Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/ADliyYBg8RJ5VTA6jTWUt_z-M0g.roa
File: ADliyYBg8RJ5VTA6jTWUt_z-M0g.roa (raw, json)
Hash identifier: +QtsqTXTlC1EdSD8rJ/IrgqiuFEqtbC8yYWlzCP9vDQ=
Subject key identifier: 00:39:62:C9:80:60:F1:12:79:55:30:3A:8D:35:94:B7:FC:FE:33:48
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 0192052ADFE69DE397B2C85950AF59DBF87C
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/ADliyYBg8RJ5VTA6jTWUt_z-M0g.roa
Signing time: Wed 18 Sep 2024 12:45:48 +0000
ROA not before: Wed 18 Sep 2024 12:45:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 6762
IP address blocks: 185.71.222.0/23 maxlen: 24
Validation: Failed, certificate revoked on Wed 01 Jan 2025 03:47:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:05:2a:df:e6:9d:e3:97:b2:c8:59:50:af:59:db:f8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Sep 18 12:45:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=003962c98060f1127955303a8d3594b7fcfe3348
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f2:0d:09:ff:02:5a:6b:d7:68:23:6f:51:09:
04:74:ad:c0:ab:c8:e9:19:36:0c:52:8d:c7:c3:63:
56:02:44:1e:5b:9f:58:c8:51:8e:9b:51:af:7b:e1:
17:6f:63:c3:ff:8c:1b:d7:65:66:29:e1:f4:a9:c6:
17:dd:64:74:66:3a:b6:fd:60:b8:38:54:fe:51:34:
a7:8c:51:3a:e6:b5:78:4d:4b:d9:8c:95:78:13:21:
e7:83:a0:25:97:32:79:4e:f2:6e:01:09:1d:a3:a2:
98:9b:e1:be:50:af:c7:6f:53:30:f9:f0:9f:87:f2:
8d:a1:17:a1:9d:6f:5f:28:d3:a3:33:6f:fc:46:8e:
81:61:e3:0d:9d:09:4d:15:ce:f6:72:19:89:47:10:
06:43:da:13:58:ea:3a:19:fe:38:80:7e:f2:f7:39:
89:3c:19:3b:c4:2a:9f:8f:34:3c:c3:80:15:f8:b3:
36:f1:69:4a:a0:26:9f:95:58:76:c4:7d:75:ac:3c:
d1:a4:51:c8:68:ab:18:16:53:5d:3f:6e:37:50:cb:
21:69:33:f4:17:6d:bc:cd:a2:67:ba:57:fb:7c:5e:
c2:f3:cf:12:0b:50:5c:ff:67:3b:84:33:a4:23:93:
04:d7:88:a5:dc:85:40:07:a0:de:a7:66:f2:3e:8b:
ff:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:39:62:C9:80:60:F1:12:79:55:30:3A:8D:35:94:B7:FC:FE:33:48
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/ADliyYBg8RJ5VTA6jTWUt_z-M0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.222.0/23
Signature Algorithm: sha256WithRSAEncryption
61:e7:9b:09:15:63:b9:37:63:5b:73:e8:52:9d:03:23:06:bd:
cd:26:e5:31:c5:25:3a:bb:a1:5c:ab:59:5a:f6:4e:66:9a:4f:
15:58:b4:c2:38:f5:36:e7:72:00:be:4e:e4:ea:76:42:83:cb:
78:6d:b2:9d:bf:cf:7c:59:0b:b9:66:d7:0d:8c:4e:0b:16:69:
b7:97:c7:66:59:c1:9e:06:01:19:93:b9:6d:8d:a7:65:06:4c:
71:a1:cb:23:ac:21:8c:e4:11:2f:26:96:5f:6d:2d:a4:0c:bb:
16:f1:b1:ae:5f:27:27:9b:08:97:b0:c0:e4:de:fc:40:3f:e1:
69:6d:9b:11:13:b6:8f:7f:66:de:cf:31:4e:b3:82:c9:7c:5c:
fb:ce:9c:5c:2d:2a:f6:78:de:71:d2:9c:a7:6f:c3:51:f2:eb:
d0:c4:57:f5:4b:56:a5:ae:1a:bd:c3:2a:32:4c:40:4b:81:27:
fd:15:45:fe:20:30:09:4b:c7:c7:1a:5a:dd:c1:86:a4:73:3a:
04:63:52:94:8e:1f:69:42:f8:39:9e:c3:53:31:0e:c1:07:c5:
e5:82:e3:3a:98:bd:54:be:69:06:b6:40:7e:a1:a6:82:43:33:
dc:85:ac:ef:b6:da:de:c6:23:87:d1:de:de:a0:dc:1e:3d:48:
a7:0e:36:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:43:45 2025 by rpki-client