:a2:7e:01:ea:d9:a5:e9:13:4d:f8:c8:
50:79:e9:42:dc:7c:e3:19:31:cc:f8:a4:93:e0:6c:
31:46:74:c1:6c:6d:d0:54:40:5b:75:a3:d1:a8:63:
77:44:6e:96:d1:a2:fe:1e:05:d8:91:9e:10:5d:31:
e1:b1:0b:ca:59:4f:48:5d:2f:66:a9:da:7d:c6:68:
48:f5:ef:4c:e1:f7:e9:62:07:9d:b7:a9:0e:9f:4f:
a3:d6:20:6e:45:b8:a6:bd:44:b2:55:dc:37:25:e6:
92:17:de:95:6e:31:04:a1:d9:60:11:87:84:4d:4f:
20:79:78:74:b3:5b:8d:98:4d:bc:0c:bf:24:b9:a7:
cc:b6:f3:92:54:71:c5:c0:89:d6:2b:b9:8b:f4:3c:
2d:e1:84:ba:e5:36:0e:84:aa:6e:0a:76:94:aa:08:
b0:2b:c4:f9:d5:16:1e:a1:cf:8b:cc:1a:76:39:f5:
f3:a1:2c:b8:5e:c6:2a:16:37:08:8e:d8:f1:93:36:
0d:13:fd:24:c7:e7:a2:d1:9a:23:eb:5c:79:c0:ce:
95:3d:3d:c1:aa:76:e7:bd:eb:2c:8c:6b:08:80:ac:
4c:33:e1:46:57:9b:3d:fa:77:ff:c0:cb:7b:46:a5:
6d:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:9F:35:D5:3D:5D:73:4C:75:56:4A:C2:B6:BE:15:96:0F:48:29:3D
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/j5811T1dc0x1VkrCtr4Vlg9IKT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.137.0/24
Signature Algorithm: sha256WithRSAEncryption
72:8d:92:8e:04:48:f6:9e:ad:a2:78:d7:5e:4e:1b:67:3f:2f:
7a:6d:6f:9d:6f:77:97:9e:a8:91:0f:ff:3a:80:7b:ee:4a:59:
dc:63:42:1f:81:09:ea:c2:ab:f1:cd:d8:73:fc:12:15:5b:b3:
fc:2e:bc:45:2f:16:be:54:7e:37:10:4f:32:de:76:66:94:aa:
98:7e:d7:5b:77:f5:7d:e7:ea:17:09:d3:63:1c:fe:b7:8f:8c:
6e:37:d2:7c:f1:34:d6:39:1f:ac:46:42:bc:1e:3d:1b:cc:34:
d0:6a:01:9d:59:04:76:d2:05:95:55:ef:39:c7:82:08:55:0b:
f5:08:53:87:66:41:67:2e:d6:b3:91:66:b0:40:ad:f3:f4:33:
4e:bb:a6:5b:fe:c2:f7:c3:fe:34:16:cc:6d:26:ee:6d:e0:e5:
f3:29:e5:b5:4f:32:ad:69:e1:ed:93:69:bc:27:3e:fa:84:e8:
29:2b:28:71:f3:73:f5:92:10:95:c4:68:5f:a8:e0:83:d0:7c:
e6:90:e8:58:b9:9f:cb:9d:74:d6:96:41:7b:a7:fb:e9:42:d2:
f3:77:fe:19:67:0d:68:e3:f3:1e:87:3f:fe:72:a0:25:a3:78:
c5:06:82:53:50:45:67:49:89:99:fe:39:95:b3:24:76:3e:db:
c3:0a:66:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 10:35:56 2025 by rpki-client