Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/VjEbj3VrlWs2phki8Np5Jh64oiY.roa
File: VjEbj3VrlWs2phki8Np5Jh64oiY.roa (raw, json)
Hash identifier: oncS9VKBoV2GAvrFHOxmc1YhKZQ17qSen8ejF4Tw4A0=
Subject key identifier: 56:31:1B:8F:75:6B:95:6B:36:A6:19:22:F0:DA:79:26:1E:B8:A2:26
Certificate issuer: /CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Certificate serial: 01933F27C0098036E7609F185F58F8AE18A3
Authority key identifier: 8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/VjEbj3VrlWs2phki8Np5Jh64oiY.roa
Signing time: Mon 18 Nov 2024 12:03:09 +0000
ROA not before: Mon 18 Nov 2024 12:03:09 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214100
IP address blocks: 185.209.40.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 02 Jan 2025 05:47:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:3f:27:c0:09:80:36:e7:60:9f:18:5f:58:f8:ae:18:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bc5a8f76df15687f83441c9a6b554578f3cdf57
Validity
Not Before: Nov 18 12:03:09 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=56311b8f756b956b36a61922f0da79261eb8a226
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:2e:3d:7d:cb:d0:b4:45:25:d9:00:7f:8e:51:
8f:52:1d:44:f3:61:50:18:78:38:fe:00:2e:32:b2:
62:4a:23:bf:93:47:6f:18:41:06:60:ad:5f:6a:ad:
9e:0e:cb:6c:19:08:a9:f8:68:a7:51:44:db:41:3d:
03:f1:83:9b:ad:fb:cd:a8:1e:11:46:d1:88:2b:73:
d8:56:d3:08:c6:84:99:44:50:36:ec:82:8d:f6:90:
16:f1:79:d9:70:d1:27:b4:99:7f:7d:16:fa:ae:d8:
17:22:1b:ef:8d:5d:4c:d9:7f:00:36:5b:6f:a9:45:
99:ef:6a:3f:3d:2a:87:06:4c:28:ba:10:01:44:22:
96:7c:c5:12:6b:a7:74:60:a2:7e:4f:25:83:68:7e:
c4:f8:61:65:01:cc:29:14:61:a2:e2:48:dc:26:7e:
df:ae:09:d7:f0:14:b7:88:cb:9d:9b:fb:37:c3:a4:
32:e1:f6:c0:6f:a0:e1:aa:24:4e:43:5e:ca:27:21:
d9:e1:99:f3:96:f3:56:d9:a2:46:b3:18:43:be:61:
32:9f:97:cc:64:e4:f8:50:a3:19:c1:3b:ec:58:3e:
be:f5:95:11:4e:50:0c:57:53:73:f3:7f:99:cb:5b:
64:a5:b0:3c:ec:67:12:fc:30:a8:bd:87:c9:fb:6d:
73:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:31:1B:8F:75:6B:95:6B:36:A6:19:22:F0:DA:79:26:1E:B8:A2:26
X509v3 Authority Key Identifier:
keyid:8B:C5:A8:F7:6D:F1:56:87:F8:34:41:C9:A6:B5:54:57:8F:3C:DF:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i8Wo923xVof4NEHJprVUV48831c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/VjEbj3VrlWs2phki8Np5Jh64oiY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/25e83d-2365-4126-9aa7-94b9cf2cd2ef/1/i8Wo923xVof4NEHJprVUV48831c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.209.40.0/24
Signature Algorithm: sha256WithRSAEncryption
90:da:65:ac:1b:33:4f:a9:34:51:39:2c:c9:a8:33:92:92:7f:
7f:e0:9d:b0:5e:06:34:4f:b1:f3:0e:88:fa:ac:78:1a:6d:b2:
65:6c:b5:78:c3:31:08:db:57:ae:01:28:53:de:e7:4f:a0:83:
9a:a0:ed:30:e2:c0:8b:32:30:17:85:9f:f1:c7:2f:1b:d0:6e:
53:b7:df:9d:02:68:87:19:a6:d6:de:c1:08:b7:9a:75:63:f8:
6c:04:68:c5:46:57:66:e3:7a:21:c0:5c:6e:9b:78:a3:a2:b6:
34:f1:6d:d1:95:2a:9b:29:6c:4f:cc:2a:72:60:e9:72:81:07:
58:d1:1c:7f:59:d8:de:e9:45:6f:f1:64:bc:9d:28:21:e7:66:
7e:7e:5b:5e:ed:0f:bc:56:f8:42:7c:87:04:c8:c2:4b:5c:9c:
76:9c:ec:10:16:19:1a:a3:e1:e5:f7:02:45:be:d7:e1:43:86:
2f:bf:65:9b:50:5a:fc:4c:0d:95:31:59:63:9c:4f:0c:3d:9f:
4f:fa:a4:91:78:b6:6b:fa:ac:9b:d9:d3:8f:a0:96:26:0f:9f:
3c:95:28:6f:9d:d4:02:a5:49:95:15:a8:07:08:fe:f5:0e:7f:
72:e9:44:8b:01:81:77:ba:26:2e:45:45:88:97:71:f7:f4:6b:
83:1b:ab:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:29:19 2025 by rpki-client