Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/t5dTflEs5awlKVIMQvOG7DCjs-w.roa
File: t5dTflEs5awlKVIMQvOG7DCjs-w.roa (raw, json)
Hash identifier: Coj4RCtNJ41eJJZEYBeKA9p7vj/kNL/uudUKV5GT1w8=
Subject key identifier: B7:97:53:7E:51:2C:E5:AC:25:29:52:0C:42:F3:86:EC:30:A3:B3:EC
Certificate issuer: /CN=4268a4cfb6b1b6447da93833321dd315061193d4
Certificate serial: 0193BBC2BFE10158F426F73DCC82B758987A
Authority key identifier: 42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/t5dTflEs5awlKVIMQvOG7DCjs-w.roa
Signing time: Thu 12 Dec 2024 16:45:22 +0000
ROA not before: Thu 12 Dec 2024 16:45:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 16097
IP address blocks: 185.105.255.0/24 maxlen: 24
2a06:3a80::/40 maxlen: 40
2a06:3a80:300::/40 maxlen: 40
2a06:3a80:400::/40 maxlen: 40
Validation: Failed, certificate revoked on Wed 01 Jan 2025 01:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:bb:c2:bf:e1:01:58:f4:26:f7:3d:cc:82:b7:58:98:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4268a4cfb6b1b6447da93833321dd315061193d4
Validity
Not Before: Dec 12 16:45:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b797537e512ce5ac2529520c42f386ec30a3b3ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:68:38:3f:e1:c7:8e:b6:e7:b6:13:54:de:bf:
d5:1d:9d:69:c5:18:7f:b5:c2:31:58:fd:7c:bc:7a:
4b:17:3e:7b:4a:c1:f1:61:ae:b2:34:b2:41:db:ff:
73:02:1f:04:b3:38:85:91:6a:b3:85:cd:5a:e2:9c:
62:30:96:c8:94:51:a4:4f:2f:9d:85:ee:3d:48:ad:
cd:5b:0e:1e:d0:2d:49:70:8b:c4:8a:21:b9:45:2f:
23:b1:92:c4:f6:6c:ee:b4:d3:e3:03:ac:52:0e:f9:
9d:ce:f7:4c:5f:ab:c9:17:74:9e:ec:26:91:f5:e7:
f1:75:39:88:d0:8c:ab:48:7f:d7:f9:1f:13:69:a9:
1a:e2:47:28:2d:90:a7:9f:00:e6:66:c5:ce:32:66:
4e:7a:9f:86:c2:ad:2c:b9:65:46:15:a5:b8:7a:61:
3e:37:de:ab:2d:88:89:ba:1e:7a:58:29:8b:1a:03:
44:72:13:24:b7:c0:a5:06:d4:38:ef:f1:e0:85:04:
85:01:4e:d6:68:cc:b6:ff:80:9c:fc:c4:07:34:65:
7e:ba:45:e5:bc:82:bc:95:a0:8f:a7:f1:1a:95:6d:
e6:d2:9e:c4:07:89:3b:23:01:ba:e7:9e:b3:de:8a:
61:5c:b5:42:4d:cc:aa:15:f6:41:15:26:ae:38:6b:
d0:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:97:53:7E:51:2C:E5:AC:25:29:52:0C:42:F3:86:EC:30:A3:B3:EC
X509v3 Authority Key Identifier:
keyid:42:68:A4:CF:B6:B1:B6:44:7D:A9:38:33:32:1D:D3:15:06:11:93:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qmikz7axtkR9qTgzMh3TFQYRk9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/t5dTflEs5awlKVIMQvOG7DCjs-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/7d43bb-a1c6-4055-8c53-2fee8b6309cb/1/Qmikz7axtkR9qTgzMh3TFQYRk9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.105.255.0/24
IPv6:
2a06:3a80::/40
2a06:3a80:300::-2a06:3a80:4ff:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4b:22:0d:b4:73:63:5d:46:e0:ff:2e:a9:9c:47:fc:7b:ce:41:
2a:b6:4c:68:a2:3e:0d:2a:3f:12:0d:af:ff:ab:ea:0e:27:c5:
b9:3a:2b:2d:96:26:65:07:ea:71:11:25:a6:99:fb:1a:fd:94:
3a:2f:3d:d3:62:68:0f:ec:86:ed:51:e9:76:48:d9:8f:8e:4d:
63:55:2c:08:da:67:4f:9e:bc:3a:99:3b:5a:f8:ef:4d:35:79:
e6:81:61:32:7d:65:7c:6f:07:b2:c4:a6:f4:cc:6c:64:67:69:
05:10:18:f4:57:f3:23:3e:3b:c2:75:87:ed:16:1f:5d:c4:9f:
44:f3:1f:09:4e:b6:a9:0a:8b:54:e6:23:d8:e8:1a:85:ff:10:
b8:94:f6:39:61:8c:b8:1a:6a:54:2d:52:dd:99:8a:26:52:62:
c9:e9:31:24:ac:b5:23:54:df:6c:8d:8c:9f:ab:6c:fb:33:6a:
61:d8:ad:f4:3b:df:62:8f:d8:58:5e:bc:dd:8c:58:0c:ab:9b:
39:60:24:5a:23:25:a4:10:bc:5e:13:d1:0a:9e:4e:a3:50:05:
63:00:f2:c2:b8:50:36:eb:e8:2d:14:69:fd:90:46:36:e8:ff:
cb:62:9e:7d:c7:70:44:dc:de:96:4b:9f:75:ae:18:50:cb:f1:
7b:90:1f:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 02:07:28 2025 by rpki-client